Ezine

This article can also be found in the Premium Editorial Download "Information Security magazine: Tips for navigating the maze of global security regulations."

Download it now to read this article plus other related content.

STEP #1:
Ask yourself this question before looking at products, before talking to vendors and certainly before deciding whether you even need more security. Start with an IPS needs statement--a single paragraph. Understanding why you're adding intrusion prevention and what you're looking for in an IPS is so critical that its importance is difficult to under emphasize. Only then can you ask yourself about security and coverage, performance, management and form factor.

There are many good reasons to add IPS, including:

  • Extra protection at the perimeter or at the core, employing signature-based technology to block malware.
  • DoS mitigation to protect a server farm and ensure availability.
  • Compliance with regulatory requirements.
  • IDS-like alerting and forensics to help you get a better handle on what kinds of threats are hitting your network.
This isn't a comprehensive list, but it's a starting point. Saying "yes" to any one of these items will get you started down the path of finding the right product. If you say "yes" to all of these items, you need to start over, because you won't find one product that does all of these equally well.

It would be easier if you could simply reduce this list of implementation reasons and goals into a feature checklist--something you could throw into an RFP and pick the vendor that can check all the right boxes. That's impossible, not so much because the features

    Requires Free Membership to View

aren't available, but because of the disparate philosophies that go into the products' designs.

This was first published in February 2007

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: