Do you think the Network Intrusion Detection system can completely complete security? If yes, I am going to disappoint you with the latest SQL injection technique. The NIDS fails to detect attacks when attacker’s uses high value target coupled schemas to perform the SQL injection. This is done by using static signature definitions which bypasses the NIDS.

The main problem is because all NIDS lacks in the context to defend itself from HTTP requests which has malicious codes. The only solution to solve this problem to a certain extent is by using the SSL. When SSL encrypts the data the packets which are sealed cannot be transferred back to the original data. And sometimes this also fails. Better to analyze the pros and cons of a network efficiently.