Network Behavior Analysis IPS
GPTKB entity
Statements (35)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
intrusion prevention system
|
| gptkbp:analyzes |
IPFIX data
NetFlow data packet captures |
| gptkbp:complement |
firewalls
SIEM systems signature-based IPS |
| gptkbp:deployment |
inline
out-of-band |
| gptkbp:detects |
malicious activity
anomalous network behavior |
| gptkbp:helps_prevent |
data exfiltration
advanced persistent threats internal threats |
| https://www.w3.org/2000/01/rdf-schema#label |
Network Behavior Analysis IPS
|
| gptkbp:integratesWith |
network management systems
security orchestration tools |
| gptkbp:monitors |
network flows
bandwidth consumption protocol usage |
| gptkbp:provides |
network visibility
real-time alerts forensic data |
| gptkbp:recognizedBy |
DDoS attacks
zero-day attacks policy violations botnet activity worm propagation |
| gptkbp:requires |
baselining of normal network behavior
|
| gptkbp:uses |
statistical analysis
network traffic analysis machine learning algorithms behavioral heuristics |
| gptkbp:bfsParent |
gptkb:intrusion_prevention_system
|
| gptkbp:bfsLayer |
5
|