Differentiate between IDS and IPS in the context of Cyber Security.

1.	Differentiate between IDS and IPS in the context of Cyber Security.
Answer» Intrusion Detection Systems (IDS) scan and monitor NETWORK traffic for signals that attackers are attempting to infiltrate or steal data from your network using a KNOWN CYBER threat. IDS systems detect a variety of activities such as security policy violations, malware, and port scanners by comparing current network ACTIVITY to a known threat database. Intrusion Prevention Systems (IPS) are located between the outside world and the internal network, in the same area of the network as a firewall. If a packet REPRESENTS a known security hazard, an IPS will proactively prohibit network traffic based on a security profile. The fundamental distinction is that an IDS is a monitoring system, whereas an IPS is a control system. IDS makes no changes to network packets, whereas IPS block packet delivery depending on the contents of the packet, similar to how a firewall blocks traffic based on IP address.

Discussion