What are the common methods of deploying an IDS?
1. Network-Based Intrusion Detection System (NIDS): A NIDS is a type of IDS that is deployed at a strategic point in a network to monitor traffic. It is typically used to detect malicious activity such as port scans, malicious code, and denial of service attacks. Example: Snort.
2. Host-Based Intrusion Detection System (HIDS): A HIDS is a type of IDS that is installed on individual hosts or systems. It is used to monitor and detect malicious activity on that particular host or system. Example: OSSEC.
3. Wireless Intrusion Detection System (WIDS): A WIDS is a type of IDS that is used to detect malicious activity on wireless networks. It is typically used to monitor for unauthorized access to the network, rogue access points, and other malicious activity. Example: AirDefense.
4. Network Behavior Analysis (NBA): NBA is a type of IDS that monitors the traffic on a network and looks for anomalies or changes in the normal behavior. It is typically used to detect malicious activity such as data exfiltration, malicious code, and other malicious activities. Example: Lancope StealthWatch.