Security News > 2021 > September > Ditch the Alert Cannon: Modernizing IDS is a Security Must-Do
Time has not been kind to IDS and has created wide security gaps.
To combat the outdated nature of IDS, organizations should adopt next-generation IDS to fulfill the defense-in-depth promise unmet by legacy IDS. NG-IDS is effective against more types of attacks and fills glaring decryption and cloud compliance gaps while improving security.
IDS boomed in the '90s as security frameworks like the SANS 20 Critical Security Controls and mandates like PCI DSS called out IDS by name.
While IDS was designed to detect and secure the network perimeter from attacks, the evolution of the adversary has exposed the limits of IDS. The one-size-fits-all technology misses the mark with a narrow view of threat detection efficacy, an inability to cover east-west traffic, a lack of support for network security hygiene, a need for high operational overhead and the potential for numerous false positives.
This often inadvertently has caused teams to neglect cloud security strategy resulting in security gaps.
IDS programs had their time as the go-to technology to achieve network security compliance check-offs.