CSOonline

Is Signature- and Rule-Based Intrusion Detection Sufficient?

Signatures and rules are the bulwark of traditional intrusion detection systems (IDS), however they are also a significant source of frustration. Most IDS systems are known for being noisy, generating ...
Network World

The evolution of IDS

Security advances push intrusion detection deeper into the network, relegating its role to forensics investigation and internal monitoring. Drowning in signature libraries and reactive event ...
Network World

Network-intrusion detection systems

Lancope’s intrusion-detection system is an anomaly in more ways than one. The Stealthwatch M250 Version 4.2 we tested – which veers from popular signature-based IDS products with a behavior-based ...
CSOonline

Slow EDR Rollout Requires a NG-IDS Compensating Control

When Anton Chuvakin, then a Gartner Analyst, first coined the term endpoint detection and response (EDR) in 2013, most enterprises raced to replace antivirus (AV) with EDR. And that makes sense, as ...
InfoWorld

New dimensions in intrusion defense

Sourcefire’s open source IDS engine, Snort, has long been the gold standard of signature-based intrusion detection systems. Snort’s commercial sibling, Sourcefire 3D, takes Snort a step further by ...
InfoWorld

Network detectives sniff for snoops

Just a few short years ago, an IDS was a luxury. Before the rise of the Web application and the worm, most networks were adequately defended by a firewall at the perimeter and a virus scanner at the ...