Stories by Joel Snyder, David Newman and Rodney Thayer

What network IDSs can — and can't — do

Network intrusion-detection systems as a product class have been under attack recently, fueled by a series of recent Gartner reports, one of which was called "Intrusion detection is dead — long live intrusion prevention". In another, "Hype cycle for information security, 2003", Gartner opined "intrusion-detection systems are a market failure." With headlines like that, one might wonder why we did this review.