Identifying Malicious Traffic on the Network

Search in book...
Toggle Font Controls
Create new playlist

Name your new playlist

Playlist description (optional)
Sign In

Email address

Password

Forgot Password?

or

Continue with Facebook

Continue with Google
Sign Up

Full Name

Email address

Confirm Email Address

Password

or

Continue with Facebook

Continue with Google

Identifying Malicious Traffic on the Network

Sensors can identify malicious traffic in many different ways. This section examines some of the techniques used by IPS and IDS sensors.

When the sensor is analyzing traffic, it looks for malicious traffic based on the rules that are currently in place on that sensor. There are several different methods that sensors can be configured to use to identify malicious traffic, including the following:

Signature-based IPS/IDS

Policy-based IPS/IDS

Anomaly-based IPS/IDS

Reputation-based IPS/IDS

Let’s take a look at each of these options now.

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.

Table of Contents for Identifying Malicious Traffic on the Network

Create new playlist

Sign In

Sign Up

Identifying Malicious Traffic on the Network

Table of Contents for
Identifying Malicious Traffic on the Network