eNetSecure Announces IceMon, the First Commercial Release of Its Telecommunication Intrusion Detection System.Business Editors/High-Tech Writers SUNNYVALE, Calif.--(BUSINESS WIRE)--Nov. 17, 2000 First Solution to Reconstruct Data and Faxes Sent Through PBX (Private Branch eXchange) An inhouse telephone switching system that interconnects telephone extensions to each other as well as to the outside telephone network (PSTN). Networks eNetSecure, Inc., a wholly owned subsidiary Wholly Owned Subsidiary A subsidiary whose parent company owns 100% of its common stock. Notes: In other words, the parent company owns the company outright and there are no minority owners. of Applied Signal Technology, Inc. (Nasdaq:APSG APSG Antisymmetrized Product of Separated Geminals ), today announced the commercial release of IceMon, a telecommunication intrusion detection system This article is about the computing term. For other uses, see Burglar alarm. An intrusion detection system (IDS) generally detects unwanted manipulations of computer systems, mainly through the Internet. that protects computer networks against outsider infiltration as well as insider information leaks executed through an enterprise's PBX telecom switch. The system was previously sold exclusively to U.S. government agencies under the name Model 2600 Modem Sentry. IceMon monitors dial-up modem, fax and voice sessions passing through the office phone network -- the "back door" that is considered the most likely source of security violations. The system identifies the origin and destination of each communication, generates real-time alarms in the event of suspicious activity, and also archives and reconstructs the file, making it possible to ascertain the precise content transmitted or received. Data is automatically reconstructed, including the TCP/IP TCP/IP in full Transmission Control Protocol/Internet Protocol Standard Internet communications protocols that allow digital computers to communicate over long distances. packets that are the basis of many sophisticated network attacks. Fax recovery is optional. This ability to recover the contents of transferred files or email messages, trace web traffic, and document password cracking Password cracking is the process of recovering secret passwords from data that has been stored in or transmitted by a computer system. A common approach is to repeatedly try guesses for the password. attempts is a first in the commercial market. Captured session data can be used to establish the nature of the violation as well as to provide evidence for disciplinary action or legal proceedings All actions that are authorized or sanctioned by law and instituted in a court or a tribunal for the acquisition of rights or the enforcement of remedies. . "To date, network security has focused largely on firewalls and other protection tools that guard networks against unauthorized access and Internet attacks via the ISP (1) See in-system programmable. (2) (Internet Service Provider) An organization that provides access to the Internet. Connection to the user is provided via dial-up, ISDN, cable, DSL and T1/T3 lines. data link," said Patrick Heim, chief technology officer of eNetSecure. "But these tools can be easily bypassed, either by insiders using unauthorized dial-up modems inside the enterprise or by outsiders using readily available automated dialing programs to find such modems. Our IceMon system offers comprehensive protection against this form of security breach." Modems are a particular concern because they can be easily installed on any computer without management's knowledge, creating an unprotected entry path to the company network for outside intruders. Disloyal insiders can also use modems to transmit confidential company data or mount network attacks. FBI studies indicate that insiders are responsible for 80 percent of security violations, while Ernst & Young's latest Information Security Survey cites internal threats from unauthorized users on company networks, authorized employees, former employees and contract workers. IceMon protects against such dangers by constantly monitoring and logging all data traffic into and out of the enterprise through dial-up access hot Dial-up access is a form of Internet access via telephone line. The client uses a modem connected to a computer and a telephone line to dial into an Internet service provider's (ISP) node to establish a modem-to-modem link, which is then routed to the Internet. . The system automatically classifies each call as modem, fax or voice; identifies all unauthorized modems; and creates a record identifying key data for each session such as time of call, calling party number, answering party number and call type. This record is archived for historical analysis by the telecom or IT security specialist. The system can be configured to alert the appropriate personnel to suspicious conditions, such as any faxes sent between 12 midnight and 6 a.m., voice lines that are being used to send data, or war dialing War dialing or wardialing is a method of automatically scanning telephone numbers using a modem, usually dialing every telephone number in a local area to find where computers or fax machines are available, then attempting to access them by guessing passwords. indicating an intrusion effort. Intrusion activity reports can be generated upon request or at scheduled intervals. Alerts and reports can be accessed either from the system database or through a hosted Web-based service under eNetSecure's Application Service Provider (ASP) offering. The system scales from 2 to 12 T1 lines in a 7"-high rack mount chassis installed on the company telephone switch. It operates passively, leaving all communications free from interference and eliminating the risk of letting sessions pass unmonitored during periods of system overload. Detection and demodulation demodulation: see modulation. See demodulate. (communications) demodulation - To recover the signal from the carrier. For example, in a radio broadcast using amplitude modulation the audio signal is transmitted as the mean amplitude of a of each session are achieved through distributed and proprietary algorithms deployed on IceMon's robust DSP (1) (Digital Signal Processor) A special-purpose CPU used for digital signal processing applications (see definition #2 below). It provides ultra-fast instruction sequences, such as shift and add, and multiply and add, which are commonly used in math-intensive platform, enabling session data to be captured even on a modem's first use. About eNetSecure, Inc.: eNetSecure(TM) is dedicated to providing the latest system management technology to assure clients real-time management of availability, reliability, scalability and security services and products for the IT environment. The company offers a broad spectrum of system management capabilities as well as trained and certified Technical Specialists, providing 7x24x365 operational services to meet customers' business needs. For more information, visit www.enetsec.com. About Applied Signal Technology, Inc.: Applied Signal Technology, Inc., the parent company of eNetSecure, Inc., designs, develops, manufactures and markets advanced digital signal processing See DSP. Digital Signal Processing - (DSP) Computer manipulation of analog signals (commonly sound or image) which have been converted to digital form (sampled). equipment to process a wide range of telecommunications signals for commercial and government applications. For more information, visit www.appsig.com. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion