IDS mailing list archives
Re: ICSA certified - better?
From: ph03n1x <ph03n1x () gmx net>
Date: Tue, 03 Aug 2004 22:48:37 +0200
Careful with ICSA. Afaik vendors can choose what part or feature they want to certify. So basically you can certify the Firewall part of your product but the rest is not certified.What I want to tell you... it doesn't really say much about a product if it has one or two ICSA certificates. But it's also not a bad thing. But don't weight that too much.
Skip Carter wrote:
Without mentioning any names, are IDP/FW appliances better if ICSA certified?Not necessarily, it really just means that the vendor spent the $$ to go through the process. On the other hand, the ICSA standard pretty much codifies best practices so if the firewall that you are using isn't capable of doing the things that the standard defines (and configured to actually do them), then its probably not that effective.
-------------------------------------------------------------------------- Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. --------------------------------------------------------------------------
Current thread:
- Re: ICSA certified - better? ph03n1x (Aug 03)
- RE : ICSA certified - better? Julius Detritus (Aug 04)