[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Intrusion Detection recommendations

Subject: Intrusion Detection recommendations
From: mel at beckman.org (Mel Beckman)
Date: Fri, 13 Feb 2015 20:02:12 +0000
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>, <[email protected]>

JO,

IDS to meet PCI or HIPAA requirements is "regulatory grade". It meets specific notification and logging requirements. SNORT-based systems fall into this category. 

 -mel beckman

> On Feb 13, 2015, at 10:00 AM, "J. Oquendo" <joquendo at e-fensive.net> wrote:
> 
>> On Fri, 13 Feb 2015, Mel Beckman wrote:
>> 
>> Unless you need regulatory-grade IDS, your best bet is a Unified Threat Management (UTM) appliance, essentially any modern enterprise grade firewall such as a Cisco ASA, Fortigate, SonicWall, etc. These all have built-in IDS/IPS options for a fee.
>> 
>> -mel
> 
> With all due respect, is regulatory-grade IDS the same as
> say "military-grade" encryption? 
> 
> -- 
> =+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+
> J. Oquendo
> SGFA, SGFE, C|EH, CNDA, CHFI, OSCP, CPT, RWSP, GREM
> 
> "Where ignorance is our master, there is no possibility of
> real peace" - Dalai Lama
> 
> 0B23 595C F07C 6092 8AEB  074B FC83 7AF5 9D8A 4463
> https://pgp.mit.edu/pks/lookup?op=get&search=0xFC837AF59D8A4463

Follow-Ups:
- Intrusion Detection recommendations
  - From: joquendo at e-fensive.net (J. Oquendo)

References:
- Intrusion Detection recommendations
  - From: andy at newslink.com (Andy Ringsmuth)
- Intrusion Detection recommendations
  - From: mel at beckman.org (Mel Beckman)
- Intrusion Detection recommendations
  - From: joquendo at e-fensive.net (J. Oquendo)

Prev by Date: [OT] Re: Intellectual Property in Network Design
Next by Date: Customer fiber for FTT* deployment
Previous by thread: Intrusion Detection recommendations
Next by thread: Intrusion Detection recommendations
Index(es):
- Date
- Thread