Professional Documents
Culture Documents
www.quocirca.com
info@quocirca.com
Twitter: Quocirca
have a
MSSP good,
future?
HIPS the
NIPS ugly
IP
everything
Root
NW based
cause
attacks
analysis
NIDS
Malware
Forensics
vectors
IP
everything
Root
NW based
cause
attacks
analysis
NIDS
Zero day
Malware
Forensics
vectors
HIDS
Application
Blended
level
malware
attacks
Observe
only
Skills Scalability
xIDS Misfires
• Signature
Detect
• Heuristics
• Forensics
Report
• Root cause
• Block
xIPS Action • Remediate
• Retaliate
© 2009 Quocirca Ltd
Virtualisation challenges for NIPS
migration
Private cloud
NIPS