Intrusion Prevention Services (IPS)

SurePreventsm
DataPipe utilizes Blink® End-Point Vulnerability Prevention for Windows, combining the best elements of an intrusion prevention system, system and application firewall, internal policy enforcer, and vulnerability assessment engine into a single, comprehensive solution. Blink® delivers maximum host-level protection via continuous, non-intrusive multi-layer vulnerability monitoring and prevention.

Intrusion Prevention Technology
Blink® performs network traffic reconstruction and protocol analysis and is able to detect and block 'zero-day' attacks that bypass standard signature checking solutions. Blink® is also able to detect and block unknown attacks using pattern matching analysis.

For the added protection of individual digital assets, Blink® includes the following features:

  • Malicious Application Control Prevention protects against Application Hijacking via DLL control hooking
  • Application Policy Control prevents abusive user behavior within applications, such as downloading files via P2P or Instant Messenger applications
  • Buffer Overflow Protection protects against known and unknown buffer overflow attacks against network applications
  • Non-Signature Based Attack Prevention detects and blocks attacks without the need or use of attack signatures. This translates into complete protection, even when an attack is circulating, but the vendor has not yet created signatures or patches. This also removes the administrative burden associated with updating signatures files
  • Inbound and Outbound Port Blocking: Blink® controls all aspects of network traffic including all inbound and outbound connections. Blink® also controls traffic based on protocol, port, and communicating host address
  • Configurable rules: Blink®'s policies are customizable by the administrator and can be tailored to each particular worker's access or configuration requirement
  • Operating System Hardening: Blink® acts as Windows hardening solution, preventing attacks from modifying critical OS binary files or configuration settings

System and Application Firewall Technology
Performing analysis of each packet of network traffic entering the system, Blink® is able to allow or deny traffic based on a set of predetermined firewall rules. Blink® also monitors the source of network traffic in real time and will only allow traffic only from authorized applications.

Non-Intrusive Protocol Analysis
Blink®'s non-intrusive protocol analysis technology examines network traffic before it reaches the application layer, preventing malicious activity before it is allowed to execute. This allows Blink® to remain non-intrusive and support business continuity, unlike other end-point solutions, which resort to stopping services or processes as a means of protection.

Web Application Firewall (WAF)

Enterprises are moving critical business functions to Web applications and Web services. These applications bring economic advantages; they also bring increased security risks. Web application security prevention provides linear scalability for large, distributed environments.

Key Features:

  • Maximizes security with minimal impact to normal operations
  • Scalable solution supports the distributed enterprise
  • Out-of-the-box security policies enable rapid deployment
  • Use of Positive & negative security models provides maximum attack protection
  • Platform supports existing IT infrastructure and integrates with leading Enterprise Management Systems
  • Centralized reporting of security events, across the enterprise
©1998-2008 DataPipe | Site Map