|
Technologies, Methodologies and Challenges in Network Intrusion Detection and Prevention SystemsDOI: 10.12948/issn14531305/17.1.2013.12 Keywords: Intrusion Detection and Prevention System , Protocol Analysis , Sensor , Signature , State Abstract: This paper presents an overview of the technologies and the methodologies used in Network Intrusion Detection and Prevention Systems (NIDPS). Intrusion Detection and Prevention System (IDPS) technologies are differentiated by types of events that IDPSs can recognize, by types of devices that IDPSs monitor and by activity. NIDPSs monitor and analyze the streams of network packets in order to detect security incidents. The main methodology used by NIDPSs is protocol analysis. Protocol analysis requires good knowledge of the theory of the main protocols, their definition, how each protocol works.
|