IDS Policy Parameters and Network Intrusion - Essay Example

There are different evils associated with network structures. For instance, personal information theft, business information hacking, and virus attacks are the contemporary issues businesses are facing nowadays in the network communication and data transfer areas (Frederick, 2002). Furthermore, because of the increasing amount of intrusions the local networks and Internet have turned out to be uncertain, therefore, businesses are more and more applying a variety of systems that monitor information technology security breaches (Sans, 2009).

Network intrusion as its name represents attempts to recognize attempted or applied intrusions into the network and to carry out proper actions for the intrusions. Intrusion detection includes an extensive collection of methods that differ on several axes. A few of these axes comprise: (Silberschatz, Galvin, & Gagne, 2004)
• The period that detection takes place: in real-time (while it is taking place) or following the information only.

• The types of input inspected to identify intrusive action. These could comprise user shell commands, process system calls, as well as network packet headers or contents. Several types of intrusions might be identified only by correlating information from various such sources.

• The variety of action capabilities. Basic and straightforward types of actions consist of changing an administrator of the possible intrusion or in some way halting the potentially intrusive action, for instance, killing a course of action engaged in the intrusive activity. In a complicated type of action, a system might redirect an intruder’s action to a trap. A false resource is exposed to the attacker to observe and gain information about the attack; to the attacker, the resource appears real.

These levels of freedom in the design of space for detecting intrusions in systems have brought an extensive variety of solutions acknowledged as intrusions detection systems (IDS) (Silberschatz, Galvin, & Gagne, 2004).

Gem Infosys desires to protect the business network and organizational business resources. The main aim and objective of this policy are to offer procedures to set up security monitoring and intrusion detection to defend business resources as well as data on the organizational network. Gem Infosys policy is intended to protect both the privacy of business data that can be stored on the Gem Infosys computer as well as to shield the managerial network from being infected through some hostile software that can be approached from the broadband connection to the Internet. This IDS policy as well cares for the business network access for different users in the corporate (Comptechdoc, 2009).

Scope
This Gem Infosys IDS policy covers each network host on the business network as well as the whole data business network comprising each path through which business data can travel. The main goal behind this policy implementation is to protect the system from outer assaults on the corporate network. Also, another aim is to establish a security plan that addresses all the aspects of security such as internal and external security management (window security, 2009).

IDS Policy Parameters

The main objective of the IDS policy for Gem Infosys is:
1. Enhancing the security level internally and externally to the business.
2. Preventing un-authorized system entrance
3. Preservation of the business data
4. Establishing integrity of the business information
5. Establishment of appropriate security parameters to stop external intrusions
6. Permitting access only to authorized users
7. Detection and handling of any suspected network intrusion

Conclusion
This paper has presented a detailed analysis of the IDS policy for Gem Infosys. This paper has presented a detailed overview of the different aspects and parameters of the IDS policy and operating structure. Through the implementation of this IDS policy, Gem Infosys can protect the overall network from outer attacks. Read More