1 / 10

IPS An Intrusion Prevention System

IPS An Intrusion Prevention System. Prepared by Hadeel Matar Al-Anzi. Introduction. What is an Intrusion Prevention System?. It is an appliance used in an network security strategy. What can an IPS do?. IPS can detect and block: - Web and database attacks - Spyware / Malware

faunia
Download Presentation

IPS An Intrusion Prevention System

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. IPSAn Intrusion Prevention System Prepared by Hadeel Matar Al-Anzi

  2. Introduction • What is an Intrusion Prevention System? It is an appliance used in an network security strategy.

  3. What can an IPS do? IPS can detect and block: - Web and database attacks - Spyware / Malware - Peer to Peer (P2P) - Worm propagation

  4. IPS Types IPS can be grouped into 3 categories : - Signature Based - (NBAD) - Hybrid

  5. IPS Types of network-based or host-based IPS: The network-based system monitors all network traffic, while the host-based is specific to either an IP address or computer.

  6. IPS, Application Firewalls, Unified Threat Management & Access Control • The role of an IPS in a network is often confused with access control and application-layer firewalls. • There are some notable differences in these technologies. • While all share similarities, how they approach network or system security is fundamentally different.

  7. IPS, Application Firewalls, Unified Threat Management & Access Control • An IPS is typically designed to operate completely invisibly on a network. • IPS products do not typically claim an IP address on the protected network but may respond directly to any traffic in a variety of ways.

  8. Major strengths of intrusion prevention systems Automatically Identifies and Blocks Threats Reduces Time Spent Reviewing Log Files to Identify Threats Reduces Need for Manpower to Monitor Threats Enhances Network Security Architecture

  9. The strength/weaknesses of IPS Weaknesses of many current intrusion prevention systems are: Lack of Network Visibility Lack of User Visibility Inability to Adapt to Network Changes in Real-Time

  10. Thank You !

More Related