NetScreen Technologies Integrates Remote VPN Client Security With Firewall; Provides Secure, High-Speed NAT Access to Remote Users, Eliminates Need for Separate Remote VPN and Firewall.SANTA CLARA Santa Clara, city, Cuba Santa Clara (sän`tä klä`rä), city (1994 est. pop. 217,000), capital of Villa Clara prov., central Cuba. , Calif.--(BUSINESS WIRE)--Aug. 24, 1998-- Pre-Integrated Remote Security Solution Minimizes Network Management, Speeds Remote Access and Reduces Telecommunications Costs NetScreen Technologies Inc. today announced a remote access Virtual Private Network (VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. ) client pre-integrated with the corporate firewall, creating a unified security system that eliminates the barrier traditionally imposed by firewalls on encrypted data, while still implementing the highest level of IPSec-compliant security for remote access. NetScreen's ASIC-based integrated firewall/VPN provides high-speed, IPSec-based encrypted remote access to Network Address Translation (NAT (Network Address Translation) An IETF standard that allows an organization to present itself to the Internet with far fewer IP addresses than there are nodes on its internal network. )-based networks for a large number of users, even while accessing heavily-trafficked servers. NetScreen's integrated approach avoids the performance bottleneck created by software-based security solutions that become burdened by the compute-intensive operation of encryption, which then often drop connections attempted to overloaded servers. With the ability now to encrypt remote clients, the NetScreen-10 and NetScreen-100 ASIC-based security products, which already integrate VPN, firewall and traffic-shaping capabilities, eliminate the compromise to firewall integrity when separate remote access and firewall solutions need to be configured. NetScreen's integrated remote client supports tunnel mode with NAT turned on, providing direct, secure access over IP to the internal network (or NAT) from the Internet or Extranet. With NetScreen's integrated remote VPN client and firewall, network administrators do not need to decide whether to locate the VPN inside or outside the firewall, authentication procedures for separate solutions do not need to be duplicated, and administration is vastly facilitated. With support for IPSec-based remote access, NetScreen reduces equipment, management and telecommunications costs by eliminating the need for access through corporate modem banks. Next-generation operating systems Operating systems can be categorized by technology, ownership, licensing, working state, usage, and by many other characteristics. In practice, many of these groupings may overlap. integrating IPSEC, such as Microsoft NT5, (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on :MSFT MSFT Microsoft (stock symbol) MSFT Movimento Sociale Fiamma Tricolore (Italy) MSFT Multi-Stage Fitness Test MSFT Master of Science in Family Therapy MSFT Macalester Students for Fair Trade ), will be compatible with NetScreen's remote access support. Richard Hanke, NetScreen's marketing director, said, "VPNs represent the next generation in remote access. Companies can significantly reduce administration, equipment and telecommunications expenses by outsourcing remote access to the ISP (1) See in-system programmable. (2) (Internet Service Provider) An organization that provides access to the Internet. Connection to the user is provided via dial-up, ISDN, cable, DSL and T1/T3 lines. . NetScreen is able to deliver a very effective and fast approach to secure remote access because we integrate the VPN and firewall. Network administrators, therefore, do not need to decide how to pass data through their firewall, which compromises its integrity. Accelerator add-ons and so-called 'integrated' software suites still do not address this problem. NetScreen elegantly and simply takes care of access through the firewall barrier." NetScreen's remote access client gives remote users, such as corporate road warriors
The Road Warriors were a professional wrestling tag team famously comprised of Michael "Hawk" Hegstrand and Joseph "Animal" Laurinaitis, though other members , users working at home or from branch offices, and other mobile professionals the fastest possible secure connections to corporate data. This is possible because both the NetScreen-100 and NetScreen-10 dynamically encrypt, screen and prioritize traffic in real time, and are therefore able to support wire-speed performance. NetScreen's remote access capability provides point-to-point support, connecting the user through a low-cost local dial-up ISP connection via software installed on the remote system and establishing a VPN tunnel to the corporate network secured by a NetScreen-10 or NetScreen-100 firewall. NetScreen supports high-performance access for large numbers of concurrent users, whether remote or inside the firewall. The NetScreen-100 supports as many as 4370 connections per second (based on 32 clients), more than twice that of its closest competition, according to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. an independent test of firewalls conducted earlier this year by KeyLabs. The NetScreen-10 supports 16,000 concurrent user sessions; the NetScreen-100 supports 32,000 concurrent user sessions. Both support up to 4,000 advanced access policies, with an easy-to-use policy interface. Both the NetScreen-100 and NetScreen-10 support industry standards for encryption, including Internet Key Exchange Internet key exchange (IKE) is the protocol used to set up a security association (SA) in the IPsec protocol suite. Overview IKE is defined in RFC 2407, RFC 2408 and RFC 2409. IKEv2 is defined in RFC 4306. (IKE, previously ISAKMP (Internet Security Association and Key Management Protocol) A framework for establishing trusted interactions among entities using TCP/IP. See IKE. ISAKMP - Internet Security Association and Key Management Protocol ) for secure key exchange over IP; Data Encryption Standard See DES. Data Encryption Standard - (DES) The NBS's popular, standard encryption algorithm. It is a product cipher that operates on 64-bit blocks of data, using a 56-bit key. It is defined in FIPS 46-1 (1988) (which supersedes FIPS 46 (1977)). (DES) and Triple DES See DES. (cryptography) triple DES - A product cipher which, like DES, operates on 64-bit data blocks. There are several forms, each of which uses the DES cipher 3 times. Some forms use two 56-bit keys, some use three. The DES "modes of operation" may also be used with triple-DES. , as well as Message Digest A condensed text string that has been distilled from the contents of a text message. Its value is derived using a one-way hash function and is used to create a digital signature. See digital signature and MD5. 5 (MD5) header identification algorithm for data integrity. NetScreen will support X.509 certificates for Public Key Infrastructure (PKI (Public Key Infrastructure) A framework for creating a secure method for exchanging information based on public key cryptography. The foundation of a PKI is the certificate authority (CA), which issues digital certificates that authenticate the identity of ), which automate and simplify key VPN functions. Both NetScreen products are IPSec-compatible. Pricing and Availability of NetScreen Remote Access NetScreen's remote VPN client will be available in September for Windows NT and 95 for $95 per client. A 10-user license is $695, a 25-user license is $1,295, and site licenses are available upon request. The award-winning NetScreen-100 is the only product to combine firewall, VPN and traffic management with 100Mbps full wire-speed performance, making it the fastest product of its kind in each of these security categories. The NetScreen-10 puts data and Internet security, as well as traffic management within the financial reach of small business users or corporate branch offices. How NetScreen Delivers Benchmark-Setting Performance NetScreen is leading the move to offload network security functionality from a PC or workstation to a dedicated ASIC-based hardware platform, a development that similarly occurred with router technology. NetScreen's products are based on a secure packet processor -- an innovative ASIC (Application Specific Integrated Circuit) Pronounced "a-sick." A chip that is custom designed for a specific application rather than a general-purpose chip such as a microprocessor. design and multibus architecture with embedded high-speed CPU CPU in full central processing unit Principal component of a digital computer, composed of a control unit, an instruction-decoding unit, and an arithmetic-logic unit. -- that delivers wire speed performance. This advanced system-level design allows for an increase in the number of features provided, while eliminating the performance gap that has existed between current network devices and firewall security systems. NetScreen's firewall ASIC performs the tasks of firewall screening and the VPN DES encryption/decryption functions, with the access policy algorithms in hardware -- a significantly faster approach than in software, and one that frees the CPU to manage data flow. By bringing security functionality to the system level, NetScreen has removed the overhead of extra platform layers, floppy controllers and drivers found in PC-based solutions, all of which degrade performance. NetScreen uses fast RISC-based processors that outperform PC-based CPUs, and a dedicated, secure operating system The term "secure operating system" is a misnomer. Relevant articles include:
NetScreen's performance advantages allow users to fully benefit from the higher speeds offered by multiple T-1 lines and ever-higher bandwidth solutions, such as T-3, as well as to secure individual sub-networks or departments within their organizations, without performance degradation. Company Information NetScreen Technologies provides a family of network/Internet security solutions that integrate firewall, VPN encryption, traffic management and remote access functionality all on a single, dedicated ASIC-based hardware platform that delivers record-breaking performance. NetScreen is located at 2860 San Tomas Expressway, Santa Clara, CA 95051, phone 408/330-7800. More information on the company and its products can be found at http://www.netscreen.com or by calling toll free at 800/638-8296. Note to Editors: NetScreen is a trademark of NetScreen Technologies Inc. Other trademarks are the property of their respective owners. CONTACT: NetScreen Technologies Inc. Richard Hanke, 408/970-8889 rh@netscreen.com or Lindsay PR Mary Lindsay, 408/984-7242 mlindsay@sjm.infi.net |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion