https://gbhackers.com/intrusion-detection-system-ids-2/
An intrusion detection system (IDS) is a type of security software designed to automatically alert administrators when someone or something is trying to compromise information system through malicious activities or through security policy violations.
An IDS can only detect an attack. It cannot prevent attacks. In contrast, an IPS prevents attacks by detecting them and stopping them before they reach the target.
Host-based intrusion detection system (HIDS)
A host-based intrusion detection system (HIDS) is additional software installed on a system such as a workstation or a server.
Network-based intrusion detection system (NIDS)
A network-based intrusion detection system (NIDS) monitors activity on the network.
Signature-based IDSs (also called definition-based) use a database of known vulnerabilities or known attack patterns.
No comments:
Post a Comment