Force10 Networks Chief Security Scientist Explores Complexities of Securing High Performance Networks at Joint Techs Workshop.MILPITAS, Calif. -- Securing high performance networks requires a new design framework that emphasizes flexibility while maintaining network performance, said Force10 Networks Chief Security Scientist Livio Ricciulli at the ESCC/Internet2 Joint Techs workshop. "While the threat to network security is not new, the increasing frequency and escalating costs of malicious attacks are driving the demand for a higher level of protection that doesn't compromise network performance," said Ricciulli. "To effectively combat these new threats at 10 Gigabit speeds, security devices must combine the flexibility of software with the performance of hardware." As network speed and complexity increase, the technological challenges associated with securing the network grow. The raw processing requirements to inspect packets at higher speeds can limit the ability of intrusion detection See IDS and IPS. and prevention technology to find vulnerabilities quickly enough. An increase in the frequency of subversive activities Noun 1. subversive activity - the act of subverting; as overthrowing or destroying a legally constituted government subversion overthrow - the termination of a ruler or institution (especially by force) further complicates attempts to secure the network. "High performance network security demands both internal and external measures that function at the speed of the network and can dynamically respond to varied attacks," continued Ricciulli. "The ability to inspect traffic at line-rate 10 Gig speeds and apply policies to prevent harmful traffic from entering the network are critical features of the high performance security that research and education organizations require to protect valuable data and analysis." Intrusion detection and prevention technology protects vulnerable computer systems from known application-level vulnerabilities undetected by systems that examine packet headers alone. By identifying vulnerabilities through application-level signatures, intrusion detection and prevention technology can stop packets carrying malicious payloads without shutting down the network, cost effectively reducing the impact of the attack on the organization. Despite existing network data security measures Noun 1. security measures - measures taken as a precaution against theft or espionage or sabotage etc.; "military security has been stepped up since the recent uprising" security and government regulations, such as Sarbanes-Oxley, the Health Insurance Portability and Accountability Act The Health Insurance Portability and Accountability Act (HIPAA) was enacted by the U.S. Congress in 1996. According to the Centers for Medicare and Medicaid Services (CMS) website, Title I of HIPAA protects health insurance coverage for workers and their families when (HIPAA (Health Insurance Portability & Accountability Act of 1996, Public Law 104-191) Also known as the "Kennedy-Kassebaum Act," this U.S. law protects employees' health insurance coverage when they change or lose their jobs (Title I) and provides standards for patient health, ) and the Gramm-Leach-Bliley Act The Gramm-Leach-Bliley Act, also known as the Gramm-Leach-Bliley Financial Services Modernization Act, Pub. L. No. 106-102, 113 Stat. 1338 (November 12, 1999), is an Act of the United States Congress which repealed the Glass-Steagall Act, opening up competition , attacks and malware caused more than $500 billion in damages last year while the personal information of more than 57 million people was compromised in 2005. Force10 Networks recently acquired MetaNetworks Inc., the pioneer of line-rate 10 Gigabit intrusion detection and prevention technology. With the acquisition, Force10 can now build and secure high performance Gigabit and 10 Gigabit Ethernet An Ethernet standard that transmits at 1 Gbps. Used mostly to connect high-end workstations and servers as well as for network backbones, Gigabit Ethernet transmits full duplex from point to point using switches and half duplex in a shared environment (CSMA/CD) using a hub. networks at line-rate speeds. About Force10 Networks Force10 Networks is the pioneer in high performance switching and routing. Based on a revolutionary system architecture that delivers best-in-class resiliency and massive scalability, Force10's TeraScale E-Series switch/routers ensure predictable application performance, increase network availability, and reduce operating costs operating costs npl → gastos mpl operacionales . Today, many of the world's largest Gigabit Ethernet and 10 Gigabit Ethernet networks depend on Force10 Networks. For additional information, please visit the company's website at www.force10networks.com. Force10, E-Series, EtherScale, TeraScale and FTOS FTOS Flight Termination Ordnance System are trademarks of Force10 Networks, Inc. All other company names are trademarks of their respective holders. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion