39
Figure 9 – Comparison of IDS and IPS design and implementation
Image by Intrusion Detection and Prevention [1]
2.1.8 The Basis of Intrusion Prevention System
IPS
technology
has
been developed with
many types, based on
diverse segments
in
which
they
are
deployed
and
observing network
traffic.
Based
on
the
information
sources,
IPS,
as
similar
as
the
IDS,
typically has
two
most
common types
of
implementation strategies:
•
Network-based
IPS
(NIPS)
is
put
directly
in
the
network
of
the
system
and
monitoring traffic
flows
that traverse
in
the
whole
network.
It
effectively
monitors
traffic
flows
throughout the
network
hosts
and sectors. To
measure
the
significance
of
malevolent activities
from
the
outside
networks,
organizations
usually
use
multiple
NIPS
that
are
deployed in
front
of
and
behind
the
main
network gateways and firewalls. It basically examines the control information of
 |