The problem with (most) network detection and response. Issue 9 (September 2020)
- Record Type:
- Journal Article
- Title:
- The problem with (most) network detection and response. Issue 9 (September 2020)
- Main Title:
- The problem with (most) network detection and response
- Authors:
- Campfield, Mike
- Abstract:
- Abstract : There was once a time when real-time behavioural threat detection at the scale of modern corporate networks was a distant hope. Enterprises had to rely on security information and event management (SIEM) and endpoint detection and response (EDR) data to spot threats. While both categories could do part of the job, they were vulnerable to attacker countermeasures, and there was still a massive gap in network visibility. Real-time behavioural threat detection at the scale of modern corporate networks was once a distant hope. Now we have network detection and response (NDR) solutions – but not all are equally capable. Perhaps the most important issue is the static nature of many NDRs. Many NDR systems are more akin to intrusion detection and prevention systems, anchored to rules or signatures, sending out alerts based on simple pattern-matching. This is where machine learning can play a critical role, says Mike Campfield of ExtraHop.
- Is Part Of:
- Network security. Volume 2020:Issue 9(2020)
- Journal:
- Network security
- Issue:
- Volume 2020:Issue 9(2020)
- Issue Display:
- Volume 2020, Issue 9 (2020)
- Year:
- 2020
- Volume:
- 2020
- Issue:
- 9
- Issue Sort Value:
- 2020-2020-0009-0000
- Page Start:
- 6
- Page End:
- 9
- Publication Date:
- 2020-09
- Subjects:
- Computer security -- Periodicals
Computer networks -- Security measures -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
Computers -- Access control -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/13534858 ↗
https://www.magonlinelibrary.com/journal/nese ↗
http://www.elsevier.com/journals ↗
http://www.elsevierscitech.com/nl/NS/home.asp ↗ - DOI:
- 10.1016/S1353-4858(20)30104-5 ↗
- Languages:
- English
- ISSNs:
- 1353-4858
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 6077.203970
British Library DSC - BLDSS-3PM
British Library HMNTS - Digital store
British Library HMNTS - ELD Digital store - Ingest File:
- 14490.xml