Captus Networks Raises the Bar for Defending Against Denial of Service Attacks on Service Providers' Gigabit Networks.Business/High-Tech Editors NEW ORLEANS--(BUSINESS WIRE)--Jan. 30, 2001 New CaptIO-G Provides a Compact, Integrated Network A network that supports both data and voice and/or different networking protocols. See converged network and new public network. Security Solution for Surgically Blocking Malicious Attacks Captus Networks today announced the CaptIO-G(TM), a high-throughput implementation of its CaptIO integrated network security solution for the service provider and e-business markets. Offering exceptional port density in a space-saving 1U rack-mountable format, the CaptIO-G provides one Gigabit Ethernet An Ethernet standard that transmits at 1 Gbps. Used mostly to connect high-end workstations and servers as well as for network backbones, Gigabit Ethernet transmits full duplex from point to point using switches and half duplex in a shared environment (CSMA/CD) using a hub. and eight Fast Ethernet An earlier name for 100Mbps Ethernet. See 100Base-T. (networking) Fast Ethernet - A version of Ethernet developed in the 1990s(?) which can carry 100 Mbps compared with standard Ethernet's 10 Mbps. It requires upgraded network cards and hubs. interfaces for easy integration into service provider networks requiring Captus' state-of-the-art security capabilities. Unique in the network security device marketplace, the CaptIO-G tightly integrates an intelligent adaptive firewall with a dynamic intrusion detection system This article is about the computing term. For other uses, see Burglar alarm. An intrusion detection system (IDS) generally detects unwanted manipulations of computer systems, mainly through the Internet. (IDS) to surgically block denial of service A condition in which a system can no longer respond to normal requests. See denial of service attack. (DoS) attacks that attempt to overwhelm Web servers with a flood of requests for information. The CaptIO-G uses proprietary anomaly detection An approach to intrusion detection that establishes a baseline model of behavior for users and components in a computer system or network. Deviations from the baseline cause alerts that direct the attention of human operators to the anomalies. See IDS and anomaly. techniques to identify and stop DoS attacks across all of its ports within seconds of detection, without disrupting legitimate network traffic. The CaptIO-G firewall enforces security policies regardless of whether the abusive activity originates from outside or inside the network. Since most network security breaches originate within networks, the CaptIO-G provides a higher level of security than systems that focus only on blocking hostile external activity. "Net-centric service providers and e-businesses are the heart of the digital economy, with business models that are wholly reliant on their networked assets. Accordingly, they are highly susceptible to the growing number and ferocity of DoS attacks," said Richard G. Helgeson, CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. and president of Captus Networks. "With the CaptIO-G, they have a world-class security solution for creating a secure, highly available network that can mean the difference between their success and failure as e-business companies." CaptIO IDS and Firewall Work in Concert The CaptIO-G Intrusion Detection System and firewall work in concert to provide a comprehensive security solution balancing strong security with high performance. Based on anomaly detection, the CaptIO IDS allows the creation of a user-defined profile that processes characteristics of system behavior over time, forming a statistically valid sample of the behavior. The IDS then identifies any unacceptable deviation from expected behavior and takes action by automatically generating rules to update the CaptIO-G firewall, router and system configuration files to defeat the attack. The CaptIO-G firewall automatically adapts to suppress new attacks - surgically shutting down malicious users by blocking the logical port number, TCP/IP TCP/IP in full Transmission Control Protocol/Internet Protocol Standard Internet communications protocols that allow digital computers to communicate over long distances. address, session ID and protocol type. The CaptIO-G IDS communicates with the firewall using a high-performance sorting algorithm Noun 1. sorting algorithm - an algorithm for sorting a list algorithm, algorithmic program, algorithmic rule - a precise rule (or set of rules) specifying how to solve some problem developed by Captus that is capable of capturing up to 40,000 packets per second on a single port. For added flexibility, each of the nine ports on the CaptIO-G can have its own firewall rules set, an important capability for service providers segregating individual customer networks on different ports. For higher throughput performance, port aggregation Using multiple transmission paths between network devices in order to increase transmission speed. Port aggregation between a server and a switch requires multiple network adapters (NICs) in the server or adapters with multiple ports. and trunking allow the combining of ports to support individual networks. "By allowing independent management of security features to the port level, the CaptIO-G provides major revenue generation opportunities for service providers, enabling them to market premium services to their security conscious customers," said Helgeson. "Using a single device, ISPs, ASPs, and colocation providers can implement multiple discrete security sub-networks to meet the unique security requirements for each of the e-businesses who have servers behind the service provider's firewall." Multiple Functions in a Compact, Single Rack Unit Reduces TCO (1) (Total Cost of Ownership) The cost of using a computer. It includes the cost of the hardware, software and upgrades as well as the cost of the inhouse staff and/or consultants that provide training and technical support. See ROI. Besides its security capabilities, the CaptIO-G incorporates a high-performance router that increases its scalability and support for multiple secure networks. By offering an unmatched range of security and networking functions in a compact, single rack unit, the CaptIO-G significantly reduces total cost of ownership. Not only is the single device less expensive than alternative multi-device products, it offers ongoing operational savings by reducing costly personnel training for management and maintenance of multiple network devices. The CaptIO-G also minimizes the requirements for costly floor and rack space in data center environments. Easy to Configure and Support The CaptIO-G can be installed quickly, and can be configured and maintained from anywhere in a network via either a secure Web browser The program that serves as your front end to the Web on the Internet. In order to view a site, you type its address (URL) into the browser's Location field; for example, www.computerlanguage.com, and the home page of that site is downloaded to you. interface or the Command Line Interface. The CaptIO-G uses a hardened Linux kernel for its operating system, the CaptOS. The CaptOS is a secure, reliable, high-performance router operating system that tightly integrates the CaptIO security components around a hardened Linux kernel. With fewer than 50 commands in its instruction set, the CaptOS is easy to use yet provides many robust features, including hot updates, remote reloading Reloading A term lenders commonly use to refer to the habits of borrowers taking out loans to repay the balance on other loans. Often reloading is done to take advantage of lower interest rates offered by other loans, and potential tax benefits. and support via the Secure Shell (SSH (Secure SHell) A security protocol for logging into a remote server. SSH provides an encrypted session for transferring files and executing server programs. Also serving as a secure client/server connection for applications such as database access and e-mail, SSH supports a ) protocol. Comprehensive Customer Support Captus provides a comprehensive customer support program for its CaptIO family of network security devices. In addition to consultative advice provided during the sales process, Captus offers 24x7 high-end call center service, on-site systems support, and world-class, fee-based network security consulting services. Availability The CaptIO-G will be available on February 1, 2001. The CaptIO-G is the second offering in the CaptIO family of integrated network security solutions, joining the CaptIO, which provides 12 Fast Ethernet ports. Captus Networks Founded in 1999, Captus Networks Corp. is an innovative, privately held company privately held company A firm whose shares are held within a relatively small circle of owners and are not traded publicly. that designs, manufactures and markets integrated security hardware devices. Captus Networks closed its first round of financing in May 2000, raising $3.5 million in venture capital from GMS GMS Greater Mekong Subregion GMS Global Mobile (Communications) System GMS Guild Management System GMS General Medical Services GMS Global Management System (Sonicwall) GMS GroupWise Mobile Server Capital Partners, LP. Captus Networks currently has more than 10 pending patents and trademarks. Captus Networks' vision is to be the preeminent supplier of high performance, integrated network security devices and services for the e-business marketplace. The company's executive offices are located in Woodland, Calif., near Sacramento. Captus Networks can be contacted on the World Wide Web at www.captusnetworks.com or by calling (877) 9-CAPTUS. CaptIO, CaptOS and CaptIO-G are trademarks of Captus Networks. All other company and product names may be trademarks of the company with which they are associated. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion