A Review of Intrusion Detection
4. PROS AND CONS OF INTRUSION DETECTION SYSTEMS
Pros of IDS are as follows:
- Detects external hackers and network-based attacks.
- Offers centralized management for correlation of distributed attacks.
- Provides the system administrator the ability to quantify attacks.
- Provides an additional layer of protection.
- Provides defense in depth.
Cons of IDS are as follows:
- Generates false positives and negatives.
- Require full-time monitoring.
- It is expensive
- Require highly skilled staffs.