Cbyer Secuirty
luckyqloo
DQ1..DG.docxRespond to student……support your response….100 min
IPS can be crippling to an organization if it isn't tuned properly. If it isn't tuned properly it can deny the flow of legitimate traffic through the system and cripple it. IPS is the better choice in my opinion because it can not only detect threats but it can prevent them as well.
An IPS is similar to an IDS, except that they are able to block potential threats as well. They monitor, log and report activities, similarly to an IDS, but they are also capable of stopping threats without the system administrator getting involved. If an IPS is not tuned correctly, it can also deny legitimate traffic, so they are not suitable for all applications. (Rapid7, 2017)
It is imperative that whomever is in charge of the system updates the signature library as much as possible. This will lead to less false positives in the system and allow better flow of traffic.
Rapid7. (2017). The pros and cons of intrusion detection systems. Retrieved from https://blog.rapid7.com/2017/01/11/the-pros-cons-of-intrusion-detection-systems/
Invensys. (2018). Process control network security: Intrusion prevention in a control systems environment. Retrieved from https://www.chemicalprocessing.com/assets/Media/MediaManager/Invensys_Intrusion_Prevention.pdf
Respond to student
…
…
support your response
…
.100 min
IPS can be crippling to an organization if it isn't tuned properly. If it isn't tuned pr
operly it can deny the
flow of legitimate traffic through the system and cripple it. IPS is the better choice in my opinion
because it can not only detect threats but it can prevent them as well.
An IPS is similar to an IDS, except that they are able to b
lock potential threats as well. They monitor, log
and report activities, similarly to an IDS, but they are also capable of stopping threats without the
system administrator getting involved. If an IPS is not tuned correctly, it can also deny legitimate tra
ffic,
so they are not suitable for all applications. (Rapid7, 2017)
It is imperative that whomever is in charge of the system updates the signature library as much as
possible. This will lead to less false positives in the system and allow better flow of
traffic.
Rapid7. (2017). The pros and cons of intrusion detection systems. Retrieved
from
https://blog.rapid7.com/2017/01/11/the
-
pros
-
cons
-
of
-
intrusion
-
detection
-
systems/
Invensys. (2018). Process control network security: Intrusion prevention in a c
ontrol systems
environment. Retrieved
from
https://www.chemicalprocessing.com/assets/Media/MediaManager/Invensys_Intrusion_Preventi
on.pdf
Respond to student……support your response….100 min
IPS can be crippling to an organization if it isn't tuned properly. If it isn't tuned properly it can deny the
flow of legitimate traffic through the system and cripple it. IPS is the better choice in my opinion
because it can not only detect threats but it can prevent them as well.
An IPS is similar to an IDS, except that they are able to block potential threats as well. They monitor, log
and report activities, similarly to an IDS, but they are also capable of stopping threats without the
system administrator getting involved. If an IPS is not tuned correctly, it can also deny legitimate traffic,
so they are not suitable for all applications. (Rapid7, 2017)
It is imperative that whomever is in charge of the system updates the signature library as much as
possible. This will lead to less false positives in the system and allow better flow of traffic.
Rapid7. (2017). The pros and cons of intrusion detection systems. Retrieved
from https://blog.rapid7.com/2017/01/11/the-pros-cons-of-intrusion-detection-systems/
Invensys. (2018). Process control network security: Intrusion prevention in a control systems
environment. Retrieved
from https://www.chemicalprocessing.com/assets/Media/MediaManager/Invensys_Intrusion_Preventi
on.pdf
