Print this chapterPrint this chapter

A Review of Intrusion Detection

4. PROS AND CONS OF INTRUSION DETECTION SYSTEMS

Pros of IDS are as follows:

    • Detects external hackers and network-based attacks.
    • Offers centralized management for correlation of distributed attacks.
    • Provides the system administrator the ability to quantify attacks.
    • Provides an additional layer of protection.
    • Provides defense in depth.

Cons of IDS are as follows:

    • Generates false positives and negatives.
    • Require full-time monitoring.
    • It is expensive
    • Require highly skilled staffs.