Information Technology and Services

Intrusion Detection

An intrusion detection system (IDS) can be a device or software application that monitors network or system activities for malicious activities or policy violations and produces reports to a management station. Newer IDS called IPS (Intrusion Prevention System) may attempt to stop an intrusion attempt but this is neither required nor expected of a monitoring system.

Information Technology Services (ITS) continually monitors University network for conditions that could harm the network or the computers connected to it.

Why do we need a IDS?

Intrusion detection systems (IDS) are primarily focused on monitoring web traffic, identifying possible IT Security incidents, logging information about them, and reporting hack attempts. IDS are essential for critical networks to help detect and respond appropriately to IT security incidents. IDS are sometimes mandated by compliance guidelines like PCI-DSS etc for specific scenarios.

How can we help?

IT Security team provides consultation on IDS monitoring required for Univeristy Network. Please contact us atITSECURITY@listserv@syr.edu.

Last Updated: 05/08/13