Security Investigate

The Challenges of Using an Intrusion Detection System: Is It Worth the Effort?

Download now Free registration required

Executive Summary

An Intrusion Detection System (IDS) can be a key component of security incident response within organizations. Traditionally, intrusion detection research has focused on improving the accuracy of IDSs, but recent work has recognized the need to support the security practitioners who receive the IDS alarms and investigate suspected incidents. To examine the challenges associated with deploying and maintaining an IDS, the author analyzed 9 interviews with IT security practitioners who have worked with IDSs and performed participatory observations in an organization deploying a network IDS.

  • Format: PDF
  • Size: 3392.1 KB