33
•
Designing
IDPS
architecture
becomes
the
next
step
before
they
test
and
deploy
IDPS
components that
will
run
in
their system. Consideration of
the
architecture
includes
components placement,
solution
reliability,
system
interoperability,
management
network
architecture, and
necessary
changes
to
other
security
controls.
•
After
correctly
have
the
implementation
of
the
IDPS,
essential
configuration,
tuning, and
customization are
now
being
the
next
concern
for
administrators to
gain
accurate
and
effective
detection
and
setting
usability.
Capabilities attained
from the
configuration include thresholds, blacklists and
whitelists, alert
setting,
and
code
editing.
When
every
aspect
is
acceptably
done,
administrators are
enforced to review the configurations and keep them accurate and consistent.
•
They
are
also
imposed
to
secure
and
maintain
the
functionality
of
the
IPDS
within
the
network in
ongoing basis.
This
should
include
creating
separate
accounts
for
each
IPDS
user
and
administrator,
restricting
network
access
to
IDPS
components,
and
ensuring
IDPS
management
communications protection
for security procedure, also
monitoring the IDPS components
for operational and
security
issues,
performing
regular
vulnerability assessments,
appropriately
responding
to
vulnerabilities in
IDPS
components,
and
testing
and
deploying
IDPS components software and signature updates for maintenance procedure.
2.1.7 Network Security Apparatus
Most of secured enterprises
use combination of security and protection devices,
such
as
hardware-based
or
software-based
anti-viruses,
firewalls,
bastion
hosts,
 |