Intrusion Detection Systems - IT Library : ZDNet Asia

White Papers

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Kevin Mitnick on Malware: Mitigating Malware in Userland 2006-07-16 18:35:20 AppSense

If the security of your corporate data isn't top of mind, it will be by the time you finish this attention-grabbing white paper by Kevin Mitnick. The author is the once-vilified hacker who served four years in a federal prison in the 1980s for breaking into corporate computers; since "going legit," Mitnick has transformed himself into one of the most sought-after security consultants in the world. He explains how malware is being used to steal corporate data and describes a number of real-world data thefts that illustrate all too clearly the extent to which hackers will go to steal your secrets and sell them to your competitors. Sponsored by AppSense, this white paper is not to be missed. Download it today!

Using Security Compliance Software to Improve Business Efficiency and Reduce Costs 2006-09-12 12:24:44 Symantec

This IDC white paper analyzes the cost of complying with increasing numbers of government regulations. It discusses specific cost reduction strategies and cites Symantec's security solutions as examples of packaged solutions that can help enterprises reduce their overall costs and still meet regulatory requirements. Finally, the authors recommend strategies for implementing packaged compliance solutions. (Sponsored by Symantec)

"Going Up, Going Down!" - A Review of Quarter 2/2006 2006-09-15 10:47:40 MessageLabs

Welcome to the June Edition of the MessageLabs Intelligence monthly report. This report provides the latest threat trends for June 2006, as well as a quarterly retrospective, to keep you informed regarding the ongoing fight against viruses, spam and other unwelcome content.

Log Analysis for Intrusion Detection 2006-07-27 10:07:07 Infosecwriters.com

Log analysis is one of the most overlooked aspects of intrusion detection. Nowadays every desktop is with an antivirus, companies with multiple firewalls and even simple end-users buying the latest security related tools. However, who is watching or monitoring all the information these tools generate? Or even worse, who is watching the web server, mail server or authentication logs? The author explains about the crucial security information that only few of these events have and nobody notices. A lot of attacks would not have happened (or would have been stopped much earlier) if administrators cared to monitor their logs.

Cross-Layer Analysis for Detecting Wireless Misbehavior 2006-05-12 01:00:28 University of Maryland

Intrusion Detections Systems (IDSs) in ad hoc networks monitor other devices for intentional deviation from protocol, i.e., misbehavior. This process is complicated due to limited radio range and mobility of nodes. Unlike conventional IDSs, it is not possible to monitor nodes for long durations. As a result IDSs suffer from a large number of false positives. Moreover other environmental conditions like radio interference and congestion increase false positives, complicating classification of legitimate nodes and attackers. This paper presents a scheme that helps in accurate diagnosis of malicious attacks in ad hoc networks.

Building a Secure Foundation for Enterprise Mobility 2006-06-30 19:08:06 Motorola

Because the boundaries between wired and wireless networks are blurring, today's enterprises must adopt a security posture that makes sense for both environments. This white paper from Motorola describes the unique challenges associated with securing wireless communications and outlines a holistic approach to mobile security that integrates four key environmental considerations: people, process, policy, and technology.

Attestation of Identity Information 2006-11-10 14:17:30 Oracle

This Oracle white paper discusses the fundamental premise of attestation and the role of identity management in achieving cost-effective, sustainable compliance. Attestation is the requirement that management periodically certifies that only appropriate individuals have accessed sensitive information. While the cost of complying with the provisions of regulations like Sarbanes Oxley is high, the cost of non-compliance is even higher. Fortunately, today's robust identity management (IdM) solutions are reducing the overall cost of compliance providing automated processes to maintain a comprehensive audit trail of historical user privileges, including when, why, and through which systems information was accessed. Any IT decision maker who's seeking an end-to-end security solution that supports regulatory compliance will benefit from informative white paper from Oracle.

VeriSign TeraGuard: Securing Critical Information Assets Through Intelligent Data Collection, Expert Monitoring, and Analysis 2006-08-04 01:00:11 VeriSign

Email is the virtual nervous system with which one communicates internally with fellow employees and externally with the business partners and customers. The VeriSign Go Secure! for Lotus Notes service works with existing R5/R6 desktop clients and supports IBM Domino 5.02 or later; certificate requests are automatically approved using the Notes Internet password for verification. This seamless process makes it easy for administrators to deploy S/MIME Internet email security to a large number of users. The Go Secure! service allows for automatic publishing of digital certificates issued by the VeriSign Managed Public Key Infrastructure (PKI) service to the existing Domino directory and automatic retrieval of certificates for encrypting and signing of sensitive email messages.

The Four Key Qualities of Effective Host Intrusion Prevention (HIP) Solutions: Defining Deep HIP 2006-09-07 01:00:13 Third Brigade

Businesses today are under intense pressure to open up their networks, comply with increasingly rigorous regulatory requirements, and ensure their IT assets are protected from attacks that are becoming increasingly sophisticated, targeted and frequent. This white paper explores these security challenges and explains in clear, simple terms: the changing threat environment; why common security approaches are not sufficient; what host-based Intrusion Prevention Systems (IPS) is, and why it must play a critical role in an overall security strategy.

Intelligent Defense for Enterprise Assets: The Need for Host Intrusion Prevention 2006-09-07 01:00:13 Third Brigade

At the same time that organizations are providing deeper access to their networks for employees, partners and customers enabling flexible work environments and more efficient business relationships - organizations are faced with an increasingly hostile threat environment as well as rising complexity associated with corporate and regulatory compliance. This whitepaper looks at the security challenges faced by organizations and explains how Host Intrusion Prevention (HIP) plays a critical role in an organization's overall security strategy.

Jump to 1 2 [3] 4 5 6 7 8 9 10

Title	Date Added	Company
Kevin Mitnick on Malware: Mitigating Malware in Userland	2006-07-16 18:35:20	AppSense
If the security of your corporate data isn't top of mind, it will be by the time you finish this attention-grabbing white paper by Kevin Mitnick. The author is the once-vilified hacker who served four years in a federal prison in the 1980s for breaking into corporate computers; since "going legit," Mitnick has transformed himself into one of the most sought-after security consultants in the world. He explains how malware is being used to steal corporate data and describes a number of real-world data thefts that illustrate all too clearly the extent to which hackers will go to steal your secrets and sell them to your competitors. Sponsored by AppSense, this white paper is not to be missed. Download it today!
Using Security Compliance Software to Improve Business Efficiency and Reduce Costs	2006-09-12 12:24:44	Symantec
This IDC white paper analyzes the cost of complying with increasing numbers of government regulations. It discusses specific cost reduction strategies and cites Symantec's security solutions as examples of packaged solutions that can help enterprises reduce their overall costs and still meet regulatory requirements. Finally, the authors recommend strategies for implementing packaged compliance solutions. (Sponsored by Symantec)
"Going Up, Going Down!" - A Review of Quarter 2/2006	2006-09-15 10:47:40	MessageLabs
Welcome to the June Edition of the MessageLabs Intelligence monthly report. This report provides the latest threat trends for June 2006, as well as a quarterly retrospective, to keep you informed regarding the ongoing fight against viruses, spam and other unwelcome content.
Log Analysis for Intrusion Detection	2006-07-27 10:07:07	Infosecwriters.com
Log analysis is one of the most overlooked aspects of intrusion detection. Nowadays every desktop is with an antivirus, companies with multiple firewalls and even simple end-users buying the latest security related tools. However, who is watching or monitoring all the information these tools generate? Or even worse, who is watching the web server, mail server or authentication logs? The author explains about the crucial security information that only few of these events have and nobody notices. A lot of attacks would not have happened (or would have been stopped much earlier) if administrators cared to monitor their logs.
Cross-Layer Analysis for Detecting Wireless Misbehavior	2006-05-12 01:00:28	University of Maryland
Intrusion Detections Systems (IDSs) in ad hoc networks monitor other devices for intentional deviation from protocol, i.e., misbehavior. This process is complicated due to limited radio range and mobility of nodes. Unlike conventional IDSs, it is not possible to monitor nodes for long durations. As a result IDSs suffer from a large number of false positives. Moreover other environmental conditions like radio interference and congestion increase false positives, complicating classification of legitimate nodes and attackers. This paper presents a scheme that helps in accurate diagnosis of malicious attacks in ad hoc networks.
Building a Secure Foundation for Enterprise Mobility	2006-06-30 19:08:06	Motorola
Because the boundaries between wired and wireless networks are blurring, today's enterprises must adopt a security posture that makes sense for both environments. This white paper from Motorola describes the unique challenges associated with securing wireless communications and outlines a holistic approach to mobile security that integrates four key environmental considerations: people, process, policy, and technology.
Attestation of Identity Information	2006-11-10 14:17:30	Oracle
This Oracle white paper discusses the fundamental premise of attestation and the role of identity management in achieving cost-effective, sustainable compliance. Attestation is the requirement that management periodically certifies that only appropriate individuals have accessed sensitive information. While the cost of complying with the provisions of regulations like Sarbanes Oxley is high, the cost of non-compliance is even higher. Fortunately, today's robust identity management (IdM) solutions are reducing the overall cost of compliance providing automated processes to maintain a comprehensive audit trail of historical user privileges, including when, why, and through which systems information was accessed. Any IT decision maker who's seeking an end-to-end security solution that supports regulatory compliance will benefit from informative white paper from Oracle.
VeriSign TeraGuard: Securing Critical Information Assets Through Intelligent Data Collection, Expert Monitoring, and Analysis	2006-08-04 01:00:11	VeriSign
Email is the virtual nervous system with which one communicates internally with fellow employees and externally with the business partners and customers. The VeriSign Go Secure! for Lotus Notes service works with existing R5/R6 desktop clients and supports IBM Domino 5.02 or later; certificate requests are automatically approved using the Notes Internet password for verification. This seamless process makes it easy for administrators to deploy S/MIME Internet email security to a large number of users. The Go Secure! service allows for automatic publishing of digital certificates issued by the VeriSign Managed Public Key Infrastructure (PKI) service to the existing Domino directory and automatic retrieval of certificates for encrypting and signing of sensitive email messages.
The Four Key Qualities of Effective Host Intrusion Prevention (HIP) Solutions: Defining Deep HIP	2006-09-07 01:00:13	Third Brigade
Businesses today are under intense pressure to open up their networks, comply with increasingly rigorous regulatory requirements, and ensure their IT assets are protected from attacks that are becoming increasingly sophisticated, targeted and frequent. This white paper explores these security challenges and explains in clear, simple terms: the changing threat environment; why common security approaches are not sufficient; what host-based Intrusion Prevention Systems (IPS) is, and why it must play a critical role in an overall security strategy.
Intelligent Defense for Enterprise Assets: The Need for Host Intrusion Prevention	2006-09-07 01:00:13	Third Brigade
At the same time that organizations are providing deeper access to their networks for employees, partners and customers enabling flexible work environments and more efficient business relationships - organizations are faced with an increasingly hostile threat environment as well as rising complexity associated with corporate and regulatory compliance. This whitepaper looks at the security challenges faced by organizations and explains how Host Intrusion Prevention (HIP) plays a critical role in an organization's overall security strategy.

Security

Featured Whitepapers

Member Login

Oracle Technology Solutions for Midsize Businesses

Industry Report: Financial Services