Kamra, Ashish wrote: > At RAID, it was not discussed how the hybrid approach will be useful for > intrusion detection. The proposed solution was mainly for tackling ever > increasing malware variants. And the strange thing was that it was > announced by one of the McAfee guys that technologies for whitelisting > have been known to the anti-virus companies for over a decade now, but > when asked for the specifics there were no answers as it was supposed to > proprietary stuff. Do you have any idea on what he might have been > talking about?
After many years in the field, I've come to the conclusion that "this is proprietary" or "this is classified" very often means "we don't know anything about it, but we're trying and would like to make you believe we know already". FWIW :) Stefano ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw to learn more. ------------------------------------------------------------------------
