Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

NetScreen Delivers First IDP Solution to Integrate Application and Network Profiling and Attack Investigation Capabilities

  • 15 March, 2004 21:17

<p>NetScreen Technologies, Inc. (Nasdaq: NSCN) today announced it will offer the industry’s first intrusion detection and prevention (IDP) solution that includes in a single platform application- and network-layer traffic profiling, and attack investigation and prevention capabilities. NetScreen’s IDP appliances running the new version 3.0 of its operating software that includes this functionality can help security administrators identify normal and anomalous traffic flows on the network, define security policies based on these flows, and quickly investigate and respond to network- and application-level attacks.</p>
<p>Until today’s introduction of the new NetScreen IDP version 3.0, this functionality could only be procured by installing, operating and managing up to four discrete solutions: network profiler, vulnerability scanner, security information management and traditional IDP systems. Integrating this functionality in a single platform can significantly reduce time spent examining attacks, allow easy adjustment of policies and, ultimately, accelerate the migration of IDP devices to in-line prevention deployment, strengthening an enterprise’s security posture.</p>
<p>Computer Emergency Response Team estimates indicate that security incidents have increased approximately 60 percent from 2002 to 2003. These attacks also are increasing in complexity. Further, many administrators’ lack the critical network visibility and resources that are required to investigate attacks and determine whether to adjust security policies.</p>
<p>“Comprehensive information about network traffic, devices and applications is essential to establish effective protection,” said Charles Kolodgy, research director at IDC. “NetScreen’s new operating software, with its substantial network profile and attack information provides the details administrators need to set policies that can immediately prevent attacks. This type of functionality should build confidence in the reliability of intrusion prevention thus accelerating the migration to in-line use of these network protection devices.”</p>
<p>Network Knowledge and Attack Information</p>
<p>To increase network knowledge, NetScreen has developed the Enterprise Security Profiler (ESP) that allows administrators to view application- and network-layer traffic. When activated, the ESP module can collect and store network and application data to provide a current view of network posture and traffic, as well as security policy violations. Built-in filters allow administrators to quickly correlate the attack data to identify attack phases – reconnaissance, attack and proliferation – and quickly determine the root cause of an attack. Once the root cause of an attack is determined, NetScreen IDP provides granular control of attack signatures and policy definition to immediately respond to or prevent the attack.</p>
<p>For example, ESP can identify a dramatic increase in sessions from a host, which is typically a sign of a worm-infected host. Once identified, an administrator can leverage the NetScreen IDP policy manager to automatically limit, through user-configurable parameters, how many new sessions a host can create and thereby mitigate attack proliferation.</p>
<p>The ESP module also enhances network and application knowledge by alerting the security administrator when new applications and servers are added to the network. This can help administrators identify applications/systems on the network that may represent potential points of vulnerability.</p>
<p>Also increasing administrator’s ability to take advantage of NetScreen’s IDP in-line prevention capabilities, NetScreen IDP version 3.0 now includes integration of TruSecure Intellishield Alert Manager to provide on-demand access from a single interface to attack and vulnerability information, patch availability and knowledge of operating systems affected by an attack. With access to this information, the administrator is able to facilitate quick policy adjustments for in-line prevention to improve network security without the need to use separate network management/attack information system.</p>
<p>“The newest NetScreen-IDP features demonstrate our commitment to drive innovation in intrusion detection and prevention,” said David Flynn, vice president of marketing at NetScreen. “With the new Enterprise Security Profiler, comprehensive attack information, advanced attack protection and simplified management, our customers can quickly and confidently deploy our devices in-line to increase security while enabling reduced administration effort and operating costs.”</p>
<p>Availability</p>
<p>The NetScreen IDP-10, -100, -500 and -1000, with the new IDP version 3.0 of the operating software, are expected to be available in late March 2004.</p>
<p>For more information about NetScreen IDP products, visit:</p>
<p>www.netscreen.com/products/idp.</p>
<p>About NetScreen Technologies</p>
<p>NetScreen Technologies, Inc. is a leading developer of network security and access solutions for enterprises and carriers worldwide. NetScreen’s solutions offer multiple layers of network and application-level protection in purpose-built appliances and systems that meet customers’ security, performance and total cost of ownership objectives. NetScreen is located at 805 11th Ave., Sunnyvale, CA, 94089. More information on NetScreen’s products can be found at http://www.netscreen.com.</p>
<p>###</p>
<p>NetScreen and the NetScreen logo are trademarks of NetScreen Technologies, Inc. in the United States and other countries. Other trademarks are the property of their respective owners.</p>
<p>This press release contains forward-looking statements about events and circumstances that have not yet occurred. For example, words such as “will”, “can”, “allowing”, “believes”, “continue” and “continuing”, or other statements in the future tense, are forward-looking statements. Actual outcomes and results may differ materially from expectations in this press release due to a number of risks and uncertainties. Such risks and uncertainties include whether the market for security products will grow as projected, if at all, whether demand for NetScreen products will continue, whether new products, if and when introduced, will be successful and whether products will perform as expected.</p>

Most Popular

Editor's Recommendations

Solution Centres

Events

View all events Submit your own security event

Latest Videos

More videos

Blog Posts

Media Release

More media release