Management issues in IDS

IDS is a relative newcomer to the security scene, and with the recent interest in IDS, has come a rush of intrusion detection products to fill the niche. Unfortunately, like many recent technologies, the emphasis has been on getting products to market, rather than the usability of those products. This paper aims to look at issues with managing IDS, a comparison of recent advances in the field, and proposes a solution in terms of a generic IDS management framework, allowing for more sophisticated management, and centralised administration.