An Intrusion Detection System (or IDS) generally detects unwanted manipulations to systems. There are a lot of different types of IDS, some of them are described here. The manipulations may take the form of attacks by skilled malicious hackers, or script kiddies using automated tools.
An Intrusion Detection System is required to detect all types of malicious network traffic and computer usage that can't be detected by a conventional firewall. This includes network attacks against vulnerable services, data driven attacks on applications, host based attacks such as privilege escalation, unauthorized logins and access to sensitive files, and malware (viruses, trojan horses, and worms).
An IDS is composed of several components: Sensors which generate security events, a Console to monitor events and alerts and control the sensors, and a central Engine that records events logged by the sensors in a database and uses a system of rules to generate alerts from security events received. There are several ways to categorise an IDS depending on the type and location of the sensors and the methodology used by the engine to generate alerts. In many simple IDS implementations all three components are combined in a single device or appliance.
Gartner Revises Server Share Numbers Thu, 03 Jul 2008 18:43:24 -0400
Gartner revised its first quarter numbers and found that IBM actually beat out Hewlett-Packard in server revenue.... Who Is Running The Most Secure Browser? Thu, 03 Jul 2008 14:03:13 -0400
Many users are undoubtedly not updating their browsers as quickly as they should, but you can't conclude any specifics about that from the recent study of Google logs.... DOJ Sued Over Cell Phone Tracking Practices Wed, 02 Jul 2008 17:08:34 -0400
Civil liberties groups claim the Justice Department is bypassing warrants to obtain real-time tracking information on U.S. citizens.... Microsoft Internet Explorer Security Strikes Back Wed, 02 Jul 2008 17:03:53 -0400
Microsoft Internet Explorer 8 Beta 2 security builds on the Phishing Filter of IE 7 and thwarts cross-site scripting.... IBM Helps Link POS to the Back Office Wed, 02 Jul 2008 16:50:30 -0400
IBM and Epicor jointly release an offering that centrally manages and supports POS....
The Seattle Times: Business & Technology
Troubles shadow G-8 summit Fri, 04 Jul 2008 20:36:36 -0700 Between surging oil prices, food inflation and a credit crunch that's depressed global growth, leaders from the Group of Eight economic... Florida may signal boom in coastal oil drilling Fri, 04 Jul 2008 20:26:48 -0700 Oil companies once viewed drilling in the deep waters off Florida as cost-prohibitive. Politicians feared even the slightest sign of support... U.S. share of foreign tourists slips, travel experts say Fri, 04 Jul 2008 20:38:41 -0700 Despite the weak U.S. dollar, a boom in international travel around the world hasn't translated into an explosion of foreign tourists to...
Stealing ideas from nature Fri, 04 Jul 2008 10:01:21 -0400 When self-confessed "nature nerd" Janine Benyus coined the term "biomimicry" in a book she published a decade ago, little did she know it would make her a household name, rubbing shoulders with Hollywood stars.
Faked tiger photo sparks Web furor Fri, 04 Jul 2008 14:23:49 -0400 Read full story for latest details.
Tunguska blast still a mystery 100 years on Fri, 04 Jul 2008 10:17:51 -0400 It produced a blast hundreds of times stronger than the Hiroshima bomb, was seen hundreds of miles away and narrowly missed obliterating an entire city -- but 100 years to the week after the mysterious explosion in Siberia, no one is any closer to understanding what caused it.
NPR Topics: Technology
Viacom May Soon Have Your YouTube Password Fri, 04 Jul 2008 16:00:00 -0400 A judge ordered YouTube to hand over the log-on names and the Internet addresses of its users to media giant Viacom. The matter is stirring up major privacy concerns. We Know What You've Been Watching on YouTube Fri, 04 Jul 2008 13:13:00 -0400 A court has ordered Google to turn over a database that links users to every video they've watched on the popular Web site YouTube. Jennifer Urban, director of the University of Southern California Intellectual Property and Technology Law Clinic, says the ruling has big implications for online privacy. Twitter, What Are You Doing? Co-Founder Tells All Thu, 03 Jul 2008 10:51:00 -0400 Twitter.com has so many new users that the Web site keeps crashing. Meanwhile, Twitter engineers are taking popular features away for retooling. It's a painful process, but co-founder Biz Stone has a plan.
BBC News | Technology | UK Edition
Google 'faces Street View block' Fri, 04 Jul 2008 07:56:34 -0000 Google's plans to launch a mapping tool in the UK could be referred to the Information Commissioner. Warning letters to 'file-sharers' Thu, 03 Jul 2008 17:41:04 -0000 The music industry says thousands of UK broadband users who share tracks illegally will be warned about it in letters. Google must divulge YouTube log Thu, 03 Jul 2008 20:19:53 -0000 Google must divulge the viewing habits of every user who has ever watched avideo on YouTube, says a US court.
Reuters Video: Technology
Japan asks: anybody out there? Fri, 04 Jul 2008 12:02:00 -0400 Jul. 4 - Japan's biggest astronomical observatories are teaming up for a fresh quest to find out if there is life in outer space.
Reuters Technology Week Thu, 03 Jul 2008 19:52:38 -0400 Jul. 3 - The robo-bartender, virtual haute couture, and global leaders ride hydrogen style.
Robo barman pulls first pint Thu, 03 Jul 2008 09:03:25 -0400 Jul. 3 - Billed as the world's first robot barman, Mr Asahi pulls the crowds at London's Selfridges department store.
AP Top Technology News At 6:44 p.m. EDT
Court orders YouTube to give Viacom video logs By ANICK JESDANUN Fri, 04 Jul 2008 11:52:13 -0000 NEW YORK (AP) -- Dismissing privacy concerns, a federal judge overseeing a $1 billion copyright-infringement lawsuit against YouTube has ordered the popular online video-sharing service to disclose who watches which video clips and when.... 2 teens attacked in town mocked in YouTube videos Fri, 04 Jul 2008 22:44:12 -0000 DOVER, N.Y. (AP) -- Two teenagers who drove to Oniontown after a series of YouTube videos portrayed the hamlet as a run-down, backwoods dump were pelted with rocks by an angry group of young residents, authorities said.... Internet addressing agency loses its own addresses Thu, 03 Jul 2008 20:57:41 -0000 NEW YORK (AP) -- This doesn't sound good: The nonprofit agency in charge of the Internet's addresses recently lost track of its own....
CNET News.com
iPhone 3G queue forms in Manhattan Sat, 05 Jul 2008 15:25:00 -0700 But the usual suspects--gadget fanatics--aren't the ones at the front of the line. Privacy advocates praise Google's new link Sat, 05 Jul 2008 09:55:00 -0700 Company's decision to add a link to its home page that leads to its Privacy Center is enough to quell a controversy. Photos: Army designates year's best inventions Sat, 05 Jul 2008 08:00:00 -0700 Every year, the U.S. Army designates a set of top inventions. This year's list includes a GPS-guided artillery shell and a new method for saving severely injured soldiers.
SecurityFocus - Intrusion detection focus area; designed to assist discussion on security related topics, and provides a comprehensive database of security knowledge and resources. It also hosts the BUGTRAQ mailing list.
Meta Description: [ SecurityFocus is designed to facilitate discussion on computer security related topics, create computer security awareness, and to provide the Internet's largest and most comprehensive database of computer security knowledge and resources to the public. It also hosts the BUGTRAQ mailing list. ]
COAST Intrusion Detection Hostlist - Clearinghouse listing of many of the Internet resources associated with intrusion detection and prevention systems. Includes inventories of commercial products, research projects, and other IDS-centric material.
Deepnines Technologies - Network security solution designed for deployment immediately outside the perimeter. Product suite integrates firewall, intrusion prevention, secure content management, and forensics reporting.
DShield - Distributed Intrusion Detection System. Submit your own firewall log excerpts or browse through current activity reported to the system. Features a list of the most wanted abusive IP addresses.
Meta Description: [ Distributed Intrusion Detection System. Submit your firewall log excerpts or browse through current activity reported to the system. Featuring a list of 10 Most Wanted IP Addresses ]
Internet Storm Center - Operated by the SANS Institute, the ISC provides a user-supported infrastructure for intrusion detection systems to share information about ongoing attacks that span countries, networks, and administrative boundaries.
Meta Description: [ SANS Internet Storm Center - A Cooperative cyber threat monitor and alert system. Featuring daily handler diaries with
summarizing and analyzing new threats and events. ]
500Intrusion Detection System Resources - Comprehensive collection of tutorials, product reviews, general information and other resources dealing with Intrusion Detection and Prevention Systems.
Meta Description: [ Features a wealth of tutorials on various Windows networking related topics such as setting up Windows NT/XP/2000/2003 networks, troubleshooting, connectivity and more. Also includes a comprehensive archive of reviewed networking software. ]
Linux Security IDS - An excellent source of IDS-related information, including security best practices, audit procedures, penetration testing, community information and more.
404LinuxSecurity IDS Resources - Comprehensive collection of IDS-related resources made available by the linuxsecurity.com community.
Michael Sobirey's IDS Page - An excellent index of most currently available IDS and IPS products, including vendor contact information.
NetWitness - Network monitoring tool that helps identify inappropriate use of network resources using live traffic analysis or output from other IDS systems.
Meta Description: [ Instantly Determine the Intent, Scope and Magnitude of Network Threats with NetWitness Forensic Analysis Software ]
Privacyware Intrusion Prevention and Detection - Extends the capabilities of conventional security systems to help manage threats more efficiently and effectively. Includes a wide array of intrusion detection and analysis tools for Windows servers.
Meta Description: [ Personal Firewall, Intrusion Prevention, Advanced Threat Prevention and Security Intelligence Solutions - Privacyware ]
404Security Library - Collection of detailed technical papers on focusing on TCP networks, Intrusion Detection Systems, firewall protection and more.