RE: host-based ips ?

From: Adam Powers (apowers@lancope.com)
Date: 04/18/03

  • Next message: Huagang Xie: "Re: host-based ips ?" 
    Date: Thu, 17 Apr 2003 21:18:33 -0400
From: "Adam Powers" <apowers@lancope.com>
To: "Quynh Nguyen Anh" <quynh@sfc.keio.ac.jp>

    Assuming "ips" in this context is an acronym for "Intrusion Prevention
    Systems", yes: Okena and Entercept.

    Both are "shim" technologies that exist as an agent on the host itself.

    On the open source side, you could look into systrace.

    Not sure on Entercept but Okena's technology looks promising (Cisco
    thought so anyway).

    -----Original Message-----
    From: Quynh Nguyen Anh [mailto:quynh@sfc.keio.ac.jp]
    Sent: Thursday, April 17, 2003 8:33 AM
    To: focus-ids@securityfocus.com
    Subject: host-based ips ?

    hello,

    there are some nips (network based ips), but i never ever heard about
    host based ips. any body have known about this?

    thanh you a lot. 

    -- 
Quynh
------------------------------------------------------------------------
------
INTRUSION PREVENTION: READY FOR PRIME TIME?
 
IntruShield now offers unprecedented Intrusion IntelligenceTM
capabilities - 
including intrusion identification, relevancy, direction, impact and
analysis - enabling a path to prevention. 
 
Download the latest white paper "Intrusion Prevention: Myths,
Challenges, and Requirements" at:
http://www.securityfocus.com/IntruVert-focus-ids
------------------------------------------------------------------------------
INTRUSION PREVENTION: READY FOR PRIME TIME?
 
IntruShield now offers unprecedented Intrusion IntelligenceTM capabilities - 
including intrusion identification, relevancy, direction, impact and analysis - enabling a path to prevention. 
 
Download the latest white paper "Intrusion Prevention: Myths, Challenges, and Requirements" at: http://www.securityfocus.com/IntruVert-focus-ids
  • Next message: Huagang Xie: "Re: host-based ips ?"

    Relevant Pages

    • Re: True definition of Intrusion Prevention
      ... >What is the difference between Intrusion Detection, ... >Intrusion Prevention versus Network Intrusion Detection, ... products as "intrusion prevention systems" (IPS). ... I'd also kick integrity monitors and hardened operating systems out of ...
      (Focus-IDS)
    • RE: Rather funny; looks like page defacement to me
      ... another security tool (VA, AV, firewall, etc.) that could have done the job ... I am not saying the IDS are always useless, but they are most useful as ... they denigrate Intrusion Prevention Systems and hail ...
      (Focus-IDS)
    • AW: General term for Gateway IDS, IDP, IPS ...
      ... I'd like to know the general term for Gateway IDS, IDP, IPS ... ... Symantec Symantec Gateway Security,TopLayer Attack Mitigator IPS, ... I know NetScreen call their products "Intrusion Detectsion ... "Intrusion Prevention Solutions." ...
      (Focus-IDS)
    • RE: True definition of Intrusion Prevention
      ... Except that most seasoned Intrusion Detection Protects have had the ... Intrusion Prevention class.. ... and measuring security posture via vulnerability ... "Protect" means trying to prevent intrusions, ...
      (Focus-IDS)
    • RE: Low cost HID based IDS system
      ... It's a matter of economics, and yes, a false sense of security is worse ... Many customers, those small & ... > INTRUSION PREVENTION: READY FOR PRIME TIME? ... > IntruShield now offers unprecedented Intrusion IntelligenceTM ...
      (Focus-IDS)
    • Quantcast