Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online

    Free Trial

    Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.


    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint
    Share this Page URL
    Help

    Chapter 2. Introduction to Filters and Signatures

    Chapter 2. Introduction to Filters and Signatures

    To search for only some of the traffic that passes by an intrusion detection filter—that is, to find the specific events that are of interest—you need to tell the sensor what to look for. A signature defines or describes a traffic pattern of interest. A filter transcribes the signature description into either machine-readable code or lookup tables, which tell the sensor which traffic you want to find. This chapter continues the process of diving straight into intrusion detection and takes a close look at working intrusion detection filters.


      

    You are currently reading a PREVIEW of this book.

                                                                                            

    Get instant access to over
    $1 million worth of books and videos.

      

    Start a Free Trial