The importance of data normalization in IPS
by Darren Suprina - Security Architect, Stonesoft - Monday, 7 January 2013.
Such a thorough and comprehensive data normalization process is the most effective way to protect networks from AETs and other threats that may otherwise disguise themselves to go undetected through standard IPS. The most effective IPS devices will ensure evasions are removed through the normalization process before the data stream is even inspected. This normalization is so successful because it combines a data stream based approach, layered protocol analysis and protocol specific normalization at different levels. It therefore helps fortify a network's three weakest points and keeps malicious invaderís attacks at bay.