Comments on: Why IDS will be around http://infosecplace.com/blog/2007/08/24/why-ids-will-be-around/ Commentary on the State of Information Security Sun, 10 Jan 2010 16:13:08 -0700 http://wordpress.org/?v=2.9.1 hourly 1 By: www.andrewhay.ca » Suggested Blog Reading - Wednesday August 29th, 2007 http://infosecplace.com/blog/2007/08/24/why-ids-will-be-around/comment-page-1/#comment-19740 www.andrewhay.ca » Suggested Blog Reading - Wednesday August 29th, 2007 Wed, 29 Aug 2007 21:56:37 +0000 http://infosecplace.com/blog/2007/08/24/why-ids-will-be-around/#comment-19740 [...] Why IDS will be around - So IDS isn’t dead now? OK, here’s the post I promised on why I agree that IDS is not dead and won’t be for a while. What it all essentially comes down to is reality. In theory, the way anyone’s network should be designed is in the fashion of the Core-Distribution-Access methodology. [...] [...] Why IDS will be around – So IDS isn’t dead now? OK, here’s the post I promised on why I agree that IDS is not dead and won’t be for a while. What it all essentially comes down to is reality. In theory, the way anyone’s network should be designed is in the fashion of the Core-Distribution-Access methodology. [...]

]]> By: LonerVamp http://infosecplace.com/blog/2007/08/24/why-ids-will-be-around/comment-page-1/#comment-19716 LonerVamp Mon, 27 Aug 2007 18:20:18 +0000 http://infosecplace.com/blog/2007/08/24/why-ids-will-be-around/#comment-19716 I think a lot of people with their noses closer to the grindstone (or wires) quietly shrugged at the declaration of the IDS being dead, and knew better. It was bait, really, that's about it. Bait and sensationalism for vendorland and journalists and analysts. I'm in full agreement, the IDS is not going anywhere. It is a fundamental building block of network security. When you assume prevention will eventually fail at some point (a "law" in security, imo), you need to be able to detect when that happens. While some IDS systems get complex (like IPS and later when it rolls into the firewall), there is still that need for basic IDS functions in various places on the networks. And you're right! That's reality! I think a lot of people with their noses closer to the grindstone (or wires) quietly shrugged at the declaration of the IDS being dead, and knew better. It was bait, really, that’s about it. Bait and sensationalism for vendorland and journalists and analysts.

I’m in full agreement, the IDS is not going anywhere. It is a fundamental building block of network security. When you assume prevention will eventually fail at some point (a “law” in security, imo), you need to be able to detect when that happens. While some IDS systems get complex (like IPS and later when it rolls into the firewall), there is still that need for basic IDS functions in various places on the networks.

And you’re right! That’s reality!

]]> By: Around the Security Blogosphere in 30 seconds! « Observations of a digitally enlightened mind http://infosecplace.com/blog/2007/08/24/why-ids-will-be-around/comment-page-1/#comment-19715 Around the Security Blogosphere in 30 seconds! « Observations of a digitally enlightened mind Mon, 27 Aug 2007 17:02:35 +0000 http://infosecplace.com/blog/2007/08/24/why-ids-will-be-around/#comment-19715 [...] rumors of the IDS death have been greatly exaggerated as Farnum (here), Bejtilch (here), and grumpy smurf (here) have whipped out the acoustic guitars, patchoulli/sage [...] [...] rumors of the IDS death have been greatly exaggerated as Farnum (here), Bejtilch (here), and grumpy smurf (here) have whipped out the acoustic guitars, patchoulli/sage [...]

]]>