Guide to Intrusion Detection and Prevention Systems

The National Institute of Standards and Technology is asking for comments on two guides pertaining to malicious computer attacks.

The “Guide to Intrusion Detection and Prevention Systems” focuses on preventing, detecting and responding to attacks and the “Guide to Malware Incident Prevention and Handling for Desktops and Laptops” on preventing and mitigating the effects of malware.

The updated “Guide to Intrusion Detection and Prevention Systems” describes software that has become a necessary addition to the security infrastructure of many organizations.

The guidance describes the characteristics of IDPS technologies and provides recommendations for designing, implementing, configuring, securing, monitoring and maintaining them.

The publication discusses four types of IDPS technologies: network-based, wireless, network behavior analysis and host-based.