State-Of-The-Art ...

• Security infrastructure

  • Kerberos - effective for many enterprise needs
  • SNMPv3, GSS-API, DNS-SEC
  • IPSEC/ISAKMP/IPKI - far-reaching impact, very promising

• Intrusion detection systems

  • Commercial systems - very good at detecting replayed known attacks but hopeless with new attacks
  • Standards (format/protocol) are lacking
  • Many active research effort underway - DARPA/ITO, CIDF, IETF IDWG

Previous slide

Back to first slide

View graphic version