|
Host Based IPS |
|
Intrusion Prevention systems are available in two types.
- Network based Intrusion Prevention systems
- Host based Intrusion Prevention Systems
Network based Intrusion Prevention Systems are installed in a network segment and examine packets as they traverse the network.
Host
based Intrusion Prevention Systems are installed on servers and work
stations. They examine application actions and look for calls which are
prohibited.
The host-based IPS provides protection against
viruses, spams, spywares, worms, Trojan horse programs, key loggers,
bots, buffer overflows, rootkits, and Denial of Service (DoS) and
Distributed Denial of Service (DDoS) attacks, etc.
Network
based IPS can stop attacks that come in from the Internet. However, it
is not completely ideal for identifying and protecting from an internal
attack. If you are concerned about internal attacks, a host-based IPS
is the ideal solution. Sometimes deploying a host-based IPS along with
a network-based IPS is required for multiple layers of protection.
Host-based IPSs can be an additional level of security to the firewall
and antivirus solutions.
Or experts understand your needs and
recommend appropriate products. We educate you about the kinds of
attacks and make sure that the solution chosen prevents the types of
attacks that you are most concerned about.
Planning is very
important before deciding on a host-based IPS. Since these products
block (rather than just alert), they can even stop legitimate processes
& traffic. We help you in understanding the suitability of this
solution and ensure high security to your network. |
|
|
