Implement intrusion detection and prevention systems
Cyber risk
Practical sheet REF: FIC1855 V1
Implement intrusion detection and prevention systems
Cyber risk

Authors : Pierre MONGIN, Laurent DELHALLE

Publication date: January 10, 2025 | Lire en français

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

3. Implement intrusion detection and prevention systems

To detect abnormal activity, an IDS (Intrusion Detection System) can be used to record suspicious activity, as well as successful and unsuccessful intrusion attempts.

Two main systems exist, detecting either network intrusions or host computer intrusions. They are used to detect anomalies. A host computer is any computer connected to a computer network, and intrusions occur either on networks or on computers.

To take preventive measures and limit the impact of attacks, an active IDS is used. This is known as HIPS (Host-based Intrusion Prevention System), which monitors workstations, processes, drivers or the server.

Network Intrusion Prevention Systems (NIPS) are used to monitor network intrusions. KIPS (Kernel Intrusion Prevention System) also exist, but are less widely used.

Unfortunately,...

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?

Article included in this offer

"Management and innovation engineering"

( 434 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details
Contact us
Contact our team FAQ