HOME > Á¦Ç°±â´É > IDP

  Intrusion Detection and Prevention

³×Æ®¿öÅ©¹Ú½º IDP ¸ðµâÀº ¹æÈ­º®°ú ÅëÇյǾî ÀÖÀ¸¸ç ¾ÖÇø®ÄÉÀÌ¼Ç ·¹º§ÀÇ ³×Æ®¿öÅ© Æ®·¡ÇÈÀ» ½ºÄµ(Scan)ÇÏ°í, Áö¿¬ ¾øÀÌ (Zero Latency) ¾ÇÀÇÀÇ Ä¨ÀÔ ½Ãµµ¸¦ ¿Ïº®ÇÏ°Ô Â÷´ÜÇÕ´Ï´Ù. Æ÷°ýÀûÀÎ IDP ½Ã±×´ÏÃÄ µ¥ÀÌÅͺ£À̽º´Â ¾Ë·ÁÁø À¯ÇüÀ» ŽÁöÇÏ¿© Àû±ØÀûÀ¸·Î Â÷´ÜÇÕ´Ï´Ù. ¶ÇÇÑ »õ·Ó°Ô ÃâÇöÇÑ À§Çù¿¡ ´ëÇÑ º¸È£´Â Ãë¾à¼º-Ŭ·¡½º ±â¹ÝÀÇ ½Ã±×´ÏÃÄ(Vulnerability-class based signatures) µ¥ÀÌÅͺ£À̽º¿Í Expert systemÀÇ ÇÑ Á¾·ù·Î ÇнÀ ±â´É(heuristic)¿£ÁøÀÇ ÀÌ»óÇൿ ºÐ¼®(anomaly-based behavioural analysis) µ¥ÀÌÅͺ£À̽º¸¦ È°¿ëÇÏ¿© Á¦°øÇÕ´Ï´Ù. ³×Æ®¿öÅ©¹Ú½º IDP ½Ã½ºÅÛÀº ³×Æ®¿öÅ©¹Ú½º º¸¾È ¿î¿µ ¼¾ÅÍÀÇ Àü¼¼°è ³×Æ®¿öÅ©¸¦ ÅëÇÏ¿© PUSH ±â¼úÀ» »ç¿ëÇÏ¿© ½Ç½Ã°£ ¾÷µ¥ÀÌÆ® µË´Ï´Ù.
Technical Specifications S-50 S-80 M-250 M-380 E-1000 E-2000 E-4000
Intrusion detection engine Zero latency, hybrid, multi-level, tightly integrated with firewall
Action Active (blocks network traffic) and/or passive (logs intrusion attempts)
Reporting Real time (on demand), and periodic (summary) by SMTP e-mail
Types of intrusion detected ICMP/IP, Denial of Service (DoS), portscans, protocol level, application level
Signatures Depends on configuration, but normally in excess of 2,500 (IDS) / 350 (IDP)

* Features and specifications are subject to change without notice.
* Benchmarking is performed with representative data, on a function by function basis.
* Actual models may differ in appearance to the illustrations and photographs provided.