Implementing Intrusion Detection Systems
by Tim Crothers
Configuring an Intrusion Detection System (IDS) is very challenging, and if improperly configured, an IDS is rendered ineffective. Offering tips and techniques, this book shows IT and security professionals how to implement, optimize, and effectively use IDS. It covers IDS standards, intrusion signatures, log analysis, and incident handling.
Paperback
English
Brand New
Publisher Description
* Configuring an intrusion detection system (IDS) is very challenging, and if improperly configured an IDS is rendered ineffective
* Packed with real-world tips and practical techniques, this book shows IT and security professionals how to implement, optimize, and effectively use IDS
* Features coverage of the recently revised IETF IDS specification
* Covers IDS standards, managing traffic volume in the IDS, intrusion signatures, log analysis, and incident handling
* Provides step-by-step instructions for configuration procedures
Back Cover
Your in-depth guide to implementing and optimizing an effective intrusion detection system for your network Here’s the in-the-trenches handbook you’ve been looking for, loaded with information and tips from real case studies that will help you deploy, configure, and monitor an effective intrusion detection system. Step-by-step instructions guide you through the process of configuring identification and authentication, mandatory and discretionary access control, physical security, and more. You’ll get practical knowledge of honeynets, IP and MAC addressing, log analysis, and IDS standards, and learn to manage network traffic volume in the IDS. Tim Crothers gives you the benefit of his own extensive experience, furnishing sample IDS deployments and professional tips that boost your efficiency. If you’re responsible for network security, this is the guidebook that will help you get a good night’s sleep–at last.  You’ll learn how to: Implement an effective IDS for host, network, and combined systems Understand challenges like evasion, unknown attacks, and false alerts Verify, test, and fine-tune intrusion detection systems Analyze various IDS products and determine what meets your organization’s needs Cope with legal issues and architectural challenges Identify, verify, and respond to different types of attacks and alerts Investigate security breaches and prevent recurrences
Flap
Your in-depth guide to implementing and optimizing an effective intrusion detection system for your network Here's the in-the-trenches handbook you've been looking for, loaded with information and tips from real case studies that will help you deploy, configure, and monitor an effective intrusion detection system. Step-by-step instructions guide you through the process of configuring identification and authentication, mandatory and discretionary access control, physical security, and more. You'll get practical knowledge of honeynets, IP and MAC addressing, log analysis, and IDS standards, and learn to manage network traffic volume in the IDS. Tim Crothers gives you the benefit of his own extensive experience, furnishing sample IDS deployments and professional tips that boost your efficiency. If you're responsible for network security, this is the guidebook that will help you get a good night's sleep-at last. You'll learn how to: * Implement an effective IDS for host, network, and combined systems * Understand challenges like evasion, unknown attacks, and false alerts * Verify, test, and fine-tune intrusion detection systems * Analyze various IDS products and determine what meets your organization's needs * Cope with legal issues and architectural challenges * Identify, verify, and respond to different types of attacks and alerts * Investigate security breaches and prevent recurrences
Table of Contents
Preface.
Acknowledgments.
Chapter 1: An Overview of Intrusion Detection.
Chapter 2: Network-Based Intrusion Detection Systems.
Chapter 3: Host-Based Intrusion Detection.
Chapter 4: Handling Alerts.
Chapter 5: Coping with Challenges to IDS.
Chapter 6: Deploying IDS.
Chapter 7: Maximizing Your IDS.
Chapter 8: Sample IDS Deployment.
Appendix A: Understanding tcpdump Packet Headers.
Appendix B: Additional Resources.
Appendix C: Glossary.
Appendix D: TCP/IP Quick Reference.
Appendix E: IDS Product Information.
Index.
Long Description
Your in-depth guide to implementing and optimizing an effective intrusion detection system for your network Here s the in-the-trenches handbook you ve been looking for, loaded with information and tips from real case studies that will help you deploy, configure, and monitor an effective intrusion detection system. Step-by-step instructions guide you through the process of configuring identification and authentication, mandatory and discretionary access control, physical security, and more. You ll get practical knowledge of honeynets, IP and MAC addressing, log analysis, and IDS standards, and learn to manage network traffic volume in the IDS. Tim Crothers gives you the benefit of his own extensive experience, furnishing sample IDS deployments and professional tips that boost your efficiency. If you re responsible for network security, this is the guidebook that will help you get a good night s sleep at last.
Feature
Covers host, network and combined systems, managing traffic volume in IDS, intrusion signatures, log analysis, and incident handling. Provides step-by-step instructions for configuration procedures such as configuring identification and authentication, mandatory and discretionary access control, and physical security. Filters out any unnecessary theoretical information to provide real-world, hands-on information.
Details
