Trends in Intrusion Detection: Perspectives from a Security Tool Vendor
Page Content
 |
Gene Kim - Tripwire Security Systems Inc.
Feb 19, 1999
Abstract
Intrusion detection tool vendors have done a surprisingly poor job in educating customers about their offerings. All the product data sheets from different vendors seem identical, their products seem to solve the same problems, and yet use radically different approaches. Pity the customer, the IS manager who is ultimately accountable and responsible for securing their corporate networks, who have been mandated by upper management to spend money to solve "that intrusion detection problem".In the first half of this talk, a brief history of last ten years of computer security threats is presented. Much has changed since the Morris worm, and if one connects the dots and squints in the right way, one might conclude that things are actually much, much worse now. The threat of more sophisticated rootkits and worms, script kiddies, and an increasingly vulnerable and homogeneous target demographic make computer security an exciting area to be working in.
In the second half of this talk, I present the emerging taxonomy of intrusion detection tools being provided by commercial vendors, along with a survey of their capabilities, and then present an alternate taxonomy which better accomodates the emerging need for forensic tools. Some challenges faced by virtually all tool vendors is then presented.
About the Speaker
Gene Kim is co-founder and chief technology officer at Tripwire Security Systems, Inc. Along with Dr. Eugene Spafford, Gene developed the Tripwire security tool in 1992 while at Purdue University COAST Laboratory. At TSS, he leads the development effort for the TripwireTM family of computer security products, and architected the first fully-supported, commercial release of Tripwire. Gene has published numerous papers on computer security, operating systems, and networking in Usenet, ACM, and IEEE publications. He received an M.S. in computer science from University of Arizona and a B.S. in computer science from Purdue University.Gene's other notable achievement at Purdue is purchasing Spaf's 1975 Oldsmobile Cutlass. Due to pending law suits and international treaty violations, stories are currently unavailable.
© 1999-2013 Purdue University. All rights reserved.
Use/Reuse Guidelines
CERIAS Seminar materials are intended for educational, non-commercial use only and any or all commercial use is prohibited. Any use must attribute "The CERIAS Seminar at Purdue University." Opinions expressed in the recordings are not necessarily representative of the views of CERIAS or of Purdue University.
Footer
RSS Feeds
Combined XML Feed
News XML Feed Events XML Feed Weblogs XML Feed Security Seminar Podcast
Twitter: @cerias, @ceriasarchive, #cerias
CERIAS, Purdue University / Recitation Building / 656 Oval Drive / West Lafayette IN 47907-2086
phone (765)494-7841 / fax (765)496-3181
Copyright © 2013, Purdue University, all rights reserved. Purdue University is an equal access/equal opportunity university.
If you have trouble accessing this page because of a disability, please contact the CERIAS webmaster at webmaster@cerias.purdue.edu. Some content on this site may require the use of a special plug-in or application. Please visit our plug-ins page for links to download these applications.
Privacy Policy
