Chapter 1. Intrusion Detection Primer
Intrusion Detection Systems (IDSs) have evolved into a critical component in secure network architecture. Nonetheless, IDSs are a foreign concept to many security practitioners and systems administrators. This chapter offers a brief synopsis of intrusion detection, and illustrates why IDS is an important technology.
An Intrusion Detection System is any hardware, software, or combination of thereof that monitors a system or network of systems for malicious activity. An oft-cited analogy for Intrusion Detection Systems is that of a burglar alarm. With a burglar alarm, sensors are normally placed at common points of entry and exit. Logically, this strategy focuses on what it deems the weakest points in the ...
Get Intrusion Detection with Snort now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
