OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: mhtclark.net
Date: Tue Jun 12 2001 - 20:41:03 CDT

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Archive: http://msgs.securepoint.com/ids
    FAQ IDS: http://www.sans.org/newlook/resources/IDFAQ/ID_FAQ.htm
    FAQ NIDS: http://www.ticm.com/kb/faq/idsfaq.html
    IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
    HELP: Having problems... email questions to ids-owneruow.edu.au
    NOTE: Remove this section from reply msgs otherwise the msg will bounce.
    SPAM: DO NOT send unsolicted mail to this list.
    UNSUBSCRIBE: email "unsubscribe ids" to majordomouow.edu.au
    -----------------------------------------------------------------------------
    All Sn0rt deployed IDS systems will then become aupgraded with neural
    processors, becoming fully sysadmin unneeded. Martynet, will begin to learn
    at a geometric rate. Martynet will then become self-aware at 2:14 a.m.
    eastern time, August 29.

    /m

    At 08:09 PM 6/12/2001 -0400, Bill Royds wrote:

    >-----------------------------------------------------------------------------
    >I think in one sense IDS will disappear as a separate entity.
    >In 5 years, all routers will handle IDS, firewalling, QoS and resource
    >monitoring.
    >The new IDS blade for Cisco Catalyst 6000 series router-switches will
    >become the norm.
    >Managed Security will become part of Managed Network services but there
    >will still be a great need for people to do network planning and design
    >and to do interpretation of results.
    >Unfortunately, I also see more isolation of segments of the Internet from
    >each other. Corporate web servers will pay for premium backbones that
    >filter and firewall at their perimeters. These corporate backbones will
    >authorise users as the enter their networks and restrict use to users
    >matching certain monetary profiles. Business to business traffic will not
    >even go near the cable modem/dialup community and access restrictions to
    >only authorised users will become the norm.
    > Then Intrusion Detection will be the job of border routers between
    > ASN's not at leaf nodes.
    >
    >-----Original Message-----
    >From: owner-idsuow.edu.au [mailto:owner-idsuow.edu.au]On Behalf Of
    >Peter.Watsonsunlife.com
    >Sent: Monday, June 11, 2001 14:43
    >To: idsuow.edu.au
    >Subject: IDS: IDS Future
    >
    >
    >Archive: http://msgs.securepoint.com/ids
    >FAQ IDS: http://www.sans.org/newlook/resources/IDFAQ/ID_FAQ.htm
    >FAQ NIDS: http://www.ticm.com/kb/faq/idsfaq.html
    >IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
    >HELP: Having problems... email questions to ids-owneruow.edu.au
    >NOTE: Remove this section from reply msgs otherwise the msg will bounce.
    >SPAM: DO NOT send unsolicted mail to this list.
    >UNSUBSCRIBE: email "unsubscribe ids" to majordomouow.edu.au
    >-----------------------------------------------------------------------------
    >
    >
    >Does anybody care to gaze into their crystal ball and guess what IDS will
    >look like in five years time.
    >
    >I will get the ball rolling:
    >
    >2006: All incoming packets will traverse a hybrid
    >firewall/IDS/sandbox/honeypot technology. If the packet meets the basic
    >criteria for traffic it will pass through and simultaneously be copied over
    >to a virtual network for further analysis and decision making. Realtime
    >analysis of unknown packets would be done due to the risk level. Packets
    >from known networks would prioritized for later analysis in the virtual
    >network.