Premium Content

Access "'Targeted' perimeter defense improves network-based intrusion detection systems"

Joel Snyder Published: 21 Dec 2012

  Click to enlarge. Doubleclick to restore. Network-based intrusion detection systems (NIDSes) are at least as famous for their failures as their successes. Most NIDSes generate a lot of false positives, false alerts, false alarms--whatever you call them, they've driven many frustrated security managers to simply pull the plug on their NIDSes. Gartner Group went so far last year as to proclaim that "intrusion detection is dead." The vendors' response is smarter NIDSes. "Target-based IDS" is a new technology that correlates knowledge about network topology, operating systems and applications with incoming attack information. That appealed to Ed Goff, whose North Carolina-based power utility -- Progress Energy -- was in the market for an IDS solution for its internal networks, to complement its perimeter defense. "Using the strategy of correlating bad activity sensed on the wire to our hosts enabled us to leverage the intelligence of the application instead of working so hard and relying on human elements to see trends," says Goff, who chose an Internet ... Access >>>

Access TechTarget
Premium Content for Free.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

What's Inside

Features

More Premium Content Accessible For Free