Methodologies for Intrusion Detection & Prevention

Internet provides huge information and value to the users but at the same time access to the internet is prone to increasing number of attacks. Tracing the source of the attacking packet is very difficult because of stateless and destination based routing infrastructure of Internet. If the attacks are detected successfully, then preventive measures for attacks can be taken. Host based and network based intrusion prevention systems are available in the market. Host based Intrusion Prevention Systems are designed to protect information systems from unauthorized access, damage or disruption. To counteract the rapidly evolving threats presented by the latest generation of worms, software and network exploits knowledge of intrusion detection and prevention is very much important. This paper provides the in depth study of methodologies and models used for intrusion-detection. Details about prevention technologies are also stated. Attacks on intrusion prevention systems and counter measure is also described. We propose our approach for intrusion detection and prevention in the networks.