--- as dsf <[EMAIL PROTECTED]> wrote: > How is ISS dealing with Intrusion Prevention System? > It seems everyone is just talking about good things > about Netscreen IPS feature. > How do we , security admins (most here probably > working with ISS Realsecure) face the fact that 75% of > future IDS implementation will undoubtely lead to an > IPS system? > Any comments?
ISS has been shipping "RealSecure Guard" for almost two years. Network ICE (who ISS acquired in 2001) was the first company to ship an IPS, and the technology was designed from the ground up to do IPS. Likewise, customers have used the TCPkill and firewall reconfiguration features for years in RealSecure to protect themselves from intrusions. The thing is, IPS works much better on paper than it does in the real world. There are still a lot of wrinkles to work out. This is why you don't see ISS heavily marketing "IPS". IPS systems completely failed to protect people from the SQL Slammer worm (including our own IPS). The most effective defense was your traditional "firewall". ISS is coming out with some really cool technology at the end of the year that will change this. It's still not going to be a magic pill that stops all intrusions, but it will be something that works in practice, technology that if we had it today, would have stopped the Slammer worm (and a whole bunch of other stuff). __________________________________________________ Do you Yahoo!? Yahoo! Tax Center - forms, calculators, tips, more http://taxes.yahoo.com/ _______________________________________________ ISSForum mailing list [EMAIL PROTECTED] TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to https://atla-mm1.iss.net/mailman/listinfo
