Professional Documents
Culture Documents
IPS
Intrusion prevention systems (IPS)
are network security appliances that
monitor network or system activities
for malicious activity. The main
functions of intrusion prevention
systems are to identify malicious
activity, log information about the
said activity, attempt to block/stop
activity, and report activity.
Confidence Level
How confident IPS is that recognized
attacks are actually undesirable
traffic. The higher the Confidence
Level of a protection, the more
confident Check Point is that
recognized attacks are indeed
attacks; lower Confidence Levels
indicate that some legitimate traffic
may be identified as an attack.