Reflex Security Ships Enhanced Reflex Command Center.First solution to combine Identity Management, Security Information and Event Management, and Intrusion Prevention See IPS and IDS. Management in a single appliance ATLANTA & SAN FRANCISCO San Francisco (săn frănsĭs`kō), city (1990 pop. 723,959), coextensive with San Francisco co., W Calif., on the tip of a peninsula between the Pacific Ocean and San Francisco Bay, which are connected by the strait known as the Golden -- Today, at the RSA Conference The RSA Conference is a Cryptography-related conference held annually in the San Francisco Bay Area. The RSA Conference started in 1991 as a forum for cryptographers to gather and share the latest knowledge and advancements in the area of Internet security. (Booth 2631), Reflex Security (www.reflexsecurity.com) pioneer and innovator in intrusion prevention systems (IPS), announced shipment of the Enhanced Reflex Command Center (ERCC ERCC Excision-Repair Cross-Complementing ERCC Engine(s) Running Crew Change ERCC Electric Reliability Coordinating Council ERCC Excision-Repair, Complementing Defective, in Chinese Hamster ), the industry's first enterprise security management solution to combine the functionality of identity management, security information and event management (SIEM SIEM Security Information and Event Management SIEM Sistema de Información Empresarial Mexicano (Mexican Enterprise Information System) SIEM Società Italiana per l'Educazione Musicale ), ID-based Network Access Control (ID-NAC), and IPS management into a single appliance. News of the Enhanced RCC RCC - An extensible language. coincides with availability of another "industry first" for enterprise networking The networking infrastructure in a large enterprise with multiple computer systems and networks of different types is extraordinarily complex. Due to the myriad of interfaces that are required, much of what goes on has little to do with the real data processing of the payroll and orders. security. Today, Reflex Security also announced that it has added hardware-accelerated firewall support to its IPS MG Family of high performance, high availability Also called "RAS" (reliability, availability, serviceability) or "fault resilient," it refers to a multiprocessing system that can quickly recover from a failure. There may be a minute or two of downtime while one system switches over to another, but processing will continue. IPS systems delivering up to 10 Gigabits of throughput. The consolidation of a "fast firewall" and high performance IPS protection into an enhanced security management platform is a unique security solution for high-capacity enterprise networks. See the press release entitled "Reflex Security Ships High-Performance Enterprise IPS Solutions with Firewall Support" at http://www.reflexsecurity.com/news/. Today's CSOs, CISOs, and network managers increasingly have to do more with less. Ensuring IT security in the midst Adv. 1. in the midst - the middle or central part or point; "in the midst of the forest"; "could he walk out in the midst of his piece?" midmost of an ever-evolving threat model, while facing tight budgets, staffing restrictions and directives for consolidation and maximizing legacy investments is a constant challenge. The new Enhanced Reflex Command Center has been designed with this in mind--by combining what would otherwise be four separate security appliances into a single, integrated, high performance appliance. Reflex Security has integrated these applications into a single appliance by leveraging its experience with security virtualization An umbrella term for enhancing a computer's ability to do work. Following are the ways virtualization is used. Hardware Virtualization Partitioning the computer's memory into separate and isolated "virtual machines" simulates multiple machines within one physical computer. . "Much in the same way that server consolidation has been driven by virtualization, Reflex Security has delivered the industry's first security management consolidation platform," said Hezi Moore, President and CTO (Chief Technical Officer) The executive responsible for the technical direction of an organization. See CIO and salary survey. of Reflex Security. Our enterprise customers tell us they'll see significant benefits through security management consolidation: increased manageability and efficiencies, lower capital equipment costs, and scalability." "By virtualizing our security management platform, Reflex has created a foundation that will allow future 3rd party management applications (e.g. security analyzers and vulnerability assessment A Department of Defense, command, or unit-level evaluation (assessment) to determine the vulnerability of a terrorist attack against an installation, unit, exercise, port, ship, residence, facility, or other site. tools) that complement our IPS Everywhere[TM]strategy to easily be plugged into the system," said John Peterson, Vice President of Product Management at Reflex Security. Extending the capabilities of the company's current Reflex Command Center, The Enhanced Reflex Command Center delivers the following essential security functions: 1) IP to ID Identity Management IP to ID Identity Management built into the Enhanced RCC maps IP address information into name identities of network users. This capability allows a security administrator to know which user's computer is spreading worms and viruses onto the network. This is far more superior than just knowing the IP addresses of offending computers--which are always changing in dynamic enterprises, and especially in universities, hospitals, financial and services environments where laptop use is prevalent and users are highly mobile. Another use case for the integration of identity management with IDS/IPS is to identify which users are violating corporate policy. An example is using the system to pinpoint which specific user is running an unauthorized web server, Peer 2 Peer server or performing file transfers out of the network. 2) Security Information and Event Management Consolidation (SIEM) The integration of SIEM functionality into the Enhanced RCC helps network administrators consolidate the management of current and future security products operating within their infrastructure. In a world of corporate mergers and decentralized de·cen·tral·ize v. de·cen·tral·ized, de·cen·tral·iz·ing, de·cen·tral·iz·es v.tr. 1. To distribute the administrative functions or powers of (a central authority) among several local authorities. purchasing, individual departments may run networks independently, creating headaches for IT staff to integrate a range of security products, from a multitude of different vendors. Using the Enhanced RCC, in addition to managing their Reflex products, network managers can now monitor products from Tipping Point The point in time in which a technology, procedure, service or philosophy has reached critical mass and becomes mainstream. See network effect. See also tip and ring. , ISS ISS See Institutional Shareholder Services (ISS). , Cisco, and other security vendors. 3) Identity-Based Network Admissions Control and Post-Admissions Control a) Identity-based Network Admissions Control The system monitors for successful logins and will only allow users to have network and application access upon successful logins. While identity has long controlled access to applications, now network access will also be controlled by identity for the first time. When a user logs into the network the identity manager informs the Reflex IPS system to open the doors and allow traffic to flow from the IP address assigned to the authenticated user. If a user does not successfully login to the network his IP address is not allowed to flow. Furthermore, each IP address that is allowed to flow is inspected for malicious content. b) Identity-based Post-Admissions Control The Reflex IPS sensor provides additional protection by inspecting users' traffic after they have been authorized and admitted to network resources. Thus Reflex Security can inspect malicious activity within the network-- not solely at the point when offending threats originate prior to admittance Admittance The ratio of the current to the voltage in an alternating-current circuit. In terms of complex current I and voltage V, the admittance of a circuit is given by Eq. (1), and is related to the impedance of the circuit Z by Eq. (2). . Reflex's IPS Everywhere platform provides enterprise-wide real-time visibility into exposure. The new security capabilities delivered by the Enhanced RCC will also give public companies a further benefit in the way of a solution for compliance. Compliance is facilitated through reporting based on correlation of Reflex data with other data (e.g. firewall) via the SIEM functionality, and through identity-based recording of attempts to access resources. 4) IPS Management With compliance initiatives becoming increasingly important and the need to retrieve and compute massive amounts of historical data, the Enhanced RCC is sufficiently powered for the task. The RCC Enhanced operates on dual processor, quad core A single chip with four distinct processors that work simultaneously. Intel introduced its first x86-based quad-core CPUs in late 2006 (see Core 2), and AMD introduced its first x86 quad-core chips in 2007 (see Opteron). See dual core. (8 CPU CPU in full central processing unit Principal component of a digital computer, composed of a control unit, an instruction-decoding unit, and an arithmetic-logic unit. cores), has over a terabyte of redundant / hot swappable See hot swap. disk drives. The Reflex IPS and the Enhanced Reflex Command Center combine a powerful, centralized configuration and management console, comprehensive reporting tools, and ease-of-use in a unified solution for efficiently managing and preventing network attacks. The Reflex Command Center's real-time and forensic reports deliver actionable information and are designed to prevent managers from being overwhelmed by cryptic or redundant data. Efficient 3D graphical displays of attack data make for quick and easy navigation. Intuitive charting and plain-language explanations make it easy to understand network activity and events. This helps avoid false alarms, document compliance and make informed security responses. A Powerful Combination In the Enhanced Reflex Command Center, Reflex Security has integrated powerful 3rd party security applications into a virtualized platform. Building on its established alliance with virtualization vendors such as VMWare, Reflex Security has partnered with Apere (www.apere.com) to provide Identity Management, and with eIQnetworks (www.eiqnetworks.com) for Security Information and Event Management. About Reflex Security, Inc. Reflex Security, Inc., a pioneer in network intrusion prevention delivers real-time network security through its innovative products and IPS Everywhere[TM] approach to enterprise-wide security. By unifying discovery, deep-packet inspection and a comprehensive prevention engine, the company's IPS solutions block internal and external security threats to prevent today's most serious network attacks. With products that are adaptable, reliable and easy to use, Reflex Security simplifies enterprise security for business networks and virtualized networks of all sizes. Positioned as a "Visionary" in Gartner's Magic Quadrant, Reflex Security has garnered an impressive collection of awards including SC Magazine's coveted cov·et v. cov·et·ed, cov·et·ing, cov·ets v.tr. 1. To feel blameworthy desire for (that which is another's). See Synonyms at envy. 2. To wish for longingly. See Synonyms at desire. "Best Buy" honor and selection as top performer in its Group Test of IPS vendors. For more information visit http://www.reflexsecurity.com, call 888-872-7555, or contact any authorized channel partner. Reflex Security is a registered trademark, and IPS Everywhere is a trademark of Reflex Security, Inc. All other trademarks or service marks are property of their respective owners. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion