|
contents | software | |||||||
| Radware Introduces Next Generation IPS Solution Radware has announced its breakthrough DefensePro 3.0 software. Incorporating technology from Radware's recent acquisition of V-Secure Technologies, DefensePro is the first solution in the market to provide self learning proactive protection against security attacks. In addition, Radware is the first vendor in the market to combine content based, behavioral-based and rate-based protection into a single scaleable solution, bolstering application security, improving productivity and reducing deployment costs. DefensePro 3.0 automatically mitigates worms, malware, DoS, DDoS and SYN flood attacks in real time with a behavioral protection system that measures and performs in-depth analysis of the vague, ambiguous and often imprecise information that typically characterizes dynamic IP traffic. Radware's behavioral IPS protection uses behavioral parameters and adaptive self-learning algorithms to create a comprehensive description of all network activity based on verifying traffic health and legitimate peaks, detecting network anomalies and weighing the degree of an attack. This adaptiveself-adjusting expert system arrives at more accurate conclusions faster than traditional methods, ensuring all critical attack alerts are issued. DefensePro's content and rate-based intrusion prevention capabilities are now enhanced by advanced features that include: * Adaptive Behavioral IPS Protection System that mitigates DoS, DDoS attacks, mass propagating worms and other zero-day attacks with no human intervention to configure rules and thresholds; includes Real-Time Statistics module, Fuzzy Logic Engine, Learning module, Footprints Lookup module, Blocking module and Closed Feedback Controller * Eliminates false positives by generating a "Degree of Attack" on detected anomalies through correlation between both rate and rate-invariant behavioral parameters * Multi-level SYN flood protection that effectively blocks SYN based DoS attacks while ensuring best response time for legitimate connections * The enhanced DoS Shield module now features connection limiting policies that blocks attack traffic when user-definable limits are breached. Connection limits are defined for TCP/UDP applications, hosts and ports for any client or server combination * Robust Anti Scanning module, protecting against horizontal scanning, vertical scanning and ping sweeps. write your comments about the article :: © 2006 Computing News :: home page |