作者:Earl Carter, Jonathan Hogue
出版日期:January 28, 2006
出版社:Cisco Press
页数:312
ISBN:ISBN-10: 1587052393 ISBN-13: 978-1587052392
文件格式:CHM
Product DescriptionAn introduction to network attack mitigation with IPS
Where did IPS come from? How has it evolved?How does IPS work? What components does it have?What security needs can IPS address?Does IPS work with other security products? What is the “big picture”?What are the best practices related to IPS?How is IPS deployed, and what should be considered prior to a deployment?
Intrusion Prevention Fundamentalsoffers an introduction and in-depth overview of Intrusion PreventionSystems (IPS) technology. Using real-world scenarios and practical casestudies, this book walks you through the lifecycle of an IPSproject–from needs definition to deployment considerations.Implementation examples help you learn how IPS works, so you can makedecisions about how and when to use the technology and understand what“flavors” of IPS are available. The book will answer questions like:
Whether you are evaluating IPStechnologies or want to learn how to deploy and manage IPS in yournetwork, this book is an invaluable resource for anyone who needs toknow how IPS technology works, what problems it can or cannot solve,how it is deployed, and where it fits in the larger securitymarketplace.
Understand the types, triggers, and actions of IPS signaturesDeploy, configure, and monitor IPS activities and secure IPS communicationsLearn the capabilities, benefits, and limitations of host IPSExamine the inner workings of host IPS agents and management infrastructuresEnhance your network security posture by deploying network IPS featuresEvaluate the various network IPS sensor types and management optionsExamine real-world host and network IPS deployment scenarios
This book is part of the CiscoPress® Fundamentals Series. Books in this series introduce networkingprofessionals to new networking technologies, covering networktopologies, example deployment concepts, protocols, and managementtechniques.
About the Author
Earl Carter is aconsulting engineer and member of the Security Technologies AssessmentTeam (STAT) for Cisco Systems®. He performs security evaluations onnumerous Cisco® products, including everything from the PIX® Firewalland VPN solutions to Cisco CallManager and other VoIP products. Earlstarted with Cisco doing research for Cisco Secure Intrusion DetectionSystem (formerly NetRanger) and Cisco Secure Scanner (formerlyNetSonar).
Jonathan Hogue, CISSP, isa technical marketing engineer in the Cisco security business unitwhere his primary focus is the Cisco Security Agent. He has beeninvolved with host-based security products since 1999 when he joinedTrend Micro. In 2001, he began working with one of the first hostintrusion prevention products, StormWatch by Okena, Inc. Okena wassubsequently acquired by Cisco Systems.