Arxceo Delivers Palm-Sized, Anti-reconnaissance Network Security Appliance with Intrusion Prevention.HUNTSVILLE, Ala. -- Ally ip100(TM) provides the most effective and inexpensive method of intrusion prevention See IPS and IDS. for SMBs and wireless security Today, Arxceo(TM) Corporation, a provider of anti-reconnaissance and anomaly-based intrusion prevention technology, announced a new addition to its line of network security appliances, the Ally ip100(TM). With an M.S.R.P. of $895.00, Arxceo's Ally ip100 is the perfect network companion for the SMB (1) (Small to Medium-sized Business) Also called "SME" (small to medium-sized enterprise), it refers to companies that are larger than the small office/home office (SOHO), but not huge. and Enterprise markets that require affordable zero-day network security defense with anomaly-based intrusion prevention technology to stop zero-day attacks, DNS cache poisoning Injecting false information into the caches of the DNS system so that future requests are diverted to another site. In July 1997, Eugene Kashpureff inserted fraudulent information into the DNS, causing users going to the Network Solutions Web site to be rerouted to his Alternic site. , network reconnaissance, denial of service attacks and other malicious activity. Using the best anti-reconnaissance technology in the industry, the palm-sized Ally ip100 stops network attacks more quickly and more effectively than any other method. Arxceo's anti-reconnaissance architecture provides preemptive pre·emp·tive or pre-emp·tive adj. 1. Of, relating to, or characteristic of preemption. 2. Having or granted by the right of preemption. 3. a. protection against both zero-day worm attacks as well as true cyber thieves - frustrating, limiting and blacklisting attackers scanning and probing networks to discover vulnerabilities. Small businesses can now afford an IPS for perimeter defense A defense without an exposed flank, consisting of forces deployed along the perimeter of the defended area. , and enterprises can better afford to protect the various entry points to their LAN (Local Area Network) A communications network that serves users within a confined geographical area. The "clients" are the user's workstations typically running Windows, although Mac and Linux clients are also used. , plugging vulnerabilities throughout their perimeter. "It is becoming increasingly important for organizations to add anomaly and behavior-based intrusion prevention defenses to their networks since signature-based approaches are not enough to stop zero-day attacks," said Donald Davidson Donald Davidson is the name of several people, including:
The inline Ally ip100 supports up to 100Mbit throughput and provides the same Enterprise-class anti-reconnaissance, anomaly and behavior-based attack detection and prevention capabilities as Arxceo's gigabit throughput products. It is designed for perimeter protection and Enterprise 100BaseT segments, such as 802.11 a/b/g wireless access points or T1/DS1 remote offices. The Ally ip100 runs on embedded Linux V2.6.11 and provides an easy-to-manage web-based interface for the occasional administrative tasks such as reviewing statistics and event details. Pop-up alerts are provided via SNMP (Simple Network Management Protocol) A widely used network monitoring and control protocol. Data are passed from SNMP agents, which are hardware and/or software processes reporting activity in each network device (hub, router, bridge, etc. and an Arxceo Windows-based client application. The Ally ip100 can be deployed in less than 15 minutes and does not require changes to the devices it protects. The Ally ip100 is not based on legacy intrusion detection methodologies (IDS), but utilizes a new patent-pending anti-reconnaissance approach that blends the high performance of a network card driver with protocol header analysis and hardening by adding a unique packet fingerprinting technique, called Tag-UR-IT(TM). Tag-UR-IT doesn't use the typical seven-layer network stack to perform its job, providing high performance coupled with low latency and eliminating network stack exploits targeting the device itself. Using anti-reconnaissance technology, the Ally ip100 confuses attackers and prevents them from discovering addresses, available services, OS versions and other important information that enables them to target known vulnerabilities - even when attackers attempt to use stealth reconnaissance techniques such as bounce or idle scanning. Finally, the Ally ip100 is difficult for attackers to discover or 'see' on the network as it sits invisibly without using an IP address or responding to a MAC address, nor does it increment hop counts or decrement To subtract a number from another number. Decrementing a counter means to subtract 1 or some other number from its current value. time to live (TTL (1) (Time To Live) A parameter in a network packet that sets a time limit to its validity. In order to prevent an IP packet from propagating endlessly through the network, the value in the TTL field is reduced by each router. ) counters. Availability The Ally ip100 will be available beginning December 1, 2005. For more information or to purchase the product, please contact Arxceo at 1-866-427-9239 x107. About Arxceo Corporation Arxceo Corporation develops network intrusion prevention technologies that assist firewalls by improving their security and performance along with providing omni-directional protection for network security. Arxceo's Tag-UR-IT technology fortifies the network protocol stacks Computer networks may be implemented using a variety of protocol stack architectures, computer buses or combinations of media and protocol layers, incorporating one or more of:
Arxceo, Ally ip 100, Tag-UR-IT, Plug and Protect, PnPro and the Arxceo Logo are trademarks of Arxceo Corporation. Other brands and product names are trademarks of their respective owners. (C) Copyright 2005, Arxceo Corporation |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion