Sisitemu yo Gutahura Ubwinjiranyi (IDS)Ni nk'umusesenguzi uri muri network, imikorere y'ingenzi ni ugushaka imyitwarire y'ubwinjirane no kohereza inzogera. Mu kugenzura urujya n'uruza rw'amakuru cyangwa imyitwarire y'umukozi mu gihe nyacyo, igereranya "isomero ry'ibanga ry'ibitero" ryashyizweho mbere (nk'inyuguti izwi ya virusi, imiterere y'ibitero bya hacker) n'"imyitwarire isanzwe" (nk'inshuro isanzwe yo kwinjira, imiterere yo kohereza amakuru), kandi igahita itera inzogera kandi ikandika amateka arambuye iyo habonetse ikintu kidasanzwe. Urugero, iyo igikoresho gikunze kugerageza guca ijambo ry'ibanga rya seriveri, IDS izamenya iyi miterere idasanzwe yo kwinjira, yohereze vuba amakuru y'umuburo ku muyobozi, kandi igumane ibimenyetso by'ingenzi nka aderesi ya IP y'ibitero n'umubare w'abantu bagerageje gutanga ubufasha bwo gukurikirana amakuru nyuma.
Dukurikije aho porogaramu iherereye, IDS ishobora kugabanywamo ibice bibiri. IDS za interineti (NIDS) zishyirwa ku ngingo z'ingenzi z'umuyoboro (urugero: inzira, swichi) kugira ngo zigenzure urujya n'uruza rw'umuyoboro wose no kumenya imyitwarire y'ibitero by'ibikoresho bitandukanye. IDS za Mainframe (HIDS) zishyirwa kuri seriveri imwe cyangwa terminal imwe, kandi zibanda ku kugenzura imyitwarire y'umuyoboro runaka, nko guhindura dosiye, gutangira ibikorwa, gukoresha port, nibindi, bishobora gufata neza ukwinjira kw'igikoresho kimwe. Urubuga rwa interineti rw'ubucuruzi rwasanze amakuru adasanzwe anyura muri NIDS -- amakuru menshi y'abakoresha yari arimo gukururwa na IP itazwi ku bwinshi. Nyuma yo kuburirwa ku gihe, itsinda rya tekiniki ryihutiye gufunga intege nke no kwirinda impanuka zo gusohora amakuru.
Porogaramu ya Mylinking™ Network Packet Brokers muri Sisitemu yo Gutahura Ubwinjira mu Bitero (IDS)
Uburyo bwo gukumira ukwinjira mu bwihisho (IPS)ni "umurinzi" muri network, yongera ubushobozi bwo gukumira ibitero hashingiwe ku gikorwa cyo kumenya IDS. Iyo abantu bahuye n'abajura banduye, ishobora gukora ibikorwa byo gukumira mu buryo butunguranye, nko guca imirongo idasanzwe, gukuraho paki mbi, guhagarika aderesi za IP z'ibitero n'ibindi, idategereje ko umuyobozi abikora. Urugero, iyo IPS ibonye ko ubutumwa bwa imeri bufite imiterere ya virusi ya ransomware bwoherezwa, izahita ifata imeri kugira ngo ibuze virusi kwinjira muri network y'imbere. Mu gihe habayeho ibitero bya DDoS, ishobora gushungura umubare munini w'abasaba ibihimbano no kwemeza imikorere isanzwe ya seriveri.
Ubushobozi bwo kwirwanaho bwa IPS bushingiye ku "uburyo bwo gusubiza mu gihe nyacyo" na "sisitemu yo kuvugurura amakuru mu buryo bw'ubwenge". IPS igezweho ihora ivugurura ububiko bw'amakuru bw'ibitero kugira ngo ihuze uburyo bugezweho bwo gutera abajura. Ibikoresho bimwe na bimwe byo ku rwego rwo hejuru binashyigikira "isesengura ry'imyitwarire n'ubumenyi", bishobora kugaragaza mu buryo bwikora ibitero bishya n'ibitazwi (nk'ibikorwa byo ku munsi ntarengwa). Sisitemu ya IPS ikoreshwa n'ikigo cy'imari yavumbuye kandi igahagarika igitero cya SQL ikoresheje intege nke zitaramenyekana binyuze mu gusesengura inshuro zitari zisanzwe z'ibibazo bya database, ikarinda ko amakuru y'ingenzi yangirika.
Nubwo IDS na IPS bifite imirimo isa, hari itandukaniro rikomeye: ukurikije inshingano, IDS ni "gukurikirana ibintu mu buryo butunguranye + gutanga amakuru", kandi ntigira uruhare mu buryo butaziguye mu mikorere y'urusobe rw'itumanaho. Ikwiriye ibintu bisaba igenzura ryuzuye ariko idashaka kugira ingaruka kuri serivisi. IPS isobanura "Ubwugarizi bukora + Intermission" kandi ishobora gukumira ibitero mu gihe nyacyo, ariko igomba kugenzura ko idacira urubanza nabi urujya n'uruza rw'abantu (ibinyoma bishobora gutera ibibazo bya serivisi). Mu mikoreshereze ifatika, akenshi "ikorana" -- IDS ishinzwe kugenzura no kubika ibimenyetso mu buryo bwuzuye kugira ngo yongere imikono y'ibitero kuri IPS. IPS ishinzwe gukumira mu gihe nyacyo, gutera ubwoba mu by'ubwirinzi, kugabanya igihombo giterwa n'ibitero, no gukora umuyoboro wose w'umutekano "wo gushakisha no kwirinda".
IDS/IPS igira uruhare runini mu bihe bitandukanye: mu miyoboro yo mu rugo, ubushobozi bworoshye bwa IPS nko gufata ibitero byubatswe muri routers bushobora kwirinda gushakisha imiyoboro isanzwe n'amasano mabi; Mu miyoboro y'ibigo, ni ngombwa gushyiraho ibikoresho bya IDS/IPS bya kinyamwuga kugira ngo birinde seriveri z'imbere na databases ibitero byibasiwe. Mu miyoboro y'ikoranabuhanga rya "cloud computing", IDS/IPS yo mu bicu ishobora kwimenyereza seriveri z'ibicu zishobora kwaguka kugira ngo zimenye urujya n'uruza rudasanzwe ku bakodesha. Hamwe no kunoza uburyo bwo gutera abajura, IDS/IPS irimo gutera imbere mu cyerekezo cya "AI intelligent analysis" na "multi-dimensional correlation detection", birushaho kunoza uburyo bwo kurinda no gusubiza umuvuduko w'umutekano w'imiyoboro.
Porogaramu ya Mylinking™ Network Packet Brokers muri Sisitemu yo Kurwanya Kwinjira (IPS)
Igihe cyo kohereza: Ukwakira-22-2025
