Yes, and I agree there is host and network IPS. Okena is a good example
of host IPS and some firewalls could be classified as an IPS because
they do more than just play traffic cop.
Our disagreement was over level of capability. I felt that calling a
device that performed basic access control and IPS was inappropriate.
IPS is more than access control, in my opinion.
___________________________________
Andrew Plato, CISSP
President/Principal Consultant
Anitian Enterprise Security
503-644-5656 Office
503-644-8574 Fax
503-201-0821 Mobile
www.anitian.com
___________________________________
-----Original Message-----
From: Crispin Cowan [mailto:crispin@private]
Sent: Tuesday, September 09, 2003 6:57 PM
To: Andrew Plato
Cc: crime@private
Subject: Re: CRIME SecureWorld Seattle September 24 & 25
Andrew Plato wrote:
>I must admit, IPS panel has me scratching my head. There is no
>representation from Top Layer, ISS, or Intruvert all of whom have very
>established products in the IPS/IDS space. NFR doesn't even have an
>in-line IPS. And correct me if I am wrong Crispin, but Immunix doesn't
>even DO IDS or IPS.
>
Immunix does *host* IPS. As I've said before, I believe that IDS and IPS
can each be divided into Host and Network flavors:
* Host
o IDS: tripwire
o IPS: Immunix, Okena
* Network:
o IDS: ISS RealSecure, SNORT
o IPS: Firewalls, Hogwash
IIRC, you disagreed last time we had this discussion, but I don't recall
exactly what we disagreed about.
Crispin
--
Crispin Cowan, Ph.D. http://immunix.com/~crispin/
Chief Scientist, Immunix http://immunix.com
http://www.immunix.com/shop/
This archive was generated by hypermail 2b30 : Thu Sep 11 2003 - 16:02:22 PDT