Порівняння методів
Переглядайте обрані методи поруч; рядки з відмінностями підсвічено.
| Методологія тестування на проникнення× | Система виявлення вторгнень× | |
|---|---|---|
| Галузь | Криптографія | Криптографія |
| Родина | Process / pipeline | Process / pipeline |
| Рік появи≠ | 2008 | 1987 |
| Автор методу≠ | National Institute of Standards and Technology (NIST), OWASP | Dorothy Denning |
| Тип≠ | Authorized security exploit and assessment | Security monitoring and anomaly detection |
| Основоположне джерело≠ | National Institute of Standards and Technology (2008). Penetration Testing and Security Testing. NIST Special Publication 800-115. link ↗ | Denning, D. E. (1987). An intrusion-detection model. IEEE Transactions on Software Engineering, 13(2), 222–232. DOI ↗ |
| Інші назви | Pen Testing, Ethical Hacking, Security Testing | IDS, Network Intrusion Detection, Anomaly Detection System |
| Пов'язані | 3 | 3 |
| Підсумок≠ | Penetration testing is an authorized, controlled simulated attack on systems, networks, and applications to evaluate their security defenses. Unlike vulnerability assessment (which identifies weaknesses), penetration testing actively exploits vulnerabilities to demonstrate real-world impact, confirm exploitability, and assess an organization's incident response capabilities. | An Intrusion Detection System (IDS) is a security tool that monitors network traffic and system activity to identify unauthorized access attempts, malware infections, and policy violations. Introduced by Dorothy Denning in 1987, IDS employs two main detection paradigms: signature-based (matching known attack patterns) and anomaly-based (identifying deviations from normal behavior). |
| ScholarGateНабір даних ↗ |
|
|