IDS mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Re: ROI on IDS/IPS products

From: "Brandon Louder" <Brandon.Louder () mckennan org>
Date: Mon, 2 Mar 2009 11:26:48 -0600
I am interested in that Ponemon figure and how they derived it. Do you
have any links to a white paper or anything with any details? 

-Brandon

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Ray
Sent: Saturday, February 28, 2009 4:21 PM
To: focus-ids () securityfocus com
Subject: Re: ROI on IDS/IPS products

Bingo. Just ask Kaspersky what they would pay for having had an IPS
product 
installed (or a web application firewall) that could stop SQL Injection
the 
day before they got breached and their reputation took a big hit.

If you get breached and have to notify the people whose information you 
lost, Ponemon figures it's about $200 a record now. The good news is
that if 
you get breached repeatedly, your cost per record goes down. :-)

Ray
"Jeff Kell" <jeff-kell () utc edu> wrote in message 
news:49A8304C.5070506 () utc edu...

"The day before a breach, the ROI is zero. The day after, it is
infinite."  -- Dennis Hoffman, RSA











-----------------------------------------
Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended 
recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or 
distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and 
destroy all copies of the original message.
Previous By Date Next
Previous By Thread Next

Current thread: