HIDS/NIDS

Host intrusion detection systems (HIDS) and network intrusion detection systems (NIDS) are methods of security management for computers and networks. In HIDS, anti-threat applications such as firewalls, antivirus software and spyware-detection programs are installed on every network computer that has two-way access to the outside environment such as the Internet. In NIDS, anti-threat software is installed only at specific points such as servers that interface between the outside environment and the network segment to be protected.

All methods of intrusion detection (ID) involve the gathering and analysis of information from various areas within a computer or network to identify possible threats posed by hackers and crackers inside or outside the organization. Host-based and network-based ID systems have their respective advantages and limitations. The most effective protection for a proprietary network is provided by a combination of both technologies.

Read more about HIDS/NIDS: - The SANS Institute answers frequently asked questions about ID. - SearchSecurity.com and SearchNetworking.com offer a learning guide to ID.

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT RSA 2008: Sourcefire founder Roesch previews Snort 3 In this video interview, Sourcefire founder and Snort creater Martin Roesch talks about the sudden departure of the company's CEO and the future of... Screencast: Opening up the Network Security Toolkit Tom Bowers reviews the basics of the browser-based Network Security toolkit, including proper configurations, tool selection and general usage. Can a firewall alone effectively block port-scanning activity? In this expert response, Mike Chapple reveals which product is the best line of defense against port scanning threats.

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary computer forensics  (SearchSecurity.com) Diffie-Hellman key exchange  (SearchSecurity.com) Diffie-Hellman key exchange, also called exponential key exchange, is a method of digital encryption that uses a number raised to specific powers to...