入侵检测系统与防火墙_入侵检测系统:它与防火墙有何不同?

入侵检测系统与防火墙

As we have already discussed that "Intrusion Detection Systems (IDS's)" are defined to be as such specially designed security software used for the purpose of detecting and informing the users and administrators about the various intrusion attacks that could be undertaken by any individual, group of individuals or organisation undertaking any malicious activity or violating security policies using computer systems against their target computer systems or computer systems which ultimately help them to attack their intended individuals or organisations.

正如我们已经讨论的那样, “入侵检测系统(IDS)”被定义为是一种特殊设计的安全软件,用于检测并通知用户和管理员有关任何个人,团体可能进行的各种入侵攻击。使用计算机系统对其目标计算机系统或计算机系统进行任何恶意活动或违反安全策略的个人或组织,最终帮助他们攻击其预期的个人或组织。

On the other hand, when we take in the consideration of "Firewall's" they are defined as -

另一方面,当我们考虑“防火墙”时,它们被定义为-

"A Firewall is network security system or security software whose functionality is to maintain the security of private networks by the means of monitoring and controlling the network traffic (both incoming and outgoing) under some predefined security standards."

防火墙是一种网络安全系统或安全软件,其功能是通过在某些预定义的安全标准下监视和控制网络流量(传入和传出)来维护专用网络的安全性。”

The Firewall acts as a barrier between trusted and untrusted computer networks like the Internet. It usually blocks unauthorized accesses i.e. intrusions to or from networks. The implementation and operation of Firewalls can be undertaken using software, hardware or combination of software and hardware.

防火墙在受信任的计算机网络和不受信任的计算机网络(例如Internet)之间起着屏障的作用。 它通常会阻止未经授权的访问,即入侵或来自网络。 可以使用软件,硬件或软件和硬件的组合来实施防火墙的实施和操作。

Now, we turn our attention to some key difference amongst Intrusion Detection Systems (IDS) and Firewalls:

现在,我们将注意力转向入侵检测系统(IDS)和防火墙之间的一些关键区别

Sr. No. Intrusion Detection System (IDS) Firewall
1) Intrusion Detection System is software installed in a computer system to detect and report intrusion attempts. Firewall is network security software which blocks unauthorised accesses by other malicious networks and permits other networks.
2) Intrusion Detection System as suggested by their names can only detect intrusion but cannot do anything to stop it. Firewalls can effectively block any malicious or unauthorised network access right away.
3) Intrusion Detection Systems can effectively provide internal security by collection of information and analysis of security issues to provide better security. Firewall does not have the ability to detect and analyse security issues in the network.
4) Intrusion Detection Systems can have a check to overall contents of a network. Firewall cannot keep check for the content of a network.
5) Intrusion Detection System requires the presence of an administrator or users due to the fact that it has to send the report to them. Firewall does not require any administrator or user to function.
6) It is usually tough for attackers to spot Intrusion Detection Systems due to the fact that they can be operated in stealth mode. Firewalls being the outer most part in the networking of computers are mostly visible thus, easy to fool by attackers.
7) Intrusion Detection System detects intrusion after it happens and signals the user. Firewall tends to stop intrusion from happening.
序号 入侵检测系统(IDS) 防火墙功能
1) 入侵检测系统是安装在计算机系统中的软件,用于检测和报告入侵尝试。 防火墙是网络安全软件,它阻止其他恶意网络的未经授权的访问并允许其他网络。
2) 顾名思义,入侵检测系统只能检测入侵,而无法采取任何措施阻止入侵。 防火墙可以立即有效地阻止任何恶意或未经授权的网络访问。
3) 入侵检测系统可以通过收集信息和分析安全问题来有效地提供内部安全性,以提供更好的安全性。 防火墙无法检测和分析网络中的安全问题。
4) 入侵检测系统可以检查网络的整体内容。 防火墙无法继续检查网络内容。
5) 入侵检测系统必须将报告发送给他们,因此要求管理员或用户在场。 防火墙不需要任何管理员或用户起作用。
6) 由于攻击者可以隐身模式工作,因此通常很难发现入侵检测系统。 因此,防火墙是计算机网络中最重要的部分,因此很容易被攻击者欺骗。
7) 入侵检测系统会在入侵发生后对其进行检测,并向用户发出信号。 防火墙倾向于阻止入侵的发生。

翻译自: https://www.includehelp.com/cyber-security/intrusion-detection-system-how-is-it-different-from-firewall.aspx

入侵检测系统与防火墙

你可能感兴趣的:(网络,安全,java,linux,区块链)