IDS mailing list archives
RE: MSSP / IDS Selection
From: "Phil Hollows" <phollows () open com>
Date: Wed, 16 Mar 2005 16:39:18 -0500
Hi: FWIW (since I work for a SIM vendor), this article, reprinted from a January 2005 eWeek, references the experience of one of our customers who went down your path -- looking for an MSSP and instead ended up bringing the work in-house. http://www.open.com/pdfs/eweek_sim_case_study.pdf Phil Hollows VP Marketing OpenService, Inc. www.open.com -----Original Message----- From: KJP [mailto:kjp011975 () gmail com] Sent: Sunday, March 13, 2005 5:52 PM To: focus-ids () securityfocus com Subject: MSSP / IDS Selection I have spent much time researching various MSSP's NetSec, Verisign, Counterpane, and LURHQ for my company. After much research we decided to go with Verisign for numerous reasons. After selecting Verisign we began narrowing down pricing. On a monthly level the pricing looks ok, until you look at it at a yearly level the pricing starts to get scary. We looked into doing the same service internally using Snort. I remembered the comercial implentation of Sourcefire and began researching it. It appears to offer services that Snort does not, RNA and Defense Center offer the pieces missing from Snort, plus it packages the support so I don't need to worry about hardware support, OS support, etc. What are the opinions of Snort and Sourcefire versus ISS, Cisco, Enterasys, Symantec? Thanks in advance. ------------------------------------------------------------------------ -- Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. ------------------------------------------------------------------------ -- -------------------------------------------------------------------------- Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. --------------------------------------------------------------------------
Current thread:
- MSSP / IDS Selection KJP (Mar 16)
- Re: MSSP / IDS Selection David W. Goodrum (Mar 23)
- Re: MSSP / IDS Selection Mike Coliton (Mar 24)
- <Possible follow-ups>
- RE: MSSP / IDS Selection Phil Hollows (Mar 19)
- Re: MSSP / IDS Selection Mark Teicher (Mar 19)
- Re: MSSP / IDS Selection David W. Goodrum (Mar 23)