tag:blogger.com,1999:blog-4088979.post73384180341679433..comments2023-10-16T06:06:25.012-04:00Comments on TaoSecurity Blog: Experts: IDS is here to stayRichard Bejtlichhttp://www.blogger.com/profile/13512184196416665417noreply@blogger.comBlogger6125tag:blogger.com,1999:blog-4088979.post-3465608514932982172007-08-31T01:40:00.000-04:002007-08-31T01:40:00.000-04:00Just because you bought an IPS doesn't mean you ha...Just because you bought an IPS doesn't mean you have to enable the blocking functionality. You can enable blocking only for certain signatures or severity levels and turn it back off whenever. Why the debate over which is better? Also, the nice thing about separate devices with a dedicated purpose is you are not tied to a single vendor and their "all-in-one" product that may be crap. I just don't see how security collapsing into the switch is a good thing. Do you really want to be force fed integrated Cisco IPS? If that happens I wouldn't be suprised if we are talking about why would should be keeping things separate again in a few years. Could this be a cycle? Could this be planned obsolesence? *dripping with sarcasm*Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-38497407537836473832007-08-25T12:23:00.000-04:002007-08-25T12:23:00.000-04:00As a technologist, I am accustomed to experts like...As a technologist, I am accustomed to experts like Gartners lecturing me on how "customers don't buy technoology, they buy solutions". Well, it turns out that the experts can be wrong too. <BR/><BR/>Customers don't just buy solutions, they buy solutions that fit within their job description. <BR/><BR/>Gartner had created tremendous uproar with their original assertion which is probably why they did it. But they were wrong not because IPS is not viable but because IPS and IDS fundamentially sell to two different set of customers. <BR/><BR/>Richard was correct in pointing out that IPS belongs to firewall and will be part of the "networking" infrastructure whereas IDS will always remain part of the "monitoring" infrastructure. <BR/><BR/>IPS and IDS will co-exist because there are two separate job descrptions.<BR/><BR/><BR/>--Denny--<BR/><BR/>Denny K MIu<BR/>http://www.LoveMyTool.comDenny K Miuhttps://www.blogger.com/profile/05170369420524509147noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-9924445794308163302007-08-23T14:30:00.000-04:002007-08-23T14:30:00.000-04:00Riddle me this, how is Pescatore still a "security...Riddle me this, how is Pescatore still a "security player" after his moronic statement, which IMO was geared only towards one purpose? Getting companies to drop dollars on IPS.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-913111448639062952007-08-23T13:51:00.000-04:002007-08-23T13:51:00.000-04:00Still many have been sold on the IPS "Solution". T...Still many have been sold on the IPS "Solution". To the point where you really have to sell them on the idea that some things shouldn't be blocked.scottderhttps://www.blogger.com/profile/02331161366876332749noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-68401704680124247352007-08-23T09:39:00.000-04:002007-08-23T09:39:00.000-04:00I think this is to directly confront the June 2003...I think this is to directly confront the June 2003 Gartner report / statement that "IDS is dead". Why it took four years to do so is beyond me and maybe IDS just needed more time to figure out what it wanted to be when it grew up.Unknownhttps://www.blogger.com/profile/11314186447739569836noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-58185927989720595122007-08-23T09:36:00.000-04:002007-08-23T09:36:00.000-04:00Well said-- I was actually just having a conversat...Well said-- I was actually just having a conversation with some co-workers making that exact point: IDS and IPS are complementary technologies, with different goals.Anonymousnoreply@blogger.com