Don't blame the IDS

Don't blame the IDS
Don Parker, 2007-11-09

Some years ago, I remember reading a press release from the Gartner Group. It was about intrusion detection systems (IDS) offering little return for the monetary investment in them and furthermore, that this very same security technology would be obsolete by the year 2005. A rather bold statement and an even bolder prediction on their part.

Expand all | Post comment

Don't blame the IDS 2007-11-10
Anonymous

Don't blame the IDS 2007-11-11
Param

>> Dave is of the same opinion as Gartner -- in essence.
>> He sees little added value in an IDS. They can be
>> bypassed by a skilled attacker, such as himself.

This is like saying, "Most of the computer attacks can be prevented if you keep your boxes updated, patched, apply firewall and antivirus software. But how many machines are like that ? We all know the answer.

IMHO, a lot of malware writers copy code from each other's program and therefore the same signature trigger for different variants as well.

Nobody likes re-inventing the wheel...

Good artists copy. Great artists steal ;)

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/457/34787#34787

Yes, let's blame the IDS 2007-11-12
assurbanipal (1 replies)

Re: Yes, let's blame the IDS 2007-11-13
Anonymous

Don't blame the IDS 2007-11-12
Gandalf

Don't blame the IDS 2007-11-12
Anonymous (1 replies)

Re: Don't blame the IDS 2007-11-13
Ryan Wegner

Don't blame the IDS 2007-11-13
Anonymous

Don't blame the IDS 2007-11-14
John Sloan (1 replies)

Re: Don't blame the IDS 2007-11-17
Ari Takanen (Codenomicon)

Don't blame the IDS 2007-11-19
Anonymous

NSM == IDS++ 2007-11-26
Hanashi