(IPS)51976069 51976149 51976028 51976055 51976210

1. 2. IDS() 3. IPS() 4. IPS 5. IPS & IDS 6.

1. IDS IPS

1.()

2. 1.IDS(Intrusion Detection System: IDS) (Intrusion)

.

2. 2.IDS(Intrusion Detection System: IDS) , , COAST

2. 3. IDS

1. 2. 3. 4. (Data collection) (Data reduction) (Analysis & detection) (Report & response)

2. 4. 1. 1)

2. 4. 1. 2)

E1E2E3E4E595%5% E1 ~ E5 : Security Events

2. 4. 2. 1)

2. 4. 2. 1)

S1S3S2TRUETRUEUser createUser executeFileFileStandard access

2. 5. IDS

(False positive)

(Miss detection)

3. (IPS)

, .

3. (IPS)1. IPS - -

3. (IPS)2. IPS - - - -

4. IPS 1.

CA(Computer Associate) eTrust Access Control

TOS OS (Hizard)

4. IPS 2.

(EziS) IPS IDP-100 IDP-500 IPS

, , KDDS,

Secure OS Firewall IDS Scanner Secuve TOS

Dragon IDS 6.0

IDS ,

DB ,

Dragon IPS

5. IPS & IDS

FirewallIDSIPS

6.

IDS , IPS ASIC / .

, Network Times, 2003. 2., pp.162-172.IPS, , on the NET, 2002.12., pp.91-93. , , 2003. 3., pp.224-233.www.snort.org (Snort IDS )Paul E. Proctor, Intrusion Detection Handbook, Prentice 2001 , , . , , 2001. , , 2002. , , .