Intrusion Detection White Papers

What's more important, security or compliance? Most IT shops are focused on compliance but breaches are still happening. A recent study concludes that evidence of those breaches tends to be right there in log files. But CISOs aren’t tapping into that intelligence and many breaches go undetected VIEW SUMMARY

This paper is designed to provide a basic understanding of what heuristics are and how they are used in the anti-malware industry. Topics covered include signature based detection, generic signatures, passive heuristics, and active heuristics or emulation. VIEW SUMMARY

From over-provisioning bandwidth to reliance on your ISP - often the most likely to suffer an attack – this paper details the seven most commonly used DDoS strategies, details their shortcomings, and looks at more effective & modern ways of mitigating attacks. VIEW SUMMARY

New endpoint vulnerabilities such as web-based malware are increasing information security risk in the enterprise. This paper tackles the emergence and impact of a new concept: the unification of endpoint security components into a single agent with centralised control. VIEW SUMMARY

Dedicated are bought for their performance advantage over integrated systems. However, IPS systems are seldom configured effectively: more often than not they are in practise used to log incidents as they occur. VIEW SUMMARY

Challenges, such as increasing pressure to reduce total cost of ownership (TCO), combating evolving threats, and keeping things simple and manageable, can be compounded when a security infrastructure is inflexible. This paper introduces a single security platform. VIEW SUMMARY

This paper focuses on endpoint security and whether a level of complacency exists among large organisations with regard their current capabilities VIEW SUMMARY

Although the concept and promise of unified threat management (UTM) as a single security solution makes sense, not all UTM products have the same capability to make good on that promise. This guide looks at how to choose a solution that incorporates the key characteristics and capabilities VIEW SUMMARY

"Polymorphic" malware changes its own code, frustrating signature based methods of identifying threats. This paper outlines a different approach based on hash values: a technique more commonly used in forensic scenarios VIEW SUMMARY

This analyst report looks at the challenge of information protection and control and presents a preemptive approach to growing internal threats to business information, the impact of government regulations on the protection of data, and how enterprises must adopt database security best practice VIEW SUMMARY