Next Generation Security Product: IPS. Care to install it?
By the way, in case if you are interested, have you ever thought of getting an IPS, as another big additonal security protection of your computer?
IPS is Intrusion Prevention System which is a proactive approach to protect your system from attacking from different techniques or from unknown/new malware. It may be a high time to act before it becomes another standard/basic security product (which is the case to Firewall & Anti-spyware[AS] in the past).
Note: All the statements below are merely my personal opinion. Also I am by no means a security expert. I could be wrong. Also it could happen that some statements may fall you nto easy misinterpretation. Thus it will be grateful if you read carefully. Thanks for your appreciation
Philosophy of IPS
The philosophy of IPS is if you rely on signautre-based Anti-virus(AV)/Anti-spyware(AS) to protect us from malware. It is already too late.
New malware
New malware are merging every day. We can never catch them up. So there are some time gaps which a new malware can slaughter you freely.
Undergorund/Private malware
What's more, there are always undergorund/private/unknown malware which have not been ddiscovered by security researchers. That implies you may have been attacked even if you are equipped with the best security suite (AV+Firewall+AS). Some malware are designed that they do not wish to let you know they had intruded your system. Typical examples are trojans and keyloggers. Even if you tihnk you haven't been infected in the past, it may be just a false sense of security unfortunately.
Advanced Technique
In additon, there are always advanced technique to break or bypass the security products.
Example regarding AV/AS:
an anti-virus writer can simply rewrite the code of a known/signatured virus by using the technique (code premutation) to bypass the Av again. It can always use some techniques to intrude the AV/AS, nullifyingtheir work but at the same time faking the GUI, so you feel they are still working.
Example regarding Firewall:
In one test, half or more leak attacks can bypass the firewall (easily) even if you use the best well-known firewalls like ZoneAlarm. See http://www.firewallleaktester.com/tests.htm for details.
So why should I use IPS?
It can help you to solve the above problems and more. Eg: if you install a good IPS, you can help to block 90-100% of leak attacks.
Although if a hacker wishes to hack our computers, there are always ways to do even if we add IPS, this is not the main point. The main point is you gives your computer a strong security boost and discomfort the hacker to attack your computers.
As hackers follow the rules to attack the easy preys first. You will appear to be less attractive than people who only insstall the basic security suite (AV+Firewall+AS).
Do you care to spend few time to install IPS?
Installing IPS is as easy as installing a Firewall or any other simple software. As it works as proactive apporach, it is simliar to Firewall that it will alert you and make decisions. Now IPS has reached into the customer/end-user markets, so they are set as easy as possible to use (eg the implemenation of learning mode for the IPS to learn your system), so even some novice users can get some benefits from IPS.
What IPS should I choose?
If you are a beginner, you may wish to try:
- ProcessGuard
This product is relatively easy to use. But there're prices for the ease of use - less powerful and so less secure.
If you wish to have a more powerful IPS, you may wish to try:
- System Safety Monitor
- Viguard
Currently, I am still researching on different IPS. So if you have good info about IPS reviews / comparisons and anything related, please tell me. I am eager to know.
Thanks for your time to read my post.
Any comment is welcome.
PS: All the statements are merely my personal opinion. Also I am by no means a security expert. I could be wrong. Also it could happen that some statements may fall you nto easy misinterpretation. Thus it will be grateful if you read carefully. Thanks for your appreciation
By the way, in case if you are interested, have you ever thought of getting an IPS, as another big additonal security protection of your computer?
IPS is Intrusion Prevention System which is a proactive approach to protect your system from attacking from different techniques or from unknown/new malware. It may be a high time to act before it becomes another standard/basic security product (which is the case to Firewall & Anti-spyware[AS] in the past).
Note: All the statements below are merely my personal opinion. Also I am by no means a security expert. I could be wrong. Also it could happen that some statements may fall you nto easy misinterpretation. Thus it will be grateful if you read carefully. Thanks for your appreciation
Philosophy of IPS
The philosophy of IPS is if you rely on signautre-based Anti-virus(AV)/Anti-spyware(AS) to protect us from malware. It is already too late.
New malware
New malware are merging every day. We can never catch them up. So there are some time gaps which a new malware can slaughter you freely.
Undergorund/Private malware
What's more, there are always undergorund/private/unknown malware which have not been ddiscovered by security researchers. That implies you may have been attacked even if you are equipped with the best security suite (AV+Firewall+AS). Some malware are designed that they do not wish to let you know they had intruded your system. Typical examples are trojans and keyloggers. Even if you tihnk you haven't been infected in the past, it may be just a false sense of security unfortunately.
Advanced Technique
In additon, there are always advanced technique to break or bypass the security products.
Example regarding AV/AS:
an anti-virus writer can simply rewrite the code of a known/signatured virus by using the technique (code premutation) to bypass the Av again. It can always use some techniques to intrude the AV/AS, nullifyingtheir work but at the same time faking the GUI, so you feel they are still working.
Example regarding Firewall:
In one test, half or more leak attacks can bypass the firewall (easily) even if you use the best well-known firewalls like ZoneAlarm. See http://www.firewallleaktester.com/tests.htm for details.
So why should I use IPS?
It can help you to solve the above problems and more. Eg: if you install a good IPS, you can help to block 90-100% of leak attacks.
Although if a hacker wishes to hack our computers, there are always ways to do even if we add IPS, this is not the main point. The main point is you gives your computer a strong security boost and discomfort the hacker to attack your computers.
As hackers follow the rules to attack the easy preys first. You will appear to be less attractive than people who only insstall the basic security suite (AV+Firewall+AS).
Do you care to spend few time to install IPS?
Installing IPS is as easy as installing a Firewall or any other simple software. As it works as proactive apporach, it is simliar to Firewall that it will alert you and make decisions. Now IPS has reached into the customer/end-user markets, so they are set as easy as possible to use (eg the implemenation of learning mode for the IPS to learn your system), so even some novice users can get some benefits from IPS.
What IPS should I choose?
If you are a beginner, you may wish to try:
- ProcessGuard
This product is relatively easy to use. But there're prices for the ease of use - less powerful and so less secure.
If you wish to have a more powerful IPS, you may wish to try:
- System Safety Monitor
- Viguard
Currently, I am still researching on different IPS. So if you have good info about IPS reviews / comparisons and anything related, please tell me. I am eager to know.
Thanks for your time to read my post.
Any comment is welcome.
PS: All the statements are merely my personal opinion. Also I am by no means a security expert. I could be wrong. Also it could happen that some statements may fall you nto easy misinterpretation. Thus it will be grateful if you read carefully. Thanks for your appreciation