Resources for Federal Information Security Management Act (FISMA)

Intrusion detection in the age of compliance

computerworld.com

While intrusion detection technologies are clearly not a "hot new thing" anymore, they are still the subject of active industry debate. Since the infamous "IDS is Dead" piece was published by Gartner in 2003, the discussion about IDS relevance to today's world of commercial malware and web exploits rages on. Further, the IDS relationship to newer technologies such as intrusion prevention systems (IPS) and network-behavior anomaly detection (NBA) systems is also commonly discussed in the security community.

At the same time, everybody who is even slightly involved with security knows that prevention technologies will fail at one point. It's necessary to have an additional layer to detect the consequences of a breach. (Note that detection will also fail at some point, leading us into incident response ????????? subject of my previous article.) Similarly, few question the need for comprehensive network monitoring aimed at increasing control over what should be "your" network, but is sometimes "owned" by the attackers as well.

View the Resource

Share or bookmarklet this web page at: