A Comprehensive Study of Intrusion Detection and Prevention Systems

A computer network is simply an interconnection of several computers that follow common communication protocols. As network intrusion has been increasingly affecting organizational systems and crucial data, it is imperative that there exists an effective network security system in place. This is where the role of a sound intrusion detection system becomes important in an era where attempts at unauthorized access have become the norm rather than the exception. Such a system helps to keep malicious traffic at a distance and protects the computer network from a variety of threats. In this chapter, a study has been done in order to understand the system of an Intrusion Detection and Prevension System (IDPS), which not only helps detecting an ongoing intrusion, but also helps prevent it for future cases. Its functioning and comparison between the two divisions. Towards the end, an attempt has been made to enlist the administrator's functions towards ensuring the security of the computer network and understand what current challenges are being faced by the researchers and how they have tried to solve it.