Intrusion Detection & Prevention

In this chapter, we will:

  1. Define "Intrusion" and "Intrusion Detection System" (IDS) are, and explain why we should use the services of an IDS on our device.
  2. Have a short discussion about what False Positive and False Negative mean.
  3. Present the two types of Intrusion Detection Systems.
  4. Bring two detection methods: (a) Signature-Based and (b) Anomaly Based.
  5. Analyze the responses that an IDS may issue when it detects intrusion.