"Shooting the Hostage": Why Current Generation Intrusion Prevention Systems Fails Business
by Dominic Storey - Technical Consultant at Sourcefire - Wednesday, 27 October 2004.
Can the system perform the Three Dís? Can it detect the act of intrusion and the result of intrusion? Can it apply data reduction methods to determine the best course of action? And can it defend your network by applying the ABCís of defence Ė Alert you on critical events, block events if required and correct systems which have been compromised?
If these questions can be answered to your satisfaction, you can be assured that such a system can provide real business value and provide you with real-time network defense.