You are the chief information security officer (CISO) at a Department of Defense

Question

You are the chief information security officer (CISO) at a Department of Defense (DoD) contractor. There are many contracts the business is currently engaged in. One involves a new radar system with a significant amount of intellectual property (IP). You arrive at work Monday morning and your network team follows you into your office, explaining that it appears the enterprise may have been compromised.

Explain what the IPS and IDS would indicate. Would the alarms necessarily have alerted the appropriate parties? What might the attackers have done to prevent from being detected by the IDS/IPS? What might be the implications of this action on the business from an information security (InfoSec) perspective.

Length should be 2 pages long (500 words) with at least three references (one from an academic journal, and others may be industry sources)

Explanation / Answer

IPS & IDS

Attackers Bypassing IDS and IPS:

Bypassing IDS and IPS is what gets a bit fishy while implementing.The ways of bypassing are as follows:

Hence, these are the ways the attackers are doing to prevent from getting detected by the IDS or IPS.

Effect On The Business:

Hence, this will be the effects on the business once the IDS and IPS.

Please rate the answer if it helped......Thankyou

Hope it helps.......

Related Questions

Navigate

• Browse (All)
• Browse Y
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.