Presentation is loading. Please wait.

Presentation is loading. Please wait.

Intrusion Detection Systems Austen Hayes Cameron Hinkel.

Published byAvice Byrd Modified over 9 years ago

Similar presentations

Presentation on theme: "Intrusion Detection Systems Austen Hayes Cameron Hinkel."— Presentation transcript:

1 Intrusion Detection Systems Austen Hayes Cameron Hinkel

2 Intrusion Detection Systems (IDS) Definition

3 Purpose of IDS Monitor Host/Network

4 Purpose of IDS Monitor Host/Network Log Suspicious Activity

5 Purpose of IDS Monitor Host/Network Log Suspicious Activity Detect Potential Threats

6 Purpose of IDS Monitor Host/Network Log Suspicious Activity Detect Potential Threats Alert System Administrator(s)

7 Purpose of IDS Monitor Host/Network Log Suspicious Activity Detect Potential Threats Alert System Administrator(s) Generate Reports

8 Detection Methods Statistical Anomaly-Based

9 Detection Methods Statistical Anomaly-Based ◦ Protocol Analysis

10 Detection Methods Statistical Anomaly-Based ◦ Protocol Analysis ◦ Bandwidth

11 Detection Methods Statistical Anomaly-Based ◦ Protocol Analysis ◦ Bandwidth ◦ Hardware Connections

12 Detection Methods Statistical Anomaly-Based ◦ Protocol Analysis ◦ Bandwidth ◦ Hardware Connections Signature-Based

13 Detection Methods Statistical Anomaly-Based ◦ Protocol Analysis ◦ Bandwidth ◦ Hardware Connections Signature-Based Stateful Protocol Analysis

14 Types of IDS Network (NIDS) NIDS Firewall Internet Private Network

15 Types of IDS Host-based (HIDS) Firewall Internet Private Network HIDS

16 Types of IDS Wireless IDS Sensor Access Point Wireless Devices Internet

17 Types of IDS Network (NIDS) Host-based (HIDS) Wireless Network Behavior Analysis

18 Network IDS Installation Types ◦ Hub/Switch NIDS Hub Internet Private Network

19 Network IDS Installation Types ◦ Network Tap NIDS Hub Internet Private Network

20 Network IDS Installation Types ◦ Inline Internet NIDS Hub Private Network

21 Network IDS Examples ◦ “LaBrea Tarpit”  Propagation of worms

22 Network IDS Examples ◦ “LaBrea Tarpit”  Propagation of worms  ARP request responses

23 Network IDS Examples ◦ Honey Pot  Low-Interaction

24 Network IDS Examples ◦ Honey Pot  Low-Interaction  High-Interaction

25 Types of Attacks

26 Port Scan

27 Types of Attacks Port Scan DOS Attack

28 Types of Attacks Port Scan DOS Attack ICMP Flood

29 Types of Attacks Port Scan DOS Attack ICMP Flood Distributed

30 Popular IDS Software Snort ◦ Open source, Signature-based

31 Popular IDS Software Snort ◦ Open source, Signature-based AIDE ◦ Advanced Intrusion Detection Environment

32 Popular IDS Software Snort ◦ Open source, Signature-based AIDE ◦ Advanced Intrusion Detection Environment OSSEC HIDS

33 Conclusion Security Integral to Sys. Admin Job

34 Conclusion Complexity of Securing A System/Network

35 Conclusion Security Integral to Sys. Admin Job Complexity of Securing a System/Network Numerous Tools Available To Detect Threats

Download ppt "Intrusion Detection Systems Austen Hayes Cameron Hinkel."

Similar presentations

Security Administration Tools and Practices Amit Bhan Usable Privacy and Security.

Security Administration Tools and Practices Amit Bhan Usable Privacy and Security.
Chapter 19: Computer and Network Security Techniques Business Data Communications, 6e.

Chapter 19: Computer and Network Security Techniques Business Data Communications, 6e.
1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.

1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.
Intrusion Detection Systems By: William Pinkerton and Sean Burnside.

Intrusion Detection Systems By: William Pinkerton and Sean Burnside.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
1.  To analyze and explain the IDS placement in network topology  To explain the relationship between honey pots and IDS  To explain, analyze and evaluate.

1.  To analyze and explain the IDS placement in network topology  To explain the relationship between honey pots and IDS  To explain, analyze and evaluate.
NETWORK SECURITY INTRUSION DETECTION SYSTEMS (IDS) KANDIAH.M Clarkson University, Potsdam, New York.

NETWORK SECURITY INTRUSION DETECTION SYSTEMS (IDS) KANDIAH.M Clarkson University, Potsdam, New York.
5/1/2006Sireesha/IDS1 Intrusion Detection Systems (A preliminary study) Sireesha Dasaraju CS526 - Advanced Internet Systems UCCS.

5/1/2006Sireesha/IDS1 Intrusion Detection Systems (A preliminary study) Sireesha Dasaraju CS526 - Advanced Internet Systems UCCS.
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 6: Cisco IOS Threat Defense Features.

© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 6: Cisco IOS Threat Defense Features.
Lesson 13-Intrusion Detection. Overview Define the types of Intrusion Detection Systems (IDS). Set up an IDS. Manage an IDS. Understand intrusion prevention.

Lesson 13-Intrusion Detection. Overview Define the types of Intrusion Detection Systems (IDS). Set up an IDS. Manage an IDS. Understand intrusion prevention.
Chapter 14 Intrusion Detection. Hacker Capabilities.

Chapter 14 Intrusion Detection. Hacker Capabilities.
Cs490ns - cotter1 Intrusion Detection. cs490ns - cotter2 Outline What is it? What types are there? –Network based –Host based –Stack based Benefits of.

Cs490ns - cotter1 Intrusion Detection. cs490ns - cotter2 Outline What is it? What types are there? –Network based –Host based –Stack based Benefits of.
By Edith Butler Fall 2008. Our Security Ways we protect our valuables: Locks Security Alarm Video Surveillance, etc.

By Edith Butler Fall Our Security Ways we protect our valuables: Locks Security Alarm Video Surveillance, etc.
Host Intrusion Prevention Systems & Beyond

Host Intrusion Prevention Systems & Beyond
Lecture 11 Intrusion Detection (cont)

Lecture 11 Intrusion Detection (cont)
Intrusion Detection System Marmagna Desai [ 520 Presentation]

Intrusion Detection System Marmagna Desai [ 520 Presentation]
Network Intrusion Detection Systems Slides by: MM Clements A Adekunle The University of Greenwich.

Network Intrusion Detection Systems Slides by: MM Clements A Adekunle The University of Greenwich.
INTRUSION DETECTION SYSTEMS Tristan Walters Rayce West.

INTRUSION DETECTION SYSTEMS Tristan Walters Rayce West.

Similar presentations

Ads by Google