Gartner Research

Defining Intrusion Detection and Prevention Systems

Published: 20 September 2016

ID: G00310148

Analyst(s): Craig Lawson , Claudio Neiva , Adam Hils

Summary

Intrusion detection/prevention systems have evolved to address not just legacy, but also emerging threats, helping avert damage to digital businesses. Security leaders need to understand the current state of IPS/IDS, and use cases that are suitable and unsuitable for this technology to address.

Table Of Contents

Analysis

  • Definition
  • Evaluation Criteria
  • Description
    • The Prevention or Detection Debate — Detection Still Matters
    • Choosing Between IPS and NGFW
  • Benefits and Uses
    • Virtual Patching of Vulnerabilities
    • Mitigating Targeted Intrusions
    • Addressing the Lateral Movement Problem
    • Adoption Rate
  • Risks
  • Intrusion Detection and Prevention Alternatives

What a Next-Generation Network IPS/IDS Is Not

  • IPS/IDS Futures
    • Machine Learning Holds Value for IPS/IDS
    • Public/Hybrid Cloud Is a Valid Use Case
  • Recommendations
  • Representative Providers

Gartner Recommended Reading

©2019 Gartner, Inc. and/or its affiliates. All rights reserved. Gartner is a registered trademark of Gartner, Inc. and its affiliates. This publication may not be reproduced or distributed in any form without Gartner’s prior written permission. It consists of the opinions of Gartner’s research organization, which should not be construed as statements of fact. While the information contained in this publication has been obtained from sources believed to be reliable, Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner research may address legal and financial issues, Gartner does not provide legal or investment advice and its research should not be construed or used as such. Your access and use of this publication are governed by Gartner’s Usage Policy. Gartner prides itself on its reputation for independence and objectivity. Its research is produced independently by its research organization without input or influence from any third party. For further information, see Guiding Principles on Independence and Objectivity.

Already have a Gartner Account?

Purchase this Document

To purchase this document, you will need to register or sign in above

Become a client