Issue No.01 - January/February (2011 vol.9)
Richard Bejtlich , General Electric
John Steven , Cigital
Gunnar Peterson , Arctec Group
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2011.6
Richard Bejtlich leads a conversation on how incident detection and response (IDR) teams' focus on detecting and preventing attacks has moved from targeting OSs to unauthorized-access-application functionality and data. He discusses why this makes IDR so much more difficult and what these new targets mean for IDR. Department editors Gunnar Peterson and John Steven respond with tactics on how application security teams can help.
incident detection and response, IDR, application security, software engineering, security and privacy
Richard Bejtlich, John Steven, Gunnar Peterson, "Directions in Incident Detection and Response", IEEE Security & Privacy, vol.9, no. 1, pp. 91-92, January/February 2011, doi:10.1109/MSP.2011.6