IDS Deployment Overview

The decision regarding control strategies, decisions about where to locate elements of intrusion detection systems is an art in itself. Planners should select deployment strategy based on careful analysis of organization’s information security needs but, at the same time, causes minimal impact. NIDS and HIDS can be used in tandem to cover both the individual systems which connect to an organization’s networks and networks themselves.

Deploying Network Based IDSs

NIST recommends 4 locations for NIDS sensors

- Location 1: behind each external firewall, in network DMZ
- Location 2: outside the external firewall
- Location 3: On the major network backbones
- Location 4: On the critical subnets

                                         This Figure given below illustrates the Network IDS sensor Locations.

 

 

                            

Posted Date: 10/9/2012 3:59:49 AM | Location : United States

Ask an Expert

Related Discussions:- Ids deployment overview, Assignment Help, Ask Question on Ids deployment overview, Get Answer, Expert's Help, Ids deployment overview Discussions

Write discussion on Ids deployment overview
Your posts are moderated

Write your message here..

Related Questions

Describe the process of components identification, Probelm 1: Give the ... Probelm 1: Give the History and Evolution of Wireless Communication System. Complete explanation Probelm 2: Describe the process of Components Identification and cal

CS, Discuss how developers should apply the following countermeasures to im... Discuss how developers should apply the following countermeasures to improve the security of their code:

Identify possible controls-information security, Identify Possible Controls... Identify Possible Controls For each threat and linked vulnerabilities which have residual risk, create primary list of control ideas. Residual risk is the risk which remains to

Programming, SDES encryption and decryption SDES encryption and decryption

Need for security-information security, NEED FOR SECURITY Primary missio... NEED FOR SECURITY Primary mission of information security to ensure that the systems and contents stay the same If no threats, could focus on improving the systems, resulting in

Network security course work, doing coursework in Network Security to prese... doing coursework in Network Security to present a possible solution to the problem at hand by creating a prototype of the new network security infrastructure. This new design shou

Computer forensic, discuss the merits and demerits of computers freezing discuss the merits and demerits of computers freezing

Name the various layers of the osi model, Problem (a) Name the various ... Problem (a) Name the various layers of the OSI model. (b) Show, by means of a diagram, how  the TCP/IP  reference model  is different from the OSI-7 reference model? Why is

Websphere administrator, Websphere Administrator: Working as Webspher... Websphere Administrator: Working as Websphere Administrator in the department called DART (Database Architecture Re-Engineering and Tuning). The major responsibilities are t

What is the role of an intrusion detection system, Problem: (a) What i... Problem: (a) What is a firewall and which are its most important tasks? (b) What is the difference between default deny and default permit? Which advantages and disadvanta