Information Technology and Services

Intrusion Detection

An intrusion detection system (IDS) can be a device or software application that monitors network or system activities for malicious activities or policy violations and produces reports to a management station. Newer IDS called IPS (Intrusion Prevention System) may attempt to stop an intrusion attempt but this is neither required nor expected of a monitoring system.

Information Technology Services (ITS) continually monitors University network for conditions that could harm the network or the computers connected to it.

Why do we need a IDS?

Intrusion detection systems (IDS) are primarily focused on monitoring web traffic, identifying possible IT Security incidents, logging information about them, and reporting hack attempts. IDS are essential for critical networks to help detect and respond appropriately to IT security incidents. IDS are sometimes mandated by compliance guidelines like PCI-DSS etc for specific scenarios.

How can we help?

IT Security team provides consultation on IDS monitoring required for Univeristy Network. Please contact us atITSECURITY@listserv@syr.edu.

Last Updated: 05/08/13

US Cert Alerts


Sat, 01 Jul 2017 05:41:37 +0000
TA17-181A: Petya Ransomware

Tue, 13 Jun 2017 15:45:09 +0000
TA17-164A: HIDDEN COBRA – North Korea’s DDoS Botnet Infrastructure

Mon, 12 Jun 2017 21:44:47 +0000
TA17-163A: CrashOverride Malware