Enterprise Network Security Through Modular Adaptive Intrusion Prevention System

Abstract

As enterprise networks expand in complexity and scale, traditional intrusion prevention systems (IPS) struggle to provide adaptive, low-latency protection against evolving threats. This paper proposes a modular, telemetry-driven IPS framework designed for real-time intrusion mitigation in dynamic environments. The system architecture decouples detection logic from enforcement mechanisms, allowing independently deployable modules to perform traffic analysis and report confidence-weighted alerts to a centralized orchestration controller. A formal decision model aggregates these outputs and adapts policies using real-time feedback. Through simulation-based evaluations, the proposed system demonstrates a 31.5% reduction in detection latency and over 50% decrease in false positive rate compared to monolithic IPS designs. The results indicate that a modular, service-oriented IPS architecture enhances responsiveness, accuracy, and operational agility in enterprise settings.