IDS mailing list archives
Re: self authentication for sensors in ids ?
From: Stefano Zanero <stefano.zanero () ieee org>
Date: Mon, 12 Jan 2004 22:33:52 +0100
Martin Roesch wrote:
Not sure I understand this one, if the sensor falls into an attacker's hands the sensor can be made to report anything (or nothing).
Yes, there is no real way to recognize if something running on a compromised machine has not been tampered with.
Anything you throw in can only slow the attacker down, not stop him. Stefano --------------------------------------------------------------------------- ---------------------------------------------------------------------------
Current thread:
- self authentication for sensors in ids ? Gaurav_Jindal (Jan 12)
- Re: self authentication for sensors in ids ? Martin Roesch (Jan 12)
- Re: self authentication for sensors in ids ? Stefano Zanero (Jan 12)
- Re: self authentication for sensors in ids ? Yoann Vandoorselaere (Jan 13)
- Re: self authentication for sensors in ids ? Michal Melewski (Jan 28)
- Re: self authentication for sensors in ids ? Stefano Zanero (Jan 30)
- Re: self authentication for sensors in ids ? Michal Melewski (Jan 30)
- Re: self authentication for sensors in ids ? Stefano Zanero (Jan 30)
- Re: self authentication for sensors in ids ? Martin Roesch (Jan 12)