| Like this CertiGuide? Get it in PDF format! |
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31) |
|
| Also available: 300-question Security+ practice test! |
| Get It Here! |
|
|
How Does an IDS Work?
The exact details of how IDS detects
potential break-ins vary depending on the IDS in use. IDSs can employ
a variety of techniques to determine what constitutes an “intrusion”.
These will be discussed in more detail in section 3.4, when we get
into the specifics of network and host based IDSs.
IDSs do more than just DETECT intrusions
– they react to them as well. To go back to our burglar alarm
analogy, an alarm would be of limited use if all it did was keep a counter
each time a window is broken, without taking any other actions to inform
responsible parties or discourage the intruder. When an IDS detects
a suspected intrusion, it can page an administrator, display an alert
on the console, log the suspicious incident, or even take steps to reconfigure
the network to reduce the effect of the intrusion. We’ll discuss
more about this in section 3.4.
| If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support! |
|
|
Home -
Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.
|
