Difference between revisions of "Intrusion Detection Prevention (IDS)"
(Created page with "An '''Intrusion Detection Prevention (IDS)''' is either a hardware device or software application that uses known intrusion signature...") |
(No difference)
|
Revision as of 14:37, 1 February 2021
An Intrusion Detection Prevention (IDS) is either a hardware device or software application that uses known intrusion signatures to detect and analyze both inbound and outbound network traffic for abnormal activities. This is done through:
- System file comparisons against malware signatures.
- Scanning processes that detect signs of harmful patterns.
- Monitoring user behavior to detect malicious intent.
- Monitoring system settings and configurations.[1]