What is the difference between an Intrusion Detection System (IDS) and an Intrustion Prevention System (IPS)
Question 1;
What is the difference between an Intrusion Detection System (IDS) and an Intrustion Prevention System (IPS)? Which one is better for a corporate environment and why?
Question 2:
What elements should be included in an Information Security Policy for a corporate entity? What elements should be included in the policy no matter the size of the business ? Why?
One of my classmates post for Question 1
Chad Evans
An Intrusion Detection System(IDS) and Intrusion Prevention system (IPS) increase the security level of networks by monitoring traffic, inspecting and scanning packets for suspicious data. Detection in both systems is based on signatures already detected and recognized. An IDS is preventive security against any suspicious activity with in a specified network and cannot block an attack from happening however it will tell you that an attack has occurred. An IPS controls access to the specified network to protect systems from attack. IPS is designed to inspect attack data then take action by blocking the attack before it succeeds. IPS then creates a series of rules in the firewall to prevent that form of attack in the future. The main difference between one system and the other is IDS is reactive and IPS is active. I think both have their place in the network security armory if I had to choose I would probably go with an IPS as my networks security tool.
——————————
One of my classmates post for Question 2
Chad Lennox
First and most importantly in any corporate entity confidentiality should be included in their information security policy for a number of reasons. Mainly being that it ensures that all data and information assets are confined to people authorized to access it and that it won’t be disclosed to others. Next would be integrity which ensures that all the data collected is accurate across all systems and there are no duplicates, this is needed so that way any and all information across a business is the same, so everyone is working with the same numbers. Last of the main elements of information security is availability which makes sure that information or systems are at disposal of authorized users when needed, so when anyone needs to be able to access the certain information they have to computer access and clearance level to do so. Now there are a lot more elements of information security you could add to your business but these are the crucial parts which every corporate entity should have regardless of size, simply because these three items ensure that all information is correct and up to date, is only accessible by people who have the clearance to access it and that there are enough computers for people to access when needed.
Answer preview What is the difference between an Intrusion Detection System (IDS) and an Intrustion Prevention System (IPS)
APA
540 words