Intrusion Detection Systems

Muzera ranhasi redhijitari, cybersecurity yakakosha zvakanyanya. Chimwe chinhu chakakosha mukuchengetedza network yako kubva kune isina mvumo iIntrusion Detection System (IDS). Ichi chinyorwa chichaongorora IDS, kuti inoshanda sei, uye nei yakakosha mukusimudzira cybersecurity dziviriro.

Chii chinonzi Intrusion Detection System (IDS)?

An Intrusion Detection System (IDS) chishandiso chekuchengetedza chinotarisisa network traffic uye chinoona zvisina mvumo kana fungidziro. Inoshanda nekuongorora mapaketi etiweki uye nekuaenzanisa nedhatabhesi yemasaini anozivikanwa ekurwisa kana maitiro ekuita. Kana IDS yaona kupindirwa kunogona kuita, inogona kuburitsa chenjedzo kana kutora nhanho kuvharisa chiitiko chekufungidzira. IDSs inogona kunge iri network-based, yekutarisa network traffic, kana host-based, yekutarisa chiitiko pamidziyo yega. Pakazere, IDS inoita basa rakakosha mukuziva nekudzivirira kutyisidzira kwe cyber, zvichibatsira kuchengetedza network yako uye data inonzwisisika.

IDS inoshanda sei?

Iyo Intrusion Detection System (IDS) inoshanda nekugara ichitarisisa network traffic uye kuiongorora kune chero zviratidzo zvekusatenderwa kana kufungidzira chiitiko. Inofananidza mapaketi etiweki achipesana nedhatabhesi yeanozivikanwa ekurwisa masiginicha kana maitiro ekuita. Kana iyo IDS ikaona chero chiitiko chinoenderana nemasiginecha aya kana mapatani, inogona kuburitsa yambiro yekuzivisa manetiweki maneja. Iyo yambiro inogona kusanganisira ruzivo nezve rudzi rwekurwiswa, kwainobva IP kero, uye yakananga IP kero. Mune zvimwe zviitiko, iyo IDS inogona zvakare kuvharira chiitiko chekufungidzira, sekuvhara IP kero kana kumisa kubatana. Pakazere, IDS chinhu chakakosha cybersecurity chishandiso sezvo ichibatsira kuziva nekudzivirira zvinogona kutyisidzira cyber, kuve nechokwadi chekuchengetedzwa kwetiweki yako uye data inonzwisisika.

Mhando dzeIDS: Network-based vs. Host-based.

Mhando mbiri huru dzeIntrusion Detection Systems (IDS) dziripo: network-based IDS uye host-based IDS.

Network-based IDS monitors uye inoongorora network traffic kune chero zviratidzo zvekusatenderwa kana kufungidzira chiitiko. Inogona kuona kurwiswa kwakananga kunetiweki sese, senge port scanning, kurambwa kwesevhisi kurwiswa, kana kuyedza kushandisa kusazvibata mumatiweki protocol. Network-based IDSs inowanzoiswa panzvimbo dzakasimba munetiweki, senge parimita kana mukati mezvikamu zvakakosha, kutarisa zvese zvinopinda uye zvinobuda.

Kune rimwe divi, iyo host-yakavakirwa IDS inotarisa kune yega mauto kana zvishandiso mukati metiweki. Iyo inotarisisa chiitiko pane chaiyo saiti, sevhavha kana nzvimbo yekushandira, uye inotarisa chero zviratidzo zvekusvika kusingatenderwe kana maitiro akashata. Host-based IDSs inogona kuona kurwiswa kwakanangana nemumwe muenzi, senge malware kutapukira, shanduko dzisina mvumo kumafaira ehurongwa, kana fungidziro yemushandisi.

Network-yakavakirwa uye inotambira-yakavakirwa maIDS ane zvakanakira uye anogona kutsigirana mune yakazara cybersecurity zano. Network-based IDs inopa yakafara network maonero uye inogona kuona kurwiswa kunonangana akawanda mahosi kana zvishandiso. Host-based IDSs, kune rumwe rutivi, inopa ruzivo rwakadzama nezve chiitiko chiri kuitika kune ega ega uye anogona kuona kurwiswa kungangoenda kusingaonekwe padanho retiweki.

Nekushandisa marudzi ese eIDS, masangano anogona kusimudzira dziviriro yavo yecybersecurity uye kuona zvirinani nekudzivirira kupinda kusina mvumo kunetiweki yavo.

Mabhenefiti ekushandisa IDS.

Kuita Intrusion Detection System (IDS) inogona kupa akati wandei mabhenefiti kumasangano ari kutsvaga kusimudzira kuchengetedzwa kwecybersecurity.

Chekutanga, IDS inogona kubatsira kuona nekudzivirira kupinda kunetiweki kusina mvumo. IDS inogona kuona chiitiko chekufungidzira kana chakaipa uye kunyevera sangano nezvekutyisidzira nekutarisa network traffic kana munhu anotambira. Kukurumidza kuona uku kunogona kubatsira kudzivirira kutyora kwedata, kuwana kusingatenderwe kune ruzivo rwakadzama, kana kupararira kwemalware mukati metiweki.

Chechipiri, IDS inogona kupa ruzivo rwakakosha mumhando dzekurwiswa nekusagadzikana kwakanangana nenetiweki yesangano. Nekuongorora maitiro uye masiginecha ekurwiswa kwakaonekwa, masangano anogona kunzwisisa zviri nani kusasimba kwetiweki yavo uye kutora matanho ekutanga kusimbisa matanho avo ekuchengetedza.

Pamusoro pezvo, IDS inogona kubatsira mukupindura kwechiitiko uye kuferefeta. Kana chiitiko chekuchengetedza chikaitika, IDS inogona kupa matanda akadzama uye ruzivo nezve kurwiswa, kubatsira masangano kuona kwakabva, kuongorora kukanganisa, uye kutora matanho akakodzera kuderedza kukuvadzwa.

Uyezve, kuita IDS kunogona kubatsira masangano kutevedzera zvinodiwa neindasitiri zviyero. Mitemo mizhinji nehurongwa, sePayment Kadhi Indasitiri Data Security Standard (PCI DSS) kana iyo Health Insurance Portability uye Accountability Act (HIPAA), inoda kuti masangano ave nehunyanzvi hwekuona ekudzivirira kuchengetedza data rakadzama.

Pakazere, IDS chinhu chakakosha cheiyo yakazara cybersecurity zano. IDS inogona kuwedzera zvakanyanya kudzivirira kwesangano cybersecurity nekuona nekudzivirira kupinda kunetiweki kusingatenderwe, ichipa ruzivo mukusagadzikana, kubatsira mukupindura kwezviitiko, uye kuve nechokwadi chekutevedzwa kwemitemo.

Maitiro akanakisa ekugadzirisa uye kubata IDS.

Kugadzirisa uye kugadzirisa Intrusion Detection System (IDS) zvinoda kunyatsoronga uye kuita kuti ive nechokwadi chekubudirira kwayo mukuona nekudzivirira kupinda kusina mvumo kunetiweki yako. Heano mamwe maitiro akanakisa ekufunga nezvawo:

1. Tsanangura zvinangwa zvakajeka: Usati washandisa IDS, tsanangura zvakajeka zvinangwa zvesangano rako uye zvaunoda kuzadzisa nehurongwa. Izvi zvichabatsira kutungamira yako kumisikidzwa uye manejimendi sarudzo.

2. Gara uchivandudza masiginicha: IDS inotsamira pamasiginicha kuti ione kutyisidzira kunozivikanwa. Izvo zvakakosha kuti ugare uchigadziridza aya masiginecha kuti ugare uchienderana nekutyisidzira kwazvino nekusagadzikana. Funga nezve otomatiki maitiro ekuvandudza kuti uve nechokwadi chekuvandudza panguva.

3. Gadzirisa mitemo uye chenjedzo: Gadzirisa mitemo yeIDS uye yambiro kuti ienderane nezvinodiwa nesangano rako uye netiweki nharaunda. Izvi zvichabatsira kuderedza nhema dzenhema uye kutarisa kune zvakanyanya kutyisidzira.

4. Chengetedza uye ongorora chenjedzo: Chengetedza tarisa uye ongorora zviziviso zvinogadzirwa neIDS. Izvi zvichabatsira kuziva maitiro, maitiro, uye zvinogona kuitika zvekuchengetedza zviitiko. Gadzirisa yepakati matanda uye yekuongorora sisitimu kuti igadzirise maitiro aya.

5. Ita ongororo yenguva dzose yekusagadzikana: Gara uchiongorora network yako nekuda kwekusagadzikana uye kushaya simba. Shandisa zviono zvakawanwa kubva muongororo idzi kunyatso gadzirisa IDS yako uye kuisa pamberi pekuchengetedza matanho.

6. Bata pamwe nemamwe maturusi ekuchengetedza: Batanidza IDS yako nemamwe maturusi ekuchengetedza, akadai semafirewall uye antivirus software, kuti ugadzire nzira yekudzivirira yakaturikidzana. Kudyidzana uku kunogona kusimudzira kushanda kwese kwekuchengetedza kwako cybersecurity.

7. Rovedza uye dzidzisa vashandi: Iva nechokwadi chekuti vashandi vako veIT vane basa rekutarisira IDS vakanyatsodzidziswa uye vakadzidziswa pane zvavanogona uye maitiro akanaka. Izvi zvichabatsira kuwedzera kugona kweiyo system uye kuve nechokwadi chekutonga kwakanaka.

8. Ita ongororo nguva dzose: Ita ongororo yenguva nenguva yeIDS yako yekumisikidza uye manejimendi maitiro kuti uone chero mapundu kana nzvimbo dzekuvandudza. Izvi zvichabatsira kuchengetedza kushanda kwehurongwa uye kugadzirisa kutyisidzira kuri kubuda.

9. Gara uchiziva nezve kutyisidzira kuri kubuda: Ramba uine ruzivo nezvezvichangoburwa zvecybersecurity maitiro, kusasimba, uye maitiro ekurwisa. Ruzivo urwu ruchakubatsira iwe kunyatso kugadzirisa yako IDS kumisikidzwa uye manejimendi maitiro ekugadzirisa kutyisidzira kuri kubuda.

10. Ramba uchiongorora nekuvandudza: Gara uchiongorora kushanda uye kushanda kweIDS yako. Shandisa metrics uye mhinduro kuona nzvimbo dzekuvandudza uye kuita shanduko dzinodiwa kuti uwedzere dziviriro yako yecybersecurity.

Nekutevera aya akanakisa maitiro, unogona kukwidziridza magadzirirwo uye manejimendi eIDS yako, kuve nechokwadi kuti inoita basa rakakosha mukuona nekudzivirira kupinda kusina mvumo kunetiweki yako.

Ungaziva sei kana hacker iri pamba pako kana bhizinesi network?

Most masangano tsvaga kunonoka kuti vakakanganiswa. Kambani yakabirwa inowanzoziviswa nezvekutyorwa kwayo nekambani yechitatu bato. Nekudaro, vamwe vanogona kusamboziviswa uye kungoziva mushure memumwe wemumhuri mavo kana bhizimisi akabira chitupa chavo. Pfungwa iripo ndeye Hacker vachapinda. Saka, uchaziva sei kana kuziva kana vapinda?

Heano Kumwe kutyora kukuru kwakaitika kumabhizinesi akazvimiririra nehurumende

  • Equifax: MaCybercriminals akapinda muEquifax (EFX), imwe yemahofisi makuru echikwereti, muna Chikunguru uye akaba ruzivo rwemunhu rwevanhu 145 miriyoni. Yaionekwa seimwe yekutyorwa kwakanyanya kwakamboitika nekuda kweruzivo rwakadzama rwakafumurwa, kusanganisira nhamba dzeSocial Security.
  • A Yahoo bombshell: Kambani yevabereki Verizon (VZ) yakazivisa muna Gumiguru kuti yega yega maakaundi eYahoo mabhiriyoni matatu akabirwa muna 3 - katatu pane zvakambofungwa.
  • Yakaburitswa Zvishandiso zveHurumende: Muna Kubvumbi, boka risingazivikanwe rainzi Shadow Brokers rakaburitsa sutu yezvishandiso zvekubira zvinotendwa kuti ndezveNational Security Agency.
    Zvishandiso zvacho zvaibvumira matsotsi kukanganisa akasiyana maseva eWindows uye masisitimu anoshanda, anosanganisira Windows 7 uye 8.
  • WannaCry: WannaCry, iyo yakatora nyika dzinopfuura zana nemakumi mashanu, yakawedzera mamwe maturusi eNSA akaburitswa. Muna Chivabvu, iyo ransomware yakanangana nemabhizinesi ari kuita zvechinyakare Windows software uye akavharira pasi makomputa masisitimu. Matsotsi ari kumashure kweWannaCry aida mari yekuvhura mafaera. Nekuda kweizvozvo, michina inodarika mazana matatu ezviuru yakarohwa mumaindasitiri mazhinji, kusanganisira ezvehutano nemakambani emotokari.
  • NotPetya: Muna Chikumi, hutachiona hwekombuta NotPetya hwakananga mabhizinesi eUkraine vachishandisa yakakanganisika mutero software. Iyo malware yakapararira kumakambani makuru epasi rose, anosanganisira FedEx, British advertising agency WPP, Russian oiri uye gasi hofori Rosneft, uye Danish femu yekutakura Maersk.
  • Tsuro Yakashata: Imwe mushandirapamwe mukuru wekununura, Tsuro Yakashata, yakapinda mumakomputa nekuita seAdobe Flash installer panhau uye mawebhusaiti enhau ayo akakanganisa. Kana iyo ransomware ikabata muchina, yakatarisa network yemafolda akagovaniswa ane mazita anozivikanwa uye kuyedza kuba zvitupa zvemushandisi kuti iwane mamwe makomputa.
  • Marekodhi eVavhoti Akaburitswa: Muna Chikumi, muongorori wezvekuchengetedza akawana marekodhi evhoti angangoita mamirioni mazana maviri akafumurwa pamhepo mushure mekunge kambani yedata yeGOP yakanganisa gadziriro yekuchengetedza muAmazon Cloud sevhisi.
  • Hacks Target School Districts: Dhipatimendi reDzidzo reUS rakayambira vadzidzisi, vabereki, nevashandi vedzidzo yeK-12 nezve cyberthreat iyo yakanangana nematunhu ezvikoro munyika yose muna Gumiguru.
  • Uber Coverup: Muna 2016, matsotsi akaba data revatengi veUber 57 miriyoni, uye kambani yakavabhadhara zviuru zana zvemadhora kuti vavhare. Kutyorwa uku hakuna kuburitswa pachena kusvika Mbudzi uno apo mukuru weUber mutsva Dara Khosrowshahi akazivisa.
  • Pakatyorwa Target muna 2013, vakati vapambi vakahwandira pamanetiweki avo kwemwedzi vasingazive.
  • Pakatyorwa infoSec RSA muna 2011, zvakanzi matsotsi akavanda panetiweki yavo kwenguva yakati rebei, asi nguva yakange yapera pavakaziva.
  • Hofisi yePersonal Management (OPM) payakatyorwa, zvinyorwa zvevanhu vanosvika miriyoni makumi maviri nemaviri zvakafumura ruzivo rwavo rwakadzama rwavakatadza kuziva kusvika nguva yapera.
  • Bangladesh yakatyora uye yakarasikirwa nemamiriyoni makumi masere, uye matsotsi akangowana mari yakawanda nekuti vakaita typo yakabatwa.

Kune kumwe kutyora kwakawanda uko ma hackers haana kuonekwa

Zvingatora nguva yakareba sei iwe kana kambani yako kuti uzive kana hacker akatyora network yako achitsvaga kuba bhizinesi rako kana ruzivo rwemunhu? Maererano ne FireEye, muna 2019, nguva yepakati kubva pakukanganisa kusvika pakuwanikwa yakatemwa nemazuva makumi mashanu nepfumbamwe, kubva pamazuva makumi maviri nemashanu. Iyi ichiri nguva yakareba kwazvo yekuti hacker apinde uye aba data rako.
Nguva Kubva Kukanganisa Kuwanikwa

The same report kubva FireEye yakaratidza maitiro matsva e2019 apo matsotsi ari kukonzera kukanganisa kukuru. Vanovhiringidza bhizinesi, vanoba ruzivo rwemunhu, uye vanorwisa ma routers uye switch. Ndinotenda kuti maitiro matsva aya achaenderera mberi mune ramangwana rinoonekwa.

Matatu Matsva Mafambiro muCyber ​​Crime Muna 2016

Makambani Anofanira Kutanga Kutarisa Pakuonekwa:

Kure vanhu vakawanda nemakambani vanotsamira pakudzivirira uye kusaonekwa. Hatigone kuvimbisa kuti hacker haagone kana kuti haadi kubira system yako. Chii chichaitika kana vakakanganisa dhizaini yako? Unozoziva sei kuti vari pahurongwa hwako? Apa ndipo paCyber ​​​​Security Consulting Ops inogona kubatsira imba yako kana bhizinesi network kuita yakanaka yekuona nzira dzinogona kubatsira kuona vashanyi vasingadiwe pane yako system. TINOFANIRA kushandura tarisiro yedu kune zvese kudzivirira uye kuona. Kuona Kupindira kunogona kutsanangurwa se "... chiitiko chekuona zviito zvinoedza kukanganisa kuvanzika, kuvimbika, kana kuwanikwa kwechishandiso." Kuonekwa kwekupindira kune chinangwa chekuona masangano ari kuyedza kukanganisa kuchengetedzwa kwenzvimbo. Midziyo inofanirwa kushandiswa sechirauro kukwezva nekuronda masangano akaipa kuitira yambiro.

2 Comments

  1. 97Angus
    June 8, 2017 pana 1: 33 am  ·  pindura

    Ndinofanira kutaura kuti une hi quality zvinyorwa pano. Blog rako
    inogona kuenda kuhutachiona. Unoda kusimudzira kwekutanga chete. Nzira yekuiwana sei? Search for; Miftolo's
    zvishandiso zvinoenda kuhutachiona

Leave a Comment

Your kero e haangazozikamwi ichibudiswa. Raida minda anozivikanwa *

*

Nzvimbo iyi inoshandisa Akismet kuderedza spam. Dzidza kuti sei deta yako inoshandiswa.