Re: IDS vs Application Proxy Firewal

Kamra, Ashish wrote:

At RAID, it was not discussed how the hybrid approach will be useful for
intrusion detection. The proposed solution was mainly for tackling ever
increasing malware variants. And the strange thing was that it was
announced by one of the McAfee guys that technologies for whitelisting
have been known to the anti-virus companies for over a decade now, but
when asked for the specifics there were no answers as it was supposed to
proprietary stuff. Do you have any idea on what he might have been
talking about?

After many years in the field, I've come to the conclusion that "this is
proprietary" or "this is classified" very often means "we don't know
anything about it, but we're trying and would like to make you believe
we know already".

FWIW :)

Stefano

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw
to learn more.
------------------------------------------------------------------------