WARNING: This site is intended for online use only; mass-downloading of pages degrades the server and is prohibited.
If you attempt to use tools to mass-download the site, you may be blocked permanently by automated software.
If you want to read this CertiGuide offline, please use one of the links on the left to purchase a convenient PDF copy. Thank you.

Like what you see? Get it in one document for easy printing!
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Test yourself better with 300 extra Security+ questions!
Get It Here!

Custom Search






Table Of Contents  CertiGuide to Security+
 9  Chapter 3:  Infrastructure Security (Domain 3.0; 20%)
      9  3.1  Devices

Previous Topic/Section
3.1.8 VPN (Virtual Private Network)
Previous Page
Pages in Current Topic/Section
1
Next Page
 Where on the Network Should the IDS Go?
Next Topic/Section

3.1.9  IDS (Intrusion Detection System)

An Intrusion Detection System (IDS) is a system for detecting attempts to break into or misuse a system or network.290 It is, in effect, a burglar alarm for your network.

As with firewalls, they may be implemented as a dedicated piece of special-purpose hardware, or a software package running on a network computer. What kind of activities can intrusion detection systems identify? It varies with the particular IDS, but can include detection of network scans (in which an attacker is sending traffic to your network to map it, or find systems with known vulnerabilities), spoofing attempts and common script kiddie attacks such as denial of service attacks, attempts to connect to unsupported services, and receipt of network communication packets that violate standards.

IDS

An Intrusion Detection System (IDS) is used to detect attempts to break into or misuse a system or network.

Types of attacks an IDS can detect include network scans, packet-spoofing, DoS, other script kiddie attacks, unauthorized attempts to connect to services, improperly-structured TCP/IP packets, and improper activity on a system.


Quick navigation to subsections and regular topics in this section



 __________________

290. Network Intrusion Detection Systems FAQ, http://www.robertgraham.com/pubs/network-intrusion-detection.html#1.1, Version 0.8.3, March 21, 2000.

Previous Topic/Section
3.1.8 VPN (Virtual Private Network)
Previous Page
Pages in Current Topic/Section
1
Next Page
 Where on the Network Should the IDS Go?
Next Topic/Section

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!
Donate $2
Donate $5
Donate $10
Donate $20
Donate $30
Donate: $


Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.