TippingPoint Sets New Standard for Intrusion Prevention; UnityOne Customers Protected From Bandwidth Hijacking, Infrastructure Attacks and Walk-In Worms.Business Editors/High-Tech Writers AUSTIN, Texas--(BUSINESS WIRE)--Feb. 17, 2004 TippingPoint Technologies Inc. (Nasdaq:TPTI TPTI Third Party Turn In ), the leader in intrusion prevention See IPS and IDS. , today announced new capabilities for UnityOne Intrusion Prevention Systems. TippingPoint unleashes the power of intrusion prevention by extending its best-of-breed, Layer 2-7 Application Protection with powerful Performance Protection and Infrastructure Protection features. "TippingPoint is re-defining intrusion prevention," said TippingPoint's Chief Executive Officer Kip McClanahan. "Intrusion prevention requires the ability to protect bandwidth and performance, the network infrastructure itself, as well as applications at Layers 2-7. Today's attacks target each of these three business-critical areas, and only TippingPoint offers customers a complete, intelligent solution. Our customers demand uncompromising performance, reliability and protection." UnityOne Performance Protection capabilities enable customers to throttle non-mission critical applications that hijack valuable bandwidth and IT resources, thereby aligning network resources and business-critical application performance. By rate limiting In computer networks, rate limiting is used to control the rate of traffic sent or received on a network interface. Traffic that is less than or equal to the specified rate is sent, whereas traffic that exceeds the rate is dropped or delayed. applications such as peer-to-peer file sharing Copying files from one computer to another. See peer-to-peer network, file sharing protocol and file and printer sharing. and instant messaging Exchanging text messages in real time between two or more people logged into a particular instant messaging (IM) service. Instant messaging is more interactive than e-mail because messages are sent immediately, whereas e-mail messages can be queued up in a mail server for seconds or , network resources for business-critical applications like e-mail, database transactions and voice over IP (VoIP) are protected. Rogue applications can consume massive amounts of bandwidth. The ability to set policies that reclaim bandwidth results in an immediate return on investment. Ronnie Wagers, network systems and security officer at University of Dayton The University of Dayton is one of the ten largest Catholic schools in the United States and is the largest of the three Marianist universities in the nation. It is also home to one of the largest campus ministry programs in the world. , said, "Once we implemented TippingPoint's performance protection filters, we saw a 40 percent increase in bandwidth availability. TippingPoint eliminated the need for us to purchase additional bandwidth, resulting in immediate cost savings." TippingPoint's UnityOne Infrastructure Protection capabilities protect against denial of service attacks, SYN flood attacks and process table floods. This feature also protects routers, switches, DNS (Domain Name System) A system for converting host names and domain names into IP addresses on the Internet or on local networks that use the TCP/IP protocol. For example, when a Web site address is given to the DNS either by typing a URL in a browser or behind the and other critical infrastructure such as VoIP from targeted attacks and traffic anomalies. Sophisticated algorithms within UnityOne can baseline normal traffic allowing for automatic thresholds and throttling to protect against denial of service A condition in which a system can no longer respond to normal requests. See denial of service attack. and unknown, zero-day attacks. Pima County Community College's Director of Network Services Kirk Kelly said, "Our UnityOne arrived on site when we were having firewall problems due to a high level of ICMP (Internet Control Message Protocol) A TCP/IP protocol used to send error and control messages. For example, a router uses ICMP to notify the sender that its destination node is not available. traffic. We quickly installed the UnityOne outside of the firewall and it immediately began blocking the offensive traffic. The UnityOne protected the firewall and continued to perform under extreme load conditions." The UnityOne protects both perimeter and internal network segments. Internal protection is necessary to prevent attacks from within such as "walk-in" worms that are carried past the perimeter on an infected laptop. The UnityOne's gigabit throughput and microsecond One millionth of a second. See space/time and ohnosecond. (unit) microsecond - One millionth (10^-6) of a second. latency are required to protect high-speed connections at the network core. Jacada's MIS Manager Ronny Nussbaum said, "UnityOne protects us from internal and external threats. We placed the device in front of the firewall where it relieves the load on the firewall and blocks malicious traffic. We've also had several cases where someone came in with their Welchia-infected or ad-ware infested in·fest tr.v. in·fest·ed, in·fest·ing, in·fests 1. To inhabit or overrun in numbers or quantities large enough to be harmful, threatening, or obnoxious: laptop, and UnityOne notified me immediately. I love this product! We've experienced bandwidth savings of approximately 30 percent." The UnityOne Security Management System (SMS (1) (Storage Management System) Software used to routinely back up and archive files. See HSM. (2) (Systems Management Server) Systems management software from Microsoft that runs on Windows NT Server. ) has been enhanced to easily manage these new capabilities. The new functionality consists of advanced reporting features, added bandwidth shaping Same as traffic shaping. functionality, and more intuitive usability combined with a new graphical user interface graphical user interface (GUI) Computer display format that allows the user to select commands, call up files, start programs, and do other routine tasks by using a mouse to point to pictorial symbols (icons) or lists of menu choices on the screen as opposed to having to . In a recent multi-vendor IPS evaluation, The NSS (Novell Storage Services) A 64-bit file system introduced with NetWare 5 that can support terabyte-sized files. NSS files and standard NetWare files can be used in the same server. See NetWare 5. 1. (networking) NSS - Nodal Switching System. Group report stated, "We found the TippingPoint management system to be the most usable overall...The interface was intuitive, policy management was excellent, and the alert handling, analysis and reporting were all flexible, powerful, and yet very easy to use...The Policy Editor is the best we have seen on any IDS/IPS device." The full report can be seen at www.nss.co.uk/ips. The UnityOne Intrusion Prevention System is based on TippingPoint's patent-pending custom-ASIC Threat Suppression Engine. The TSE See Tokyo Stock Exchange. TSE 1. See Tokyo Stock Exchange (TSE). 2. See Toronto Stock Exchange (TSE). supports a broad range of attack filtering mechanisms including signatures to detect known attack types, protocol anomalies to detect RFC (Request For Comments) A document that describes the specifications for a recommended technology. Although the word "request" is in the title, if the specification is ratified, it becomes a standards document. violations, application anomalies to protect application vulnerabilities, and traffic anomalies for zero-day protection against unknown attacks. This powerful technology is highly scalable and extensible. The added Performance Protection and Infrastructure Protection capabilities deliver great value to TippingPoint customers and set a new standard for Intrusion Prevention Systems. About TippingPoint Technologies TippingPoint Technologies is the leading provider of network-based intrusion prevention systems that deliver in-depth protection and attack eradication for corporate enterprises, government agencies, service providers and academic institutions. This innovative approach offers customers an effective network-based security solution with unrivaled economics, ultra-high performance, scalability and reliability. TippingPoint is based in Austin, Texas and can be contacted through its Web site at www.tippingpoint.com or by telephone at 1-88UNITYONE. TippingPoint Technologies, the TippingPoint logo, UnityOne, the UnityOne logo and Digital Vaccine are registered trademarks of TippingPoint Technologies Inc. TippingPoint Forward-Looking Statements This announcement contains forward-looking statements within the meaning of Section 27A of the Securities Act of 1933, as amended, and Section 21E of the Securities Exchange Act of 1934, as amended. These forward-looking statements are subject to significant risks and uncertainties. Although the company believes that the expectations reflected in its forward-looking statements are reasonable, the company can give no assurance that such expectations or any of their forward-looking statements will prove to be correct, and future results may differ from those discussed in this press release. Important information regarding the factors that may affect the company's future performance is included in its public reports that it files with the Securities and Exchange Commission. The company disclaims any intention or obligation to revise any forward-looking statements whether as a result of new information, future event, change in expectations, conditions or circumstances, or otherwise. Readers are cautioned not to place undue reliance on these forward-looking statements, which speak only as of the date hereof. The inclusion of any statement in this release does not constitute an admission by the company or any other person that the events or circumstances described in such statement are material. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion