jaydeltathree

Bace: Introduction

I decided a long time ago that I would use Rebecca Gurley Bace's book Intrusion Detection to get me up to speed on intrusion detection. Now I'm finally actually reading the book. I like how in her introduction she describes the cycle of how new technology is adopted and eventually abused, bringing about the need for regulation (page 1).

On page 2 she defines intrusion detection as the process of monitoring the events occurring in a computer system or network, analyzing them for signs of security problems. I actually told someone a few minutes that my thesis was on intrusion detection. I guess I'd forgotten that my thesis is actually on intrusion response. Intrusion detection is part of intrusion response, so I figured I'd get that base. Plus I haven't found any definitive books on intrusion reponse. Perhaps I can write one someday.