U.S. Department of Health and Human Services
Continuously monitoring systems to detect or prevent intrusion is a role performed by most IT Administrators assigned to a system. Although it can be routine, it is vital to system security. Often, the intrusion detection and prevention function is built into the system.
There are three types of automated tools:
An Intrusion Detection System (IDS) monitors network traffic and local system activity for indications of attack and misuse.
An Intrusion Prevention System (IPS) adds protection capability to the monitoring capability of traditional IDSs.
An Intrusion Detection Prevention System (IDPS) is a critical part of any information security architecture and complements firewalls and vulnerability assessments.
Page 1 of 3
Intrusion Detection and Prevention