Select a suitable intrusion detection system ids

This preview shows page 9 - 12 out of 16 pages.

Select a suitable intrusion detection system (IDS) solution for the organization and explainthe reasoning for your suggestion.An intrusion detection system (IDS) is a defense system that protects a company,organization or your own private networking system.The key for the IDS is its ability toidentify or detect but more importantly to also prevent harmful activities to the security of thecomputer network or internet network in general.According Dorosz:“One key feature of intrusion detection systems is their ability to provide a viewof unusual activity and issue alerts notifying administrators and/or block a suspectedconnection. Intrusion detection is “a process of identifying and responding to maliciousactivity targeted at computing and networking resources”. In addition, IDS tools arecapable of distinguishing between insider attacks originating from inside the organization
We have textbook solutions for you!
/MCSA-Guide-to-Identity-with-Windows-Server-2016-Exam-70-742-1st-Edition-9781337400893-2703/
The document you are viewing contains questions related to this textbook.
Chapter 3 / Exercise 12
MCSA Guide to Identity with Windows Server 2016, Exam 70-742
Tomsho
Expert Verified
OSPage10of16(coming from own employees or customers) and external ones (attacks and the threadposed by hackers).” (Dorosz 2003).Personally, for the VA hospital, laws and regulations that we are bound by law to follow, Ithink that an Intrusion Prevention System (IPS) would be more beneficial than I would anIntrusion Detection System (IDS).The IPS is designed to respond to an attempted intrusionwithout having to require IT support to fix the intrusion as to where the IDS notifies you of anattempted intrusion that will require additional solutions to fix.The only downfall to an IPS isthat a false alarm could cause disruption in network traffic as the network shuts down to“prevent” the intrusion.The question was to pick an IDS for the VA network system, so I wouldchoose “Snort.”From the websiteI chose the program Snortbecause of its 5 star rating and popularity among organizations and users.According to thewebsite listed above:“Snort’s network intrusion and prevention system system excels at traffic analysisand packet logging on IP networks. Through protocol analysis, content searching, andvarious pre-processors, Snort detects thousands of worms, vulnerability exploit attempts,port scans, and other suspicious behavior. Snort uses a flexible rule-based language todescribe traffic that it should collect or pass, and a modular detection engine. Also checkout the free Basic Analysis and Security Engine (BASE), a web interface for analyzingSnort alerts.While Snort itself is free and open source, parent company SourceFire offers theirVRT-certified rules for $499 per sensor per year and a complementary product line of
OSPage11of16software and appliances with more enterprise-level features. Sourcefire also offers a free30-day delayed feed.Snort is a free system but has a parent company SourceFire that may be more along thelines of what should be chosen as an organization as to where Snort would be more for thepersonal user or home network.”Describe at least two (2) control strategies you would consider implementing for securing

Upload your study docs or become a

Course Hero member to access this document

Upload your study docs or become a

Course Hero member to access this document

End of preview. Want to read all 16 pages?

Upload your study docs or become a

Course Hero member to access this document

Term
Spring
Professor
N/A
We have textbook solutions for you!
The document you are viewing contains questions related to this textbook.
MCSA Guide to Identity with Windows Server 2016, Exam 70-742
The document you are viewing contains questions related to this textbook.
Chapter 3 / Exercise 12
MCSA Guide to Identity with Windows Server 2016, Exam 70-742
Tomsho
Expert Verified

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture