a process in which a network-based intrusion detection prevention system looks for invalid data packets
Padded cell
- honey pot that has been protected so that it cannot be easily compromised
Intrusion detection/prevention system (IDPS)
)- used to describe current anti-intrusion technologies
Intrusion
- occurs when an attacker attempts to gain entry or disrupt the normal operations of an information system, almost always with the intent to do harm
Fully distributed IDPS control strategy
all control functions are applied at the physical location of each IDPS component
Synchronous tokens
- synchronized with a server, both devices use the same time or a time-based database to generate a number that is displayed and entered during the user login phase
Statistical anomaly-based IDPS (stat IDPS) or behavior-based IDPS-
collects statistical summaries by observing traffic that is known to be normal
Passive vulnerability scanner-
one that listens in on the network and determines vulnerable versions of both server and client software
Intrusion prevention system (IPS)
– can detect an intrusion, and also prevent that intrusion from successfully attacking the organization by means of an active response
IDPS terrorists-
designed to trip the organization’s IDPS, essentially causing the organization to conduct its own
