Other vendors disagree with Stiennons statements about IDS, but say his thoughts on the convergence of security functions in a single device are accurate. "The statement that IDS is dead and IPS is stillborn, thats all to create emotion. We disagree with the statement that theres no value in IDS," said Tim McCormick, vice president of marketing at Internet Security Systems Inc. in Atlanta, which is in the process of rolling out a line of security appliances that combine IDS, firewall and other functions. "We built a $240 million business by inventing IDS. But the underlying message about convergence is right on. You need all the components. Its not whether IDS is better than a firewall. You need them all."Roesch dismisses this as hype. "I guess we had the intrusion prevention craze and that lasted for about three months and now we have intelligent firewalls," he said. "Proxy firewalls are dead. Long live proxy firewalls."
The Gartner report asserts that IDS systems place too many demands on networks and IT staffs and require far too much care and feeding to be effective. Stiennon says that the new generation of firewalls that combine both network and application-level protection are what corporate networks really need.