Subject review: Intrusion Detection System (IDS) and Intrusion Prevention System (IPS)
Department of Computer Science, University of Al-Mustansirihya, Baghdad, Iraq.
Review Article
Global Journal of Engineering and Technology Advances, 2023, 14(02), 155–158.
Article DOI: 10.30574/gjeta.2023.14.2.0031
Publication history:
Received on 02 January 2023; revised on 21 February 2023; accepted on 23 February 2023
Abstract:
Intrusion detection system (IDS) is the process of monitoring the events occurring in a computer system or network and analyzing them for signs of possible incidents, which are violations or imminent threats of violation of computer security policies. An intrusion prevention system (IPS) is software that has all the capabilities of an intrusion detection system and can also attempt to stop possible incidents. If anomaly traffic pass through the network IDS would generate a false positive which means it only detects the malicious traffic, takes no action and generates only alerts but IPS detects the malicious traffic or suspicious activity, takes the actions like terminate, block or drop the connections. This paper provides an explanation of network intrusion, detection, and prevention to overcome them.
Keywords:
Intrusion; Security; Attacks; IDS; IPS
Full text article in PDF:
Copyright information:
Copyright © 2023 Author(s) retain the copyright of this article. This article is published under the terms of the Creative Commons Attribution Liscense 4.0