Mu rwego rw'umutekano w'umuyoboro, Sisitemu yo Gutahura Ubwinjira (IDS) na Sisitemu yo Gukingira Ubwinjira (IPS) bigira uruhare runini. Iyi nkuru izasuzuma byimbitse ibisobanuro byabyo, inshingano, itandukaniro, n'uburyo bikoreshwa.
IDS (Sisitemu yo Gutahura Kwinjira) ni iki?
Ibisobanuro bya IDS
Sisitemu yo Gushakisha Ubwinjira mu Bitero ni igikoresho cy’umutekano gikurikirana kandi kigasesengura urujya n’uruza rw’abantu ku rubuga kugira ngo kimenye ibikorwa bibi cyangwa ibitero bishobora kubaho. Gishakisha ibimenyetso bihuye n’imiterere y’ibitero bizwi binyuze mu gusuzuma urujya n’uruza rw’abantu ku rubuga, inyandiko za sisitemu, n’andi makuru ajyanye nabyo.
Uburyo IDS ikora
IDS ikora cyane cyane muri ubu buryo bukurikira:
Gutahura ibimenyetso: IDS ikoresha umukono wagenwe w'imiterere y'ibitero kugira ngo ihuze, kimwe n'ibyuma bipima virusi kugira ngo bibone virusi. IDS itanga umuburo iyo abantu basura urubuga rwabo bafite ibintu bihuye n'ibyo bimenyetso.
Gusuzuma indwara zidasobanutse neza: IDS ikurikirana imikorere isanzwe ya network kandi igatanga amakuru iyo ibonye imiterere itandukanye cyane n'imyitwarire isanzwe. Ibi bifasha kumenya ibitero bitazwi cyangwa bishya.
Isesengura rya Porotokole: IDS isesengura ikoreshwa rya porogaramu za interineti kandi igasuzuma imyitwarire idahuye na porogaramu zisanzwe, bityo ikamenya ibitero bishobora kugabanywa.
Ubwoko bwa IDS
Bitewe n'aho bishyirwa, IDS ishobora kugabanywamo ubwoko bubiri bw'ingenzi:
Indangamuntu z'umuyoboro (NIDS): Ishyirwa mu muyoboro w'itumanaho kugira ngo ikurikirane urujya n'uruza rw'abantu bose runyura muri uwo muyoboro. Ishobora kumenya ibitero by'umuyoboro w'itumanaho n'iby'ubwikorezi.
IDS yakira abantu (HIDS): Ishyirwa kuri host imwe kugira ngo ikurikirane ibikorwa bya sisitemu kuri iyo host. Yibanda cyane ku gutahura ibitero byo ku rwego rwa host nka malware n'imyitwarire idasanzwe y'abakoresha.
IPS (Uburyo bwo gukumira ukwinjira mu mubiri) ni iki?
Ibisobanuro bya IPS
Sisitemu zo gukumira ukwinjira ni ibikoresho by'umutekano bifata ingamba zo guhagarika cyangwa kwirinda ibitero bishobora kubaho nyuma yo kubitahura. Ugereranyije na IDS, IPS si igikoresho cyo kugenzura no gutanga amakuru gusa, ahubwo ni igikoresho gishobora kwivanga no gukumira ibitero bishobora kubaho.
Uburyo IPS ikora
IPS irinda sisitemu ibuza urujya n'uruza rw'abantu babi binjira muri iyo network. Ihame ryayo ry'ingenzi rikubiyemo:
Guhagarika ibitero by'imodoka: Iyo IPS ibonye ko hari ibitero bishobora gutera, ishobora gufata ingamba zihuse zo gukumira ko ibi bitero byinjira muri interineti. Ibi bifasha gukumira ko ibitero bikomeza gukwirakwira.
Gusubizaho imiterere y'itumanaho: IPS ishobora gusubiza imiterere y'itumanaho rijyanye n'igitero gishobora kubaho, igatuma uwateye yongera gushyiraho umurongo bityo igahagarika igitero.
Guhindura Amategeko ya Firewall: IPS ishobora guhindura amategeko agenga firewall mu buryo bwimbitse kugira ngo ihagarike cyangwa yemerere ubwoko bwihariye bw'abagendana n'urubuga kwihuza n'ibibazo by'impanuka mu gihe nyacyo.
Ubwoko bwa IPS
Kimwe na IDS, IPS ishobora kugabanywamo ubwoko bubiri bw'ingenzi:
IPS y'umuyoboro (NIPS): Ishyirwa mu muyoboro w'itumanaho kugira ngo ikurikirane kandi yirinde ibitero byose kuri muyoboro w'itumanaho. Ishobora kwirinda ibitero by'urusobe rw'itumanaho n'ibitero by'urusobe rw'itumanaho.
IPS yakira (HIPS): Ishyirwa kuri host imwe kugira ngo itange ubwirinzi bunoze, cyane cyane ikoreshwa mu kwirinda ibitero byo ku rwego rwa host nka malware no gukoresha nabi.
Ni irihe tandukaniro riri hagati ya Sisitemu yo Gutahura Ibice (IDS) na Sisitemu yo Gukingira Ibice (IPS)?
Uburyo butandukanye bwo gukora
IDS ni uburyo bwo kugenzura ibintu bukoresha uburyo bworoshye, bukoreshwa cyane cyane mu gutahura no gutanga amakuru. Ibinyuranye n'ibyo, IPS ikora ibishoboka byose kandi ishobora gufata ingamba zo kwirinda ibitero bishobora kubaho.
Kugereranya Ingaruka n'Ibyago
Bitewe n’uko IDS idakora neza, ishobora kubura cyangwa ikaba atari yo, mu gihe ubwirinzi bwa IPS bushobora gutera inkongi. Hakenewe kuringaniza ingaruka n’imikorere myiza mu gihe ukoresha sisitemu zombi.
Itandukaniro mu gushyiraho no gushyiraho
Ubusanzwe IDS irahinduka kandi ishobora gushyirwa ahantu hatandukanye muri network. Ibinyuranye n'ibyo, gushyiraho no gushyiraho IPS bisaba igenamigambi ryitondewe kugira ngo hirindwe ko habaho kubangamira urujya n'uruza rw'abantu.
Gukoresha IDS na IPS mu buryo buhuriweho
IDS na IPS byuzuzanya, aho IDS igenzura kandi igatanga amakuru, naho IPS igafata ingamba zo kwirinda iyo bibaye ngombwa. Uruvange rwabyo rushobora gukora umurongo wuzuye w’umutekano w’umuyoboro.
Ni ngombwa kuvugurura amategeko, umukono, n'ubutasi bw'ibitero bya IDS na IPS buri gihe. Ibitero bya interineti bihora bihinduka, kandi kuvugurura ku gihe bishobora kunoza ubushobozi bwa sisitemu bwo kumenya ibitero bishya.
Ni ngombwa cyane guhuza amategeko ya IDS na IPS n'imiterere yihariye y'umuyoboro w'itumanaho n'ibisabwa n'ikigo. Mu guhindura amategeko, ubuhanga bwa sisitemu bushobora kunozwa kandi ibimenyetso bitari byo n'imvune zo mu rwego rwo hejuru bishobora kugabanuka.
IDS na IPS bigomba kuba bishobora guhangana n'ibibazo bishobora kubaho mu gihe nyacyo. Gusubiza vuba kandi neza bifasha gukumira abatera ibitero kwangiza byinshi mu miyoboro.
Gukurikirana buri gihe urujya n'uruza rw'abantu ku rubuga no gusobanukirwa imiterere isanzwe y'urujya n'uruza bishobora gufasha kunoza ubushobozi bwo gutahura ibitagenda neza bya IDS no kugabanya amahirwe yo kuba hari ibimenyetso bitari byo.
Shaka iburyoUmuhuzabikorwa w'amapaki y'itumanahogukorana na IDS yawe (Sisitemu yo Gutahura Intrusion)
Shaka iburyoGuhindura Tap Bypass mu murongogukorana na IPS (Sisitemu yo Kurwanya Kwinjira)
Igihe cyo kohereza ubutumwa: 26 Nzeri 2024
