Intrusion Detection Systems Fundamentals

  • Describe, recognize, or select good intrusion-detection methodologies, applications and disaster recovery, and forensic practices.

At its most basic level, an Intrusion Detection System (IDS) is a watchdog that works in the background, looking for odd behavior from network traffic and often from applications. If the IDS system detects something odd, it typically notifies you by popping up an alert, sending an email, paging an administrator, executing a predefined program (script), or simply logging the information to the standard operating system log files. Like a good security system for your home or business, an IDS solution can help protect your network from damages caused by intruders.

It is important ...

Get TICSA TruSecure™ ICSA Certified Security Associate Exam TU0-001 now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.