Intrusion Detection System

If you are interested in network security, or if you are interested in data mining, or if you are interested in computer security than you must know about Intrusion Detection System (IDS).

Intrusion Detection System (IDS) have become very popular in many years because the variation in intruder, we are living on the age of technology the researcher and security expert facing many challenges daily, so there is a need to create such a thing that can monitor the entire network.

In the field of information security intruder means a hacker or a cracker or simply a abnormal activities, if an attacker get access into the network than the attacker try to steal the sensitive information that can caused great harm to the company, means everything is data.
There are firewall to protect these attacker so why we need the new term that is IDS.

Limitation Of Firewall
Although firewalls are good to secure a computer network, but firewalls has some limitation, firewall is simply a wall between your computer network and the outside world(Internet). it allows some traffic to pass and block some traffic to being enter into the network it cannot make decision on the basis of the incoming packet. There are different ways to bypass and cheat the firewalls. It cannot help you when:
  • Connections that circumvent it 
  • New threat
  • A malicious program hide in the attachment of the e-mail
Overview Of Intrusion Detection System

An Intrusion Detection System monitors the network traffic and take decision about the incoming and outgoing packets, these decision based on some information that has collected by IDS via its sensors. In short An intrusion detection system (IDS) is used to monitor the entire network, it detects intruders; that is, unexpected, unwanted or unauthorized people or programs on network. IDS provides the following:
  • OS (Operating system) audit
  • Monitor and analyze network traffic and user/system activity 
  • Auditing system for vulnerabilities 
Intrusion Detection System (IDS) has multiple sensors used to monitor unexpected and unwanted activities.
  • A sensor monitor log files
  • A sensor monitor TCP ingoing or outgoing connections
An Intrusion Detection System (IDS) can work manually but it is recommended and mostly IT administrator automate the IDS to ensure the security. we can categorize IDS into two main types:

  • Network Intrusion Detection Systems (NIDS)
  • Host Intrusion Detection Systems (HIDS)

Note: If you enjoyed this post, you might want to subscribe our RSS feed and Email Subscription  or become our Facebook fan! You will get all the latest updates at both the places.
Ehacking Staff
With more than 50 global partners, we are proud to count the world’s leading cybersecurity training provider. EH Academy is the brainchild of Ehacking, which has been involved in the field of training since the past Five years and continues to help in creating professional IT experts.

Most Popular

How to Install Kali Linux on VirtualBox [Windows Host] in 2020

Kali Linux is a Debian based Linux distribution, released on the 13th March 2013 as a complete rebuild of BackTrack Linux. It is one of...

Acunetix v13 Release Introduces Groundbreaking Innovations

The newest release of the Acunetix Web Vulnerability Scanner further improves performance and premieres best-of-breed technologies London, United Kingdom – February 5, 2019 – Acunetix,...

What is Ethical Hacking, how to be an Ethical Hacker

Hacking is the process of discovering vulnerabilities in a system and using these found vulnerabilities by gaining unauthorized access into the system to perform...

Basic steps to ensure security Online!

Security concerns are growing day by day due to the growing interconnectivity and technology. Drastic things can happen if you be a little careless...