, 2007-11-09
Some years ago, I remember reading a press release from the Gartner Group. It was about intrusion detection systems (IDS) offering little return for the monetary investment in them and furthermore, that this very same security technology would be obsolete by the year 2005. A rather bold statement and an even bolder prediction on their part.
Expand all |
Post comment
key point here...
You see, Don , what they fail to see in addition to the above comment, is that IDS is a live-reaction system , which will offer enough protection against many attacks, and at the same time offer a good ROI,since suffering a hacking/cracking blow , and use a CSIRT will cause a triple impact on their budget.
One is to maintain and apply CSIRT policies and reactions.
Second is to restore all functionality and check all things.
ok... so far same happens with an IDS... the third though blow is critical.
Reputation impact. A network which has been altered/compromised from an attacker, gets a "negative reputation" which indeed affects all kinds of parameters in management and marketing levels.
They should remember that LAN is there to provice services and clients expect to be safe. IDS is cappable to offer this in real time and even as a "show only" precaution measure that company took. Something to show of to worrying clients.
Unless you expect them to be happy enough by saying a have a very good policy , right after we established that we have been attacked!!!
Gandalf
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/457/34791#34791