Security technologies started with simple things such as IP host tables, systems logging, and then grew. Essentially as time goes on the more intelligent security technologies become: this is also to counter the growing threat landscape.


Virtual machine analysis technology. Machine learning/crunching.


Event data in SIEM and applying threat intelligence, but also different kinds of machine learning to try and find more bad guys.


A person needs to look at it. And it needs to be curated by the time it gets to them.


Traditional IDS had static signatures and traditional firewalls