Information security, access controls and the reliability of intrusion detection systems

Abstract

Information is power, and the control of access to confidential data is key to safeguarding an organisation’s edge in today’s competitve, information-based economy. While access control is like a useful fence around your house, there is always a risk of someone leaving the gate open or breaking the lock. Without additional security there is no way of knowing if security is/was breached. This study investigates the effectiveness of intrusion detection systems as an access control supplement in protecting electronic information resources and networks in infromation-centric organisations. The study focuses on the strengths and vulnerabilities of intrusion detection systems (IDS). A case study is conducted with a retail organisation, and an educational institution in Cape Town, South Africa to understand security priorities in retail, and the functionalities of IDSs, the significance of the system in concept, the cost factor, and whether it is really an answer to all possible security challenges. The findings are clear. No security measure is altogether “fool-proof”. Although IDSs have vulnerabilities, they offer an added cushion to conventional network access control efforts. Access control for example, guards the gate but IDSs are the watchdogs in your yard, and IDS closes a gap in a network security that only IDSs can. It alerts you of a potential attacker, enabling you to respond timeously, in whichever way you like. It does however require deliberate reaction against a detected intrusion to be effective, but remains a useful security tool that should become standard to all network security initiatives.