(Intrusion Detection System) Software that detects an attack on a network or computer system. A Network IDS (NIDS) is designed to support multiple hosts, whereas a Host IDS (HIDS) is set up to detect illegal actions within the host. Most IDS programs typically use signatures of known cracker attempts to signal an alert. Others look for deviations of the normal routine as indications of an attack. Intrusion detection is very tricky. Too much analysis can add excessive overhead and also trigger false alarms. Insufficient analysis can overlook a valid attack.
Catch It at the Source
The opposite of intrusion detection is "extrusion detection." Such software examines the outgoing data in the computer to determine if malware is originating in this computer. See protocol anomaly, traffic anomaly, IPS and attack.
Catch It at the Source
The opposite of intrusion detection is "extrusion detection." Such software examines the outgoing data in the computer to determine if malware is originating in this computer. See protocol anomaly, traffic anomaly, IPS and attack.
 | Reproduced with permission from Computer Desktop Encyclopedia. Copyright (c) 1981-2008 The Computer Language Company Inc. All rights reserved. |
Additional Resources
- Fortune 500 companies use of email spoofing countermeasures declining
- Here's a paradox - a technology originally meant to verify the sender of an email message for the sake of preventing spoofed messages from reaching the network, still hasn't been embraced by the world's biggest companies despite being around for years, but is actively used by adaptive spammers increasingly abusing...
- Blog posts 2008-08-19
- DEFCON 16: List of tools and stuff released
- Guest editorial by Rob Fuller DEFCON, the 9000+ attendee hacker conference in Vegas has become a sort of hydra conference. It has become more like a global fair than what most people think of conferences; even the badge is highly...
- Blog posts 2008-08-18
- Affiliate ID Manager (zip)
- Nowadays, whenever you purchase a new product, you're given a new login detail. Whenever you join a new affiliate program, you are given a new affiliate detail. How about your Web hosting accounts, autoresponder accounts and other membership sites? Ok, even if you have purchased ID management software such as...
- Software downloads 2008-08-14
- News to know: Microsoft's Fiji; Apple; Green IT
- Notable headlines: Mary Jo Foley: Microsoft finally speaks out on 'Fiji' Zack Whittaker: Windows Fiji: a world class failure Gallery: Windows Fiji - Screenshots right Gallery: Windows Fiji - Setup Garett Rogers: Google Translate for iPhone has...
- Blog posts 2008-08-11
- New technique IDs substances, not just fingerprints
- New technique IDs substances, not just fingerprintsOther tech with no sample prepThe DART Ion Source ([u]http://en.wikipedia.org/wiki/DART_ion_source[/u]) does the same thing, but does not require sample preparation. You can just put any object in front of a DART beam and get the chemical composition right off of the surface. Did you...
- Discussion threads 2008-08-08
- New technique IDs substances, not just fingerprints
- Law enforcement has a powerful new tool – mass spectrometry. The technique to measure the chemical composition of a sample isn't a new technology but, writing in Science, R. Graham Cooks has identified a variation that will allow crime labs to identify not only the identity of...
- Blog posts 2008-08-08
- TeamViewer (dmg)
- TeamViewer is a simple and fast solution for remote control, desktop sharing and file transfer that works behind any firewall and NAT proxy. To connect to another computer just run TeamViewer on both machines without the need of an installation procedure. With the first start automatic partner IDs are generated...
- Software downloads 2008-08-06
- Microsoft makes daring vulnerability sharing move
- LAS VEGAS -- Starting in October, Microsoft will start sharing details on software vulnerabilities with security vendors ahead of Patch Tuesday under a daring new program aimed at reducing the window of exposure to hacker attacks. The new Microsoft Active Protections Program MAPP, which will be formally...
- Blog posts 2008-08-05
- Activeworx Snort Management Center (SMC) (zip)
- Activeworx SMC is designed as a cost effective and user-friendly solution to manage and monitor all Snort events. SMC also keeps Snort policies and rules up-to-date on all sensors. SMC's centralized management console for Snort provides all the tools necessary for an IDS administrator to focus on quickly identifying and...
- Software downloads 2008-08-04
- PRPWallet (zip)
- Digital Wallet for Windows Mobile Pocket PC. Carry all your vital information with this Secure, Safe, Convenient & Powerful personal information management solution. Store passwords, PINs, bank account, credit cards, email usernames, group IDs, membership IDs & any other important information.
- Software downloads 2008-08-01
- 75% of online banking sites found vulnerable to security design flaws
- In a paper entitled "Analyzing Web sites for user-visible security design flaws" to be published at the Symposium on Usable Privacy and Security meeting at Carnegie Mellon University July 25, Atul Prakash and two of his doctoral students examined 214 financial institutions in 2006, finding that over 75% of all...
- Blog posts 2008-07-23
- Is this the New Apple?
- PowerPage podcaster Youngmoo Kim relays his experience with trying to get an iPhone 3G and on being an "IRU" Individual Responsible User. Apple just doesn't want me to have an iPhone 3G. After a few half-hearted attempts bailing at the sight of long lines, I spent about two hours...
- Blog posts 2008-07-22
- Kaminsky and Ptacek comment on DNS flaw
- Well, well, well, what a day for security news! I got a chance to get the scoop word of mouth from Dan Kaminsky of IOActive (pictured above [image courtesy of quinnums]) and Thomas Ptacek of Matasano pictured below on the DNS flaw that's been all over the...
- Blog posts 2008-07-08
- Google trying to take privacy seriously
- Google trying to take privacy seriouslyRE: Google trying to take privacy seriouslyThe whole thing is a legal can of worms which I did not see American judges opening. I hope this will be overturned for it has very serious implications all over the world.While the state may potentially be the...
- Discussion threads 2008-07-05
- Access Password (TSAP) (exe)
- Access Password is MS Access database password recovery tool. With this tool you can recover your database password, user-level security records logins and passwords, users and groups ids. Recovered MS Access user-level security information can be used to re-create lost Workgroup information file, access user-level secured database, fix MS Access...
- Software downloads 2008-07-04
- Judge: Viacom gets 12TB of YouTube user data
- A federal judge ordered PDF Google to hand over 12 terabytes of YouTube user data to Viacom, finding that the list of "login IDs" does not qualify as personally identifying information. In opposing Viacom's request for the information, Google had asserted users' privacy rights: "Plaintiffs would...
- Blog posts 2008-07-03
- YouTube vs. Viacom: Google's IP wins; Users lose
- Updated: The latest battle in Google's ongoing court battle with Viacom over YouTube copyright infringement is a glass half full or half empty situation. In the half full department, Google scored a legal victory as a judge shot down Viacom requests for the search giant's search code and other critical...
- Blog posts 2008-07-03
- Sloth (zip)
- Sloth is a program that displays a list of all open files in use by all the applications your user account is running on the system -- this list includes IP and Unix sockets, character devices and directories. This list is presented along with the names of applications using the...
- Software downloads 2008-07-03
- Researcher claims thousands of identities stolen during Social Engineering pentests
- Researcher claims thousands of identities stolen during Social Engineering pentests"Pentest"?Was ist das? Ach du lieber, here it is. Found the following using Google:Definitions of pentest on the Web in German:Ein Penetrationstest ist* in der Netzwerktechnik eine Methode, Sicherheitsschwachstellen festzustellen, siehe Penetrationstest Informatik* in ...A "penetration test". Hadn't...
- Discussion threads 2008-07-02
- PCI-DSS 1.1 points to outdated OWASP Top 10
- OK, I'm not going to freak out about this too bad... I've already pointed out enough problems with PCI, but I did find it morbidly entertaining. My good friend Jeremiah Grossman pictured at right blogged today about the PCI-DSS 1.1 section 6.5, which covers "prevention of common coding vulnerabilities in...
- Blog posts 2008-07-02
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- Access the latest Intel and industry best practices
-
Designed specifically to address the concerns of senior IT managers at organizations with more than 100 employees, the Intel Premier IT Professional Program provides best practices via local and e-Seminars and a members-only Web site.
- View the Intel Premier IT Professional web-site tour >>
