home news blogs forums events research newsletter whitepapers careers


Network Computing Network Computing Powered by InformationWeek Business Technology Network
InformationWeek 500 Conference -- September 14-16, 2008 Registed Today!

IMMERSE YOURSELF:

SOA

  |

Data Center

  |

802.11n

  |

Data Privacy

  |		 APO  |

Virtualization

  |

NAC

  |

Security

  |

Network Mgmt

  |

Enterprise Apps

  |

Storage & Servers

Letters
F E A T U R E  
To Catch a Thief

  August 20, 2001
  By Patrick Mueller and Greg Shipley

Executive Summary

Intrusion Detection

Have you ever known an expensive, purebred guard dog that was well-trained, except someone forgot to teach it not to take goodies from strangers? Your average thief will get his ass bit, but a smart intruder bearing big, juicy steak could slide right past the pooch.

So it goes with the 10 IDSes we tested on our Bruisernet, at DePaul University in Chicago. Today's intrusion-detection products come at purebred prices and are all high-maintenance, requiring considerable manpower to maintain. For the most part, they will stop run-of-the-mill attacks, but experienced hackers will likely find a way in. That's the bad news. The good news is that the market has made strides, and IDS products are improving all the time.

In what may well be the most comprehensive test of IDSes ever, we deployed Cisco Systems' Secure IDS, Computer Associates International's eTrust, CyberSafe Corp.'s Centrax, Enterasys Networks' Dragon, Internet Security Systems' Black ICE (ISS acquired NetworkICE Corp. in April), ISS' RealSecure, Intrusion.com's SecureNet Pro, NFR Security's Intrusion Detection System (we also looked at Anzen Computing's FlightJacket, which was acquired by NFR in June), the open-source Snort and Symantec Corp.'s NetProwler (formerly Axent Technologies' NetProwler; Axent was acquired by Symantec in December 2000).

The test site was DePaul's network, which comprises more than 10,000 nodes with a mishmash of platforms and end users. The network averages about 38-Mbps Internet throughput, with traffic ranging between 5,000 and 7,000 packets per second. Sounds tame enough, but it chewed up and spit out many of the products within hours.

When all was said and done, we gave Dragon our Editor's Choice award. Simply stated, it did what it was supposed to do, it didn't blow up constantly, and it is suitable for large environments. Bottom line: These systems can be worthwhile; you just need to go into it with your eyes open, have realistic expectations and choose the solution that's the best fit for your environment.


   Page: 1 | 2 | 3 | Next Page





Ready to take that job and shove it?

Function:

Keyword(s):

State:
SPONSOR
RECENT JOB POSTINGS
CAREER NEWS
10 Search Engines You Don't Know About
Go beyond Google and get vertical. These specialized search sites will help you find the business information you need -- fast.

Yahoo Profits Fall 23%, Cuts 1,000 Jobs
Ari Balogh was named to the post of chief technology officer as the companys for a "realignment" of employees.

More articles from our career center










InformationWeek U.S. IT Salary Survey 2008
Salaries for business technology professionals are falling. Here's what you need to know in order to make good hiring decisions and personal career choices. Download Today
 
ROLLING RIGHT ALONG
Follow key Network Computing Reviews from conception to completion. This Week: Holistic APM.



Network Computing Reports Emerging Enterprise Podcast Series: Secrets to Success








TechSearch
Microsite of the Week


Powerful Information at Your Fingertips



InformationWeek Business Technology Network
InformationWeekInformationWeek 500InformationWeek 500 ConferenceInformationWeek AnalyticsInformationWeek CIO
InformationWeek EventsInformationWeek ReportsInformationWeek MagazinebMightyByte and SwitchDark Reading
Digital LibraryIntelligent EnterpriseInternet EvolutionNetwork ComputingNo Jitter
space
Techweb Events Network
InteropVoiceConWeb 2.0 ExpoWeb 2.0 SummitEnterprise 2.0 ConferenceMobile Business ExpoSoftware ConferenceCSI - Computer Security Institute
Black HatGTECEnergy CampMashup CampStartup Camp
space
Light Reading Communications Network
Light ReadingLight Reading EuropeUnstrungLight Reading's Cable Digital NewsConstantinopleInternet Evolution
Heavy ReadingLight Reading Live!Light Reading InsiderEthernet ExpoOptical ExpoTeleco TVTower Technology Summit
space
Financial Technology Network
Advanced TradingBank Systems & TechnologyInsurance & TechnologyWall Street & TechnologyAccelerating Wall StreetBank Systems & Technology Executive SummitBuyside Trading SummitInsurance & Technology Executive Summit
space
Microsoft Technology Network
MSDN MagazineTechNetThe Architecture Journal
space
App Infrastructure   |   Messaging & Collaboration   |   Network & Systems Mgmt   |   Network Infrastructure   |   Security  |   Storage & Servers   |   Wireless   |   Enterprise Apps
About Us  |  Contact Us  |  Site Map  |  Technology Marketing Solutions  |   Briefing Centers
Copyright © 2008  United Business Media LLC  |  Privacy Statement  |  Terms of Service  |  Your California Privacy Rights