IDS mailing list archives

Previous By Date Next
Previous By Thread Next

Re: IDS vs Application Proxy Firewal

From: Stefano Zanero <zanero () elet polimi it>
Date: Wed, 29 Oct 2008 20:55:49 +0100
Kamra, Ashish wrote:


At RAID, it was not discussed how the hybrid approach will be useful for
intrusion detection. The proposed solution was mainly for tackling ever
increasing malware variants. And the strange thing was that it was
announced by one of the McAfee guys that technologies for whitelisting
have been known to the anti-virus companies for over a decade now, but
when asked for the specifics there were no answers as it was supposed to
proprietary stuff. Do you have any idea on what he might have been
talking about?


After many years in the field, I've come to the conclusion that "this is
proprietary" or "this is classified" very often means "we don't know
anything about it, but we're trying and would like to make you believe
we know already".

FWIW :)

Stefano

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw 
to learn more.
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: