Reflection Paper

MrTooGood
DifferenceBetweenAlertdataToolsandNSMMonitoringTools.docx
Home>Engineering homework help>Telecommunications Engineering homework help>Reflection Paper

4

Difference Between Alert data Tools and NSM Monitoring Tools

Student’s Name:

Date Due:

Difference Between Alert data Tools and NSM Monitoring Tools

Data alerts entail predetermined actions to ensure only authorized network use. Whenever suspicious activity is discovered on a network, the user can opt to get alerts from the system (Dnsstuff, 2019). The system recognizes deviations by comparing them to predefined events in an event management system. The network monitoring service pingdom is one of the generation tools that can deliver real-time notifications should any malicious activity be detected (dnsstuff, 2019). An alert is issued to a system administrator any time a malicious action, like an unauthorized login or attempted access to a prohibited site, occurs on a network. Information on the type and location of interference or malicious activity is provided to better target countermeasures.

The information can be retrieved at a later time by a system administrator from where it was initially entered into the event management system. The alert information is located at key nodes in the network and is used to deduce network activity. The positioning priority is determined by the severity of the potential damage from illegal network access to the data being protected. Comparisons of network activity to predefined protocols help determine if data is legitimate or malicious. Information is gathered in the form of alerts whenever an unauthorized user attempts to do actions such as uninstalling a program or installing a new one (Dnsstuff, 2019).

On the other side, network security monitoring entails the collection and analysis of computer intrusions for the purpose of escalation and network protection. Tools for collecting NSMs include ones for detecting threats via networks, building proactive networks, and integrating with numerous data sources (NetFort, 2021). NSM helps businesses track down information such IP addresses, final destinations, event descriptions, and severity rankings. When a malicious event occurs, the NSM will send out notifications and provide details about any active outgoing and incoming networks. The network administrator can use the IP address to help pinpoint the source of the warning and determine whether it is related to malicious activities (NetFort, 2021).

By studying the information contained within network traffic, a system administrator can acquire valuable insight into the factors that lead to occurrences of security incidents. The efficient sharing of information about network threats achieved through packet capture has an effect on the environment. Monitoring network traffic, which is essential for deep-packet analysis, which is used to extract human-readable files and data, provides support for convergence. Deep-packet analysis is used to extract data and files (NetFort, 2021).

References

Dnsstuff. (2019). Alerting tools for IT infrastructure. https://www.dnsstuff.com/alerting-tools

NetFort. (2021). Network Security Monitoring. https://www.netfort.com/category/network-security-monitoring/