IAB Interactive Standardized Equipment List   return to main tree

Search Interactive SEL:




Last Updated: 6/28/2022 10:25:40 AM

Previous SEL Number: 05NP-00-IDPS

Description: Intrusion Detection and/or Prevention System (IDS, IPS) deployed at either host or network level to detect and/or prevent unauthorized or aberrant behavior on the network. Software and hardware (appliance) solutions exist. This replaces item 05NP-00-IDS and incorporates more recent prevention technology.

ImportantFeatures: Some IDS systems rely on signatures; others attempt to detect anomalies against baseline usage.

Operating Considerations: Requires trained network security personnel to configure system and interpret warning messages. Prone to false positives.
Will require separate logging server for data collection and backup capability for long term storage of events.
See NIST

National Institute of Standards and Technology

SP 800-36 for guidance.
Professional third-party security audit recommended before deployment. Use of IDS systems is usually appropriate only after more basic defenses such as firewalls have been deployed.

Training Requirements: Core Training: Per Manufacturer's Specifications
Initial Training: Extensive (> 2 days)
Sustainment Training: Extensive (> 2 days)

Mandatory Standards:

Applicable Standards and References:

NIST SP 800-036, Guide to Selecting Information Security Products, Oct 2003 (WITHDRAWN, still available.)

NIST SP 800-044, Version 2, Guidelines on Securing Public Web Servers, Sep 2007

NIST SP 800-046, Revision 2, Guide to Enterprise Telework, Remote Access, and Bring Your Own Device (BYOD) Security, July 2016

NIST SP 800-083, Revision 1, Guide to Malware Incident Prevention and Handling for Desktops and Laptops, July 2013

NIST SP 800-094, Guide to Intrusion Detection and Prevention Systems (IDPS), Feb 2007

NIST SP 800-137, Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations, Sep 2011

MSSL:

Forensic Technician

Law Enforcement: SWAT/Tactical Team