|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: Top IPS vendors - please read for invitation to Network World review.
From: Mark Teicher (mht3
earthlink.net)
Date: Thu Aug 28 2003 - 00:39:41 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Zach,
You are exactly correct, PREVENTION is key to the technology, most IPS
products that are available today have an underlying IDS piece with some
basic PREVENTION functionality (i.e. TCP SNIPE, TCP RESET), but not enough
PREVENTION to fully analyze the transaction. IPS are not easily applicable
to SAP based applications..
/mark
At 10:36 PM 8/27/2003, Zach Forsyth wrote:
> >-----Original Message-----
> >From: Mark Teicher [mailto:mht3earthlink.net]
> >Sent: Wednesday, 27 August 2003 22:30 PM
> >To: Paul Schmehl; focus-idssecurityfocus.com; seth.knoxsygate.com
> >Subject: Re: Top IPS vendors - please read for invitation to Network
>World review.
> >
> >
> >The real question I have is what defines an IPS product versus an IDS..
>IDS
> >is obvious, but IPS, it is a very tough definition
>
>Intrusion DETECTION system
>
>Intrusion PREVENTION system
>
>Seems fairly fundamental to me...I think I know what you are trying to
>say though, keep referring back to the word prevention :)
---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training), October 1-2 (Briefings) in Tysons Corner, VA; the worlds premier
technical IT security event. Modeled after the famous Black Hat event in
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.
Symanetc is the Diamond sponsor. Early-bird registration ends September 6 Visit: www.blackhat.com
---------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]