Intrusion Detection and Prevention System
Traditional detection methods can overlook advanced attacks. A single mechanism that can detect malicious software is not enough to prevent all attacks. Besides signature-based operating system, it is effective in preventing malicious software which is not expected to be found in unsigned detection engines. In addition, threat intelligence, application control, APT (zero-day attack prevention) system, SIEM and many more features/integration are available. The intrusion detection and prevention system (IPS) system can be configured topologically on virtualization platforms or at network level (inline or sniff).