In a bid to help customers remain ahead of a shifting threat landscape, Duxbury Networking has launched a "three-dimensional" intrusion prevention system (IPS) from its principal, Top Layer Networks.
The Top Layer IPS 5500 system is said to be the only IPS that offers protection against sophisticated attacks stemming from malicious content, undesired access and denial-of-service and other rate-based attacks.
According to Andy Robb, a technology specialist at Duxbury Networking, sophisticated hybrid attacks are becoming more common as hackers shift their focus from virus experimentation to cyber extortion, network robot (botnet) creation and hacker-for-hire activities with profit-driven motives.
"By building protection from all three forms of attacks into one unified threat management device, IPS users can now benefit from both improved protection against evolving attack strategies and a lower cost of ownership," he says.
By combining content-based IPS and intrusion detection system (IDS) functionality with a stateful firewall and attack mitigation algorithms, the Top Layer IPS 5500 provides protection against:
Malicious content - Top Layer`s content-based IPS subsystem blocks known, newly-evolved and brand new forms of worms, Trojans, virus and other malware with unique accuracy. Top Layer protects against malicious content with a multi-pronged approach: acceptable application use policies, protocol validation and attack/vulnerability/virus signatures.
Undesired access - Using Top Layer`s stateful firewall functionality the IPS 5500 provides IP fragment abuse protection, Layer 2 and Layer 3-4 filtering and stateful firewall filtering that is easily configured. This stateful firewall approach separates Top Layer from IPS competitors that do not provide this level of protection from undesired access throughout a network.
Rate-based attacks - Top Layer`s attack mitigation builds upon the company`s leadership position in protecting against network and application-level flood attacks and other attacks using inappropriate rates by applying DoS/DDoS mitigation techniques, policy-based rate limits and other resource-consumption limits. Malicious traffic is blocked, maintaining the availability of e-commerce servers and other critical infrastructure for genuine users.
In a related announcement, Duxbury Networking has released Top Layer`s new V4.10 of the IPS 5500 software which provides users with integrated 3DP policy management, real-time incident response and added protection from instant messaging (IM) threats:
Integrated policy management - V4.10 is a fundamental change to the IPS 5500 policies model and user interface. It allows users to view and configure Top Layer Networks` firewall filtering, IPS and Rate-based rules from a single window, using the traditional linear access list that is used in most firewalls today.
Real-time incident response -- Improved security event logging and reporting strengthen the usability of the IPS 5500. The new Attack Event Viewer allows network operators and security analysts to view attacks and drill down to specific events to identify source and attack types. "One-click" access to security policies helps IPS 5500 users adjust policies based on real-time threat analysis.
IM threat protection - Use of instant messaging applications - such as Yahoo! Messenger, MSN Messenger and ICQ - has grown significantly.
Although the benefits of real-time communication of IM offers a productivity benefit to corporate environments, instant messaging applications add significant risks to an enterprise`s security posture. New security risks include bandwidth misuse, additional vectors for virus and worm attacks, the ability to transfer files and the ability to take control of other machines. V4.10 provides new protection from IM application use in the enterprise.
Share
Editorial contacts