Cyber security - Coursework Example

Cyber Security Cyber Security Affiliation If someone asked you for advice on what he or she should do first to get started onIntrusion Detection, what would you recommend?If someone asks me for advice on what he or she should do first to get started on intrusion detection then I would suggest him to think about what advantages or opportunities he expects from the deal he is going to make. In this scenario, one excellent starting point can be from looking at the impact of previous intrusions (Bloedorn, Christiansen, Hill, Skorupka, Talbot, & Tivel, 2002).

However, if he or she has been caused to experience intrusions and hacking act before, they will be acquainted with the risks out of need. In this scenario, getting knowledge of previous intrusions and other organizations’ reaction or solutions will be ready to lend a hand in outlining the business case for intrusion detection products. Additionally, they should also be aware of the advantages and opportunities offered by intrusion detection with a wide-ranging awareness with the intrusion detection solutions and products presently available in the market.

In addition, they should also recognize the basic objectives and goals of the intrusion detection products. In view of the fact that Intrusion detection will be a costly activity or investment, even though they make use of an open source solution hence they need to spend an adequate amount of time to investigate, get, build up and put into practice to be far less than the in the general routine management of the information (Bandy, Money, & Worstell, Intrusion Detection FAQ: Getting Started, 2013).2. Under what conditions should you consider implementing a honeypot?

And, under what conditions should you not operate a honeypot?A "honeypot" is a very useful tool for protecting networks from not permitted access. In fact, the honeypot does not encompass applications or data that is vital to the business organization but it contains an adequate amount of attractive data to attract a hacker (SANS, 2013). In view of the fact that a honeypot is only a system tool or application or file that has entirely no reason in production hence it can be assumed that if the honeypot is accessed, there might be some reason that is not linked to a specific business corporation on purpose (Bandy, Money, & Worstell, Intrusion Detection FAQ: What is a honeypot?

Why do I need one?, 2013). It is an admitted fact that the honeypots can be very helpful to business corporations that have considerable resources to maintain them. However, if an organization does not have a security expert to strictly keep an eye on a honeypot the organizations has, at finest, built a susceptible platform that is not checked regularly as well as at worst, a platform that can be occupied and employed by any hacker to attack other systems. Moreover, there is a possible legal responsibility inbuilt in executing deliberately susceptible systems (SANS, 2013).

ReferencesBandy, P., Money, M., & Worstell, K. (2013). Intrusion Detection FAQ: Getting Started. Retrieved February 03, 2013, from http://www.sans.org/security-resources/idfaq/getting_started.phpBandy, P., Money, M., & Worstell, K. (2013). Intrusion Detection FAQ: What is a honeypot? Why do I need one? Retrieved February 03, 2013, from http://www.sans.org/security-resources/idfaq/honeypot2.phpBloedorn, E., Christiansen, A. D., Hill, W., Skorupka, C., Talbot, L. M., & Tivel, J. (2002). Data Mining for Network Intrusion Detection: How to Get Started.

Retrieved January 30, 2013, from http://cgi.di.uoa.gr/~rouvas/research/bloedorn_datamining.pdfOwen, D. (2013). Why should I not run a honeypot? Retrieved February 03, 2013, from SANS.Org: http://www.sans.org/security-resources/idfaq/honeypot4.phpSANS. (2013). Intrusion Detection FAQ: What is a honeypot and how is it used? Retrieved February 03, 2013, from http://www.sans.org/security-resources/idfaq/honeypot.php