Answer:
In short, Intrusion Prevention Systems are a new extension to Intrusion Detection Systems. The key difference is that an intrusion prevention system is designed to react to what the system perceives as unauthorized activity by killing the connection, whereas, in the past, intrusion detection systems were designed to merely give notice of problems they spotted, typically without taking action (although many have had the ability to send notice to a firewall to tell a firewall to stop the traffic).
First published on BankersOnline.com 11/18/02
print
share