Cómo detectar incidentes de seguridad
Détection des incidents de sécurité
Intrusion Detection System
Incident Detection Phase
In order to be comletely reliable, a secure information system must have measures that allow it to detect incidents.
Thus, there are intrusion detection systems (or IDS) that monitor the network and are able to set off an alert when a request is suspicious or does not conform with the security policy.
Use of these probes and their parametering must be carefully studied because this type of mechanism is likely to generate a lot of false alarms.