Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > invades the examination > Content
Hot Articles
ForensicSIM Toolkit gets
Serv-U bounce attack and
To the Image File Execut
Based on CallStack count
To a some music website
How to use double WAN ro
pcshare official net exa
Security precious book m
Honey jar and honey net
The invasion examination
pcshare official net exa
Tomcat invasion examinat
Bypasses the CallStack f
Ten big invasion examina
The network invasion exa
Recommend Articles
Only opens 80 port's saf
Bypasses the web key wor
Bypasses the CallStack f
Security precious book m
Based on CallStack count
pcshare official net exa
SQL Server SA idle talk
Honey jar and honey net
The invasion examines th
Four next generation inv
An accidental invasion e
The invasion examines (I
How to use IDS to invade
The invasion examination
A winding safe examinati
New Articles
TEA guidelines for risk
Training for medical per
JSIC Security Forum 2001
SITO includes E-Learning
The rationale for choosi
Drink and drug driving c
BTEC is Tavcom Training
International trade issu
1 in 5 companies is unli
New compact PD-350 for F
sharp rise in prices of
Passfaces strong authent
T3i teams with Passfaces
Comodo Two Factor Authen
Comfortable two-factor a
Invasion examination system synopsis
  Add date: 10/24/2008   Publishing date: 10/24/2008   Hits: 4
Total 3 pages, Current page:1, Jump to page:
 
The invasion examination (Intrusion Detection), as the name suggests, is to invades the behavior detecting. It through to the computer network or in computer system's certain key point collection information and to it carries on the analysis, discovered that network or system whether to have violates the security policy the behavior and the sign which attacks. Carries on the invasion examination the software and hardware's combination is invades the examination system (Intrusion Detection System, is called IDS).  

  Is different what with other security product, invasion examination systematic need more intelligences, it must be possible the data which obtains to carry on the analysis, and obtains the useful result. A qualified invasion examination system can the big simplified manager's work, the guarantee network security movement. Therefore, after the invasion examination is considered is firewall's second security strobe, in does not affect the network performance in the situation to be able to carry on the monitor to the network, thus provides to the internal attack, the exterior attack and misoperation's real-time protection. These carry out following task through it to realize:

  · surveillance, analysis user and system activity;
  · system structure and weakness audit;
  · the recognition reflection known attack's active pattern and reports to the police to the related public figure;
  · deviant behaviour pattern statistical analysis;
  · appraisal important system and data file integrity;
  · operating system's audit trail management, and distinguishes the user to violate the security policy the behavior.

  Below, I from the invasion examination system's function, classified as well as invasion examination technology these three aspects, will come the system to carry on the simple introduction regarding this.

Invasion examination system's major function

  As for a successful invasion examination system, not only it may cause the system manager time understanding network system (including procedure, document and hardware equipment and so on) any change, but can also give the cyber security policy the making to provide the guide. A more important spot is, it should manage, the disposition to be simple, thus causes the laymen to obtain the network security very easily. Moreover, the invasion examination's scale should also according to the network threat, the system structure and the security requirements change changes. Invasion examination system after discovery invasion, will make the response promptly, including cut-off network connections, record event and warning and so on. Specifically speaking, the invasion examination system's major function includes:
  · monitors and analyzes the user and system's activity;

  · verification system disposition and crack;
  · appraisal system essential resources and data file integrity;
  · recognition known aggressive behavior;
  · statistical analysis deviant behaviour;

 
Other pages: : 1 * 2 * 3 * Next>>
Prev:Overview of intrusion detection technology can not be ignored social engineering Next:Discusses the network shallowly the attack examination technology

Comment:

Category: Home > invades the examination
Home