LinkTrust® HIDS is the IDS based on Host in our LinkTrust® product family. Developed by iS-One with international advanced technology, it offers multi-functions including log analyse, VA, policy management and NNID. HIDS can fully monitor and analyze security problems around the clock, capture security events and response accordingly to prevent illegal intrusion for an overall protection to the key servers of enterprises.
Console:
Responsible for central deployment and management, that includes operation console, viewer and report console. Each console has its own defined authority.

Analyzer：
Responsible for collecting data from target engine and reporting alerts to the scheduler.

Distributor:
Reports alerts to relative console and database (Microsoft SQL Server or Oracle).

Schemer:
Enable auto-run of pre-scheduled program, such as generating report and applying audit policy etc.

Target Engine:
Installed in every server and workstation that requires monitoring. It’s responsible for collecting audit data and transmitting them from monitored host to the analyzer as well as taking any necessary response to the alerts. Target Engine is divided into log analyze engine and nodes IDS engine.  

Log analyzing engine:
Use to monitor the kernel log. It can be deployed at either real-time or batching operation according to the priority of the data colleted. This practice is most helpful under the situation that the CPU is running with high burden. It can easily collect those less important data, like history and tendency analysis, by batching so as to alleviate CPU’s loading.

Nodes intrusion detection engine：
Supervise the network communication related to target host. It can detect regular attacks, like DoS attack, FTP password steal, Web phf attack, CGI scanning and BO scanning etc.