|Editions | myCNN | Video | Audio | Headline News Brief | Feedback||
New intrusion-detection devices debut
(IDG) -- Established vendors and security start-ups last week announced their latest products and services for network intrusion-detection and outsourced security management.
Hewlett-Packard, Axent Technologies and start-up Sanctum debuted intrusion-detection software for corporate networks. Meanwhile, Raytheon announced BladeRunner, server-based software for monitoring internal corporate network traffic to prevent unauthorized transmission of sensitive material.
The latter product "identifies traffic-flow patterns to identify anomalies," says Jeff Waxman, president of Raytheon's newly formed information assurance product area in Linthicum, Md. "If the R&D department suddenly starts sending information out to the wide-area Internet, you'll know that."
Available for Unix or Windows NT and priced at $65,000, BladeRunner is a passive-listening device that can display the entire topology of a network to show what users are doing.
At its headquarters in Cupertino, Calif., HP unveiled the Praesidium Intrusion Detection System, software that protects HP's new version of Unix called HP-UX11i. The software costs $1,695.
"The Praesidium software detects unauthorized access, root exploits, buffer overflows or other unusual behavior and sends alerts to HP OpenView," says Roberto Medrano, general manager of Internet security solutions.
HP pushed two other security products out the door last week. The first was Web Enforcer, NT-based software that works to strengthen Web servers used in e-commerce by detecting security vulnerabilities and mending these holes on an ongoing basis. The software costs about $7,000 and includes service support.
HP says it has also beefed up its Web QoS product, software used with NT, HP-UX or Solaris to prioritize traffic. Web QoS can now detect and block some types of HTTP-based denial-of-service attacks, although Medrano acknowledges it won't readily protect against massive distributed denial-of-service attacks based on SYN Floods. Web QoS costs between $7,000 and $12,000.
Start-up Guardent also opens its doors this week with 75 employees set to provide security consulting. Dan McCall, founder and chief marketing officer, says the firm purchased the entire professional services practice at Secure Computing for an undisclosed sum. The company provides managed security services for companies ready to outsource in this area.
Another start-up, Sanctum - formerly Perfecto - unveiled its Linux-based AppScan, which lets a user remotely test Web applications to determine weaknesses that could be exploited in an e-commerce setting.
"It's a sort of a 'robohacker' that lets them manually simulate attacks and suggests how to fix things," says Eran Reshef, Sanctum's founder and senior vice president.
Set to ship next month for $20,000 per user, the software is being tested by Yahoo, Lycos and Exodus Communications.
Yahoo Engineering Security Officer Arturo Bejar says his staff is using Sanctum's AppScan to test Yahoo applications, such as its auction site, for possible holes.
"It gives us instant feedback on a set of basic important problems," Bejar says, pointing out hackers are constantly trying to break into Yahoo's Web servers in a multitude of ways, such as manipulating Common Gateway Interface scripts. The Sanctum products are the best he's seen so far for security protection on the application level, Bejar says.
Axent, which spars with Internet Security Systems (ISS) to claim market leadership in the intrusion-detection realm, weighed in last week with updated versions of its NetProwler vulnerability scanner and its host-based IntruderAlert detection software for Unix or NT.
Intrusion-detection software has to be constantly updated as new attacks are discovered, and NetProwler 3.5 can accept file downloads of new attack signatures from the Axent Web site.
Axent's top rival, ISS, weighed in last week to say it has become the first vendor to obtain export status of its intrusion-detection software, RealSecure 3.2.2, under the more lenient encryption export rules announced Jan. 14 by the White House.
Michigan charges Web sites with privacy violations
RELATED IDG.net STORIES:
Top 5 intrusion detection downloads
|Back to the top||
© 2001 Cable News Network. All Rights Reserved.|
Terms under which this service is provided to you.
Read our privacy guidelines.