SearchSecurity has an article, "Gartner declares IDS obsolete by 2005", online looking more closely at the recent Gartner report. In it, Gartner VP of Research, Richard Stiennon, is quoted as saying: "The underlying problem with IDS is that enterprises are investing in technology to detect intrusions on a network. This implies they are doing something wrong and letting those attacks in."
Hmmm, not sure I fully agree with Mr. Stiennon on that point. Security is about layers, yes- prevent as much as possible, but then detect as well. A new attack may not trigger an alert or block on the firewall, but could, once inside the network, show clear signs of doing harm.
It's sort of like dental care. Don't stop flossing and brushing as the first line of defense, but be prepared to have x-rays and drilling done if a cavity does develop.
Posted by Diana at July 22, 2003 07:44 AM