RE: Definition of Zero Day Protection

From: Fulp, J.D. USA (jdfulp_at_nps.edu)
Date: 08/09/04

  • Next message: Chris Conacher: "IDS deployment outside FW?"
    Date: Mon, 9 Aug 2004 11:06:48 -0700
    To: "Teicher, Mark (Mark)" <teicher@avaya.com>, <focus-ids@securityfocus.com>
    
    

    Here's a "stab"... and probably on the mark if I may be so bold.

    I bet it:
    1) IS marketing blurb (and a good one), and
    2) Simply represents the fact that the tool is behavior/anomaly-based
       rather than relying on known (previously seen/reported) signatures.

    JD

    -----Original Message-----
    From: Teicher, Mark (Mark) [mailto:teicher@avaya.com]
    Sent: Sunday, August 08, 2004 6:48 PM
    To: focus-ids@securityfocus.com
    Cc: Seanor, Joseph (Joe)
    Subject: Definition of Zero Day Protection

    What is Zero Day Protection, I think I understand the definition of Zero
    Day Exploits. But what is Zero Day Protection? Another marketing blurb
    or it can vendors actually offer zero day protection?

    Thank you for clarifying my confusion

    /m

    --------------------------------------------------------------------------
    Test Your IDS

    Is your IDS deployed correctly?
    Find out quickly and easily by testing it with real-world attacks from CORE
    IMPACT.
    Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more.
    --------------------------------------------------------------------------

    --------------------------------------------------------------------------
    Test Your IDS

    Is your IDS deployed correctly?
    Find out quickly and easily by testing it with real-world attacks from CORE
    IMPACT.
    Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more.
    --------------------------------------------------------------------------


  • Next message: Chris Conacher: "IDS deployment outside FW?"

    Relevant Pages

    • Re: Definition of Zero Day Protection
      ... > What is Zero Day Protection, I think I understand the definition of Zero ... But what is Zero Day Protection? ... Another marketing blurb ... In the world of virus scanners, the idea of zero day protection is ...
      (Focus-IDS)
    • Definition of Zero Day Protection
      ... What is Zero Day Protection, I think I understand the definition of Zero ... Another marketing blurb ... Find out quickly and easily by testing it with real-world attacks from CORE ...
      (Focus-IDS)
    • RE: Definition of Zero Day Protection
      ... Vendors can state they prevent Zero Day Exploits but to do that you can also stop legitimate traffic. ... What is Zero Day Protection, I think I understand the definition of Zero ... Find out quickly and easily by testing it with real-world attacks from CORE ...
      (Focus-IDS)
    • Re: Definition of Zero Day Protection
      ... intrusion detection systems. ... by the offending marketing group of a system that offers "Zero Day ... Protection" is that the system is somehow nondeterministic in how it ... The concept of an IDS is simple, we tell it what to look ...
      (Focus-IDS)
    • RE: Definition of Zero Day Protection
      ... Definition of Zero Day Protection ... the security community tend not to understand zero day attacks. ...
      (Focus-IDS)