Campus networking and information and infrastructure assurance experts apply a multi-layered approach to network security. Elements of network security currently include:
- Intrusion Prevention System (IPS)
The Network IPS sits at the border between university networks and the internet, protecting networks from malicious traffic coming from outside the university.
Virtual, data center, and custom unit firewalls protect regulated data at the network border and specific unit resources in the data centers and other campus locations.
Differences Between IPS and Firewalls
A firewall will block traffic based on network information such as IP address, network port and network protocol. It will make some decisions based on the state of the network connection.
An IPS will inspect content of the request and be able to drop, alert, or potentially clean a malicious network request based on that content. The determination of what is malicious is based either on behavior analysis or through the use of signatures.