Application protocol-based intrusion detection system: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 12:42, 22 May 2009 edit 75.145.95.81 (talk) →Monitoring dynamic behavior Tag: repeating characters ← Previous edit		Latest revision as of 18:42, 22 October 2024 edit undo BattyBot (talk \| contribs) Bots 1,957,321 edits →top: Removed Template:Multiple issues and General fixes Tag: AWB
(20 intermediate revisions by 18 users not shown)
Line 1: {{notability\|date=April 2012}} An '''application protocol-based intrusion detection system''' ('''APIDS)''') is an [[intrusion detection system]] that focuses its monitoring and analysis on a specific application [[protocol (computing)\|protocol]] or protocols in use by the computing system.<ref>{{Cite web \|date=2024-04-01 \|title=6 Types of Intrusion Detection System \|url=https://internationalsecurityjournal.com/types-of-intrusion-detection-system/ \|access-date=2024-07-09 \|website=internationalsecurityjournal.com \|language=en-GB}}</ref> == Overview == An APIDS will monitor the dynamic behavior and [[state (computer science)\|state]] of the protocol and will typically consist of a system or agent that would typically sit between a [[process (computing)\|process]], or group of [[server (computing)\|server]]s, [[System Monitoring\|monitoring]] and analyzing the application protocol between two connected devices. A typical place for an APIDS would be between a [[web server]] and the [[database management system]], monitoring the [[SQL]] protocol specific to the [[middleware]]/[[business logic]] as it interacts with the [[database]].<ref>{{Cite web \|date=2023-04-19 \|title=What is an Intrusion Detection System (IDS)? {{!}} IBM \|url=https://www.ibm.com/topics/intrusion-detection-system \|access-date=2024-07-09 \|website=www.ibm.com \|language=en-us}}</ref> ~~Andre thinks he knows everything~~ == Monitoring dynamic behavior == Line 13: Thus, an APIDS, correctly configured, will allow an application to be "[[fingerprint]]ed", thus should that application be subverted or changed, so will the fingerprint change. ~~ANDRE THINKS HE KNOWS EVERYTHING!!!!!!!!!!!!!!!!!!!!!!~~ ==See also== * [[Intrusion detection system]] (IDS) * [[Application firewall\|Web application firewall (WAF)]] * [http://www.secerno.com/] Secerno is an example of SQL APIDS ==References== [[Category:Intrusion detection system]]▼ {{reflist}} ▲[[Category:Intrusion detection ~~system~~systems]] [[es:APIDS]]▼ ~~[[ko:호스트 기반 침입 탐지 시스템]]~~ ~~[[it:Application Protocol intrusion detection system]]~~ ~~ANDRE THIKS HE KNOWS EVERthing~~ {{software-type-stub}} {{security-software-stub}} ▲[[es:APIDS]]