First page Back Continue Last page Summary Graphic

Intrusion Detection

Intrusion Detection is the second most important layer. Intrusion Detection is the set of tools to find cracking activities, things such as portscanners, repeated attempts to log in to nonexistent accounts, repeated wrong passwords on a valid account or malicious packets traversing the network. There are two types of Intrusion Detection Systems (IDS): host-based and network IDS. Host-based IDS live on individual hosts. Network-based IDS use dedicated sensor machines placed around the network to watch for malicious activities.

Intrusion Detection

Notes: