Gartner Information Security Hype Cycle Declares Intrusion Detection Systems a Market Failure; Money Slated for Intrusion Detection Should Be Invested in Firewalls.Business Editors/High-Tech Writers STAMFORD, Conn.--(BUSINESS WIRE)--June 11, 2003 Protecting enterprises from hackers, viruses and other security vulnerabilities is a primary concern for all IS departments, and many have relied on intrusion detection systems (IDSs) as a solution. However, according to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. the Gartner, Inc. (NYSE NYSE See: New York Stock Exchange :IT) (NYSE:ITB ITB Invitation To Bid ITB In The Beginning ITB Internationale Tourismusbörse (German) ITB In The Business (aka in the business service industry) ITB Intrathecal Baclofen Therapy ) Information Security Hype Cycle A hype cycle is a graphic representation of the maturity, adoption and business application of specific technologies. The term was coined by Gartner, an analyst/research house, based in the United States, that provides opinions, advice and data on the global information technology , IDSs have failed to provide value relative to its costs and will be obsolete by 2005. The Gartner Information Security Hype Cycle shows that IDS technology does not add an additional layer of security as promised by vendors. In many cases IDS implementation has proven to be costly and an ineffective investment. Gartner recommends that enterprises redirect the money they would have spent on IDS toward defense applications such as those offered by thought-leading firewall vendors that offer both network-level and application-level firewall capabilities in an integrated product. "Intrusion detection systems are a market failure, and vendors are now hyping intrusion prevention See IPS and IDS. systems, which have also stalled," said Richard Stiennon, research vice president for Gartner. "Functionality is moving into firewalls, which will perform deep packet inspection Analyzing network traffic to discover the type of application that sent the data. In order to prioritize traffic or filter out unwanted data, deep packet inspection can differentiate data, such as video, audio, chat, voice over IP (VoIP), e-mail and Web. for content and malicious traffic blocking, as well as antivirus activities." According to the Gartner Information Security Hype Cycle research, some of the problems associated with IDSs are: -- False positives and negatives. -- An increased burden on the IS organization by requiring full-time monitoring (24 hours a day, seven days a week, 365 days a year.) -- A taxing incident-response process. -- An inability to monitor traffic at transmission rates greater than 600 megabits per second (unit) megabits per second - (Mbps, Mb/s) Millions of bits per second. A unit of data rate. 1 Mb/s = 1,000,000 bits per second (not 1,048,576). E.g. Ethernet can carry 10 Mbps. . "Firewalls are the most-effective defense against cyberintruders on the network, and they are becoming increasingly better at blocking network-based attacks," said Stiennon. "To be considered as a challenger, visionary or leader, a vendor must have both network-level and application-level firewall capabilities in an integrated product. Vendors that have only one or the other will be niche players." Gartner has analyzed the maturity of more than 500 technologies and has released the findings in a series of interactive Hype Cycles. Each Hype Cycle document focuses on a particular segment and can include more than 15 related technologies. The interactive format of the Hype Cycles enables users to dig deeper into particular technologies of interest by clicking through the Hype Cycle documents to related Gartner research on the individual technology. The Gartner Information Security Hype Cycle is one of 18 Hype Cycles recently launched by Gartner. The Information Security Hype Cycle analyzes 20 different technologies within the information security market, including IDSs, deep packet inspection firewalls, security platforms, Wi-Fi protected access (networking, security) Wi-Fi Protected Access - (WPA) A security scheme for wireless networks, developed by the networking industry in response to the shortcomings of Wired Equivalent Privacy (WEP). security, Web services (1) Loosely, any online service delivered over the Web. Such usage appears in articles from non-technical sources, but not in IT-oriented publications, because definition #2 below describes the correct use of the term. security standards, identity and access management, public-key infrastructure and Secure Sockets Layer (networking, security) Secure Sockets Layer - (SSL) A protocol designed by Netscape Communications Corporation to provide secure communications over the Internet using asymmetric key encryption. . For more information on Gartner Hype Cycles, please visit www.gartner.com/pages/story.php.id.8789.s.8.jsp. About Gartner Gartner, Inc. is a research and advisory firm that helps more than 10,000 clients leverage technology to achieve business success. Gartner's businesses are Research, Consulting, Measurement, Events and Executive Programs. Founded in 1979, Gartner is headquartered in Stamford, Conn., and has more than 3,800 associates, including approximately 1,000 research analysts and consultants, in more than 75 locations worldwide. Revenue for calendar year 2002 totaled $888 million. For more information, visit www.gartner.com. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion