Appendix . Glossary
- access control list (ACL)
A method that limits the use of a resource to authorized entities.
- Address Resolution Protocol (ARP)
A protocol that translates IP addresses to physical Ethernet addresses.
- aggregation switch
A switch that you use to combine multiple traffic flows into a single flow. This single traffic flow can then be analyzed by your intrusion devices running in promiscuous mode. An aggregation switch is commonly used in conjunction with a network tap.
- anomaly signature
A signature that triggers when a defined normal level is exceeded (for example, exceeding a defined amount of Internet Control Message Protocol [ICMP] traffic on the network).
- atomic signature
A signature that triggers on the contents of a single packet or ...
Get Intrusion Prevention Fundamentals now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.