Breach Detection System Analysis

Sourefire, LLC • October 2, 2014

Breach Detection System Analysis

NSS testing verifies that the breach detection system (BDS) is able to detect and log breaches and attempted breaches accurately, while remaining resistant to false positives. All tests in this section are completed with no background network load. The BDS must be able to identify known and unknown malware, and command and control (C&C) channels.

The ability to manage policies and generate reports while under load is a required function. Alerts must be triggered at the sensor device and transmitted to the management station continually and under all test conditions. All malicious traffic is transmitted in a single burst at the start of each test, and alerts must be received within 48 hours from that point to count towards a successful breach detection.

This white paper highlights:

Security Effectiveness;
Performance;
Stability and Reliability;
Management and Configuration;
Total Cost of Ownership.

Breach Detection System Analysis

Previous
Information Security Risk and the Need for Quantitative Ratings

Next
ESG Brief: Utilizing Security Ratings for Enterprise IT Risk Mitigation

You might also be interested in …

What Mega Breaches Can Teach about Best Practices

What Mega Breaches Can Teach about Best Practices

ESG Brief: The Importance of a Common Distributed Data Services Layer

Log Management + Alerts: Understanding in Real-Time

The Need for a Breakthrough in Cybersecurity

Resolving Security's Biggest Productivity Killer

How to Protect Privileged Accounts with an Incident Response Plan

The Security Leader's Guide to Multi-Factor Authentication

SANS Review: Investigate East-West Attacks on Critical Assets with Network Traffic Analysis

MDR Buyer's Guide

Around the Network

Evolving Threats Facing Robotic and Other Medical Gear

Evolving Threats Facing Robotic and Other Medical Gear

Why Health Firms Struggle with Cybersecurity Frameworks

Why Health Firms Struggle with Cybersecurity Frameworks

Identity Security and How to Reduce Risk During M&A

Identity Security and How to Reduce Risk During M&A

How 'Security by Default' Boosts Health Sector Cybersecurity

How 'Security by Default' Boosts Health Sector Cybersecurity

Medical Device Cyberthreat Modeling: Top Considerations

Medical Device Cyberthreat Modeling: Top Considerations

Safeguarding Critical OT and IoT Gear Used in Healthcare

Safeguarding Critical OT and IoT Gear Used in Healthcare

How the NIST CSF 2.0 Can Help Healthcare Sector Firms

How the NIST CSF 2.0 Can Help Healthcare Sector Firms

Protecting Medical Devices Against Future Cyberthreats

Protecting Medical Devices Against Future Cyberthreats

Is It Generative AI's Fault, or Do We Blame Human Beings?

Is It Generative AI's Fault, or Do We Blame Human Beings?

Transforming a Cyber Program in the Aftermath of an Attack

Transforming a Cyber Program in the Aftermath of an Attack

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.com, you agree to our use of cookies.