From the course: Data-Driven Network Security Essentials
Join today to access over 22,700 courses taught by industry experts or purchase this course individually.
IDS and IPS data
From the course: Data-Driven Network Security Essentials
IDS and IPS data
- [Instructor] As you know firewalls log rejected packets as errors. On the other hand, IDSes or IPSes produce security alerts as their data. They use signature files that define what should be examined in packets to recognize an impending attack. More recently offenders are attempting to identify intrusion attempts by comparing the normal and abnormal behaviors of a network under watch. In fact, a newly emerging approach seeks a combination of both signature and behavior-based detection. To accomplish behavior-based detection, IDSes or IPSes need to be able to analyze a large quantify of data. Coincidentally many breakthroughs in information technology and data science such as Cloud computing and big data analytics are now occurring. And they're acting as enablers used for more efficiently implementing the behavior-based IDSes and IPSes. Cloud computing is essential to hold and process an enormous amount of packets captured by IDSes and IPSes. To improve the processing efficiency in…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.