|
Purpose | Solution | Security | Additional
Security Technology and Services
Vulnerability of today’s information systems necessitates
Intelligent Threat Management (ITM).
Security. Today every person and every entity yearns for it. Every advancement seems to open more portals for vulnerability. Attackers. Hackers. Viruses. Worms and the like. Concern about information security rattles teeth, instills fear and shakes the foundations of commerce, business and government. Vulnerability of today’s information systems necessitates
Intelligent Threat Management (ITM).
Amid massive uncertainties that pervade the IT industry, the demand for
ITM stands unquestioned. Most ITM today is an aggregate of vendors, distributors, and consultants who provide information technology security services and solutions. A wide variety of suppliers utilize diverse, incomplete, and often incompatible technologies. In this early phase of the industry’s life-cycle, there has been little consolidation, standardization, or breakout leadership.
Purpose: Eliminate Vulnerability to Attack
Patching together multiple disparate security products and services becomes expensive, inefficient, and labor intensive. Organizations need a more efficient and effective way to protect their information assets.
While the Internet, Intranets, and Extranets proliferate and create powerful new ways for corporations and individuals to market, communicate, and share valuable data, the increased power deepens threats. Viruses corrupt entire systems. Hackers steal confidential information. Denial of service attacks have left users unable to access business critical systems. Although many organizations seek protection with firewalls, antivirus software, and intrusion detection systems, they’re still vulnerable to attack.
Today, businesses often implement point solutions to security as a common defense. However, patching together multiple disparate security products and services becomes expensive, inefficient, and labor intensive. Organizations need a more efficient and effective way to protect their business from hackers, combat costly viruses and worms, and to control customer and business partner access to internal data and applications, as well as comply with government regulations. Companies need total protection, but many lack the technical expertise to accomplish this. They cannot afford all the technologies required to protect them. Result: they leave their business exposed.
Solution: A Focused Appliance that Learns!
Barrier1™ learns, adjusts, and instantly defends against new attacks.
Barrier1™ provides a revolutionary patent pending approach to network security. In a single appliance, Barrier1™ incorporates industry recognized security technologies with patent pending “Advanced Analysis and Reaction Engine” ( AARE ) software. This melds hardware and software holistically and intelligently to analyze, correlate and interpret data gathered from all these technologies. With AARE and instant updates from The Barrier Group
Global Threat Management Center about new global threats, Barrier1™ learns, adjusts, and instantly defends against new attacks. This combination of patent pending software, security technologies, and security operations provides a level of network security that’s exponentially better than anything else in the market today.
Completing the “Cycle of Protection”
The Global Threat Management Center (GTMC) enhances and augments an organization’s security by monitoring every Barrier1™ 24/7. The
GTMC continuously monitors global security events and reviews the findings from the AARE in every Barrier1™ to keep abreast of new attacks. Definitions of new attacks are automatically communicated with Barrier1™. Then it immediately reports suspicious activity to your organization. This completes the
Cycle of Protection
to ensure that your organization is fully and completely protected.
Points of Security
The Barrier1™ appliance incorporates 29 security technologies on a single, commonly managed appliance. Examples of these technologies available include:
|
Feature
|
Description
|
Advantages
|
|
Full appliance integration
|
All security technologies reside on a single, commonly managed appliance
|
Reduction in costs with respect to training and individual product expertise
|
|
Partial appliance integration
|
Some security technologies reside on a single, commonly managed appliance
|
No need to replace existing point products
|
|
Stateful firewall
|
An industry standard method of network connection monitoring, control, and protection
|
Prevents “hijacking” of in-progress data communications
|
|
Application awareness
|
Inspecting network connections for proper application behavior, protecting a network from common application vulnerabilities
|
Abnormal application behavior may be an attack which needs immediate investigation to prevent or repair damage
|
|
Dynamic Host Configuration Protocol (DHCP)
|
Providing IP address and other network parameters to network users
|
Dynamically assigning addresses prevents duplicate addresses and reduces costs of complex tracking
|
|
Intrusion Detection System (IDS)
|
Intrusion detection system to detect attacks
|
Informs administrator of a possible attack in progress
|
|
Intrusion Detection and Prevention (IDP)
|
Intrusion detection and prevention to detect and prevent attacks
|
Detects and stops attacks to prevent internal systems from being compromised
|
|
Host-based Intrusion Detection Systems (HIDS)
|
Host-based intrusion detection systems to detect attacks on, and changes at, the security device itself, and network infrastructure
|
Informs administrator of possible compromise of the system
|
|
Service proxy and cache server
|
Isolates users from the Internet, controls their access, and improves speed of Internet use
|
Safer and faster access to Internet sites
|
|
E-mail forwarder with masking
|
Isolates and controls incoming or outbound e-mail
|
Prevents end-user machines from exposure to Internet e-mail threats
|
|
Web forwarder with masking
|
Isolates, protects, and controls incoming or outbound Web service requests
|
Prevents end-user machines from exposure to Internet Web-based threats
|
|
Anti-spam
|
Prevents the majority of unsolicited e-mail requests
|
Improves productivity by eliminating wasted time on junk mail
|
|
Web content filter
|
Protects organizations from access to unacceptable Web sites and content
|
Enables effective enforcement of company Web content policy
|
|
Antivirus filter
|
Examines incoming e-mail and other services for the presence of viruses and, if necessary, removes them
|
Stops malicious content before any harm can be done
|
|
E-mail content filter
|
Controls the content of e-mail messages to protect against spam and unacceptable content
|
Enables effective enforcement of company e-mail policy
|
|
Anomaly trending and detection
|
The ability to learn, identify, report, control, and protect against new types of attacks
|
Notifies administrator of possible malicious activity
|
|
Multiple Demilitarized Zones
(DMZ)
|
The ability to segregate a customer’s network into isolated “demilitarized zones,” providing protection by isolation
|
Enables optimum configuration of physical separation and policy enforcement to meet company standards and requirements
|
|
Virtual Private Network (VPN) Concentrator
|
Allows connection from anywhere in the world to a virtual private network that, from a remote site, appears as a single network segment
|
Enables secure connectivity in a simple fashion that eliminates the need for extra software on client machines
|
|
VPN Initiator
|
Connects to other VPN concentrators
|
If required can initiate secure VPN link to remote site(s)
|
|
Site-to-site VPN with full mesh option
|
Allows the creation of a large private network utilizing inexpensive public Internet connections, which is useful for companies with small branch or remote offices/locations
|
Allows fault tolerant designs to reduce the costs of disaster recovery solutions
|
|
Encryption at all levels
|
All data transferred or stored in an encrypted or encoded format
|
Prevents system compromise by either network monitoring or physical violation
|
|
Honey Pot
|
A method to trap intruders and track attackers
|
Identifies and blocks sources of malicious attacks
|
|
Secure Shell (SSH)/ Secure Shell Daemon (SSHD)
|
A secure method of communicating and managing security appliances and services
|
Ensures no unencrypted information traverses communication paths
|
|
Automatic updates via Web
|
Self-maintaining, correcting, updating, and reporting mechanisms
|
Proactively protects against the most current threats
|
|
HA/Cluster implementation
|
High-availability redundant capability that can grow as required depending on performance requirements
|
Scales to meet business requirements for performance and fault tolerance.
|
|
Common Web-enabled management interface
|
Allows all technologies and services to be managed by a common Web-based interface
|
Easy to use, no special software or hardware upgrades required
|
|
SAMBA, LDAP support
|
Windows network file system and user awareness
|
Easily integrates into existing infrastructure
|
|
Full identification, authentication, and authorization (AAA) support
|
Method of ensuring proper user access and logging of user connections to network resources
|
Complies to business policy regarding access and recording of all activity
|
|
Multi-factor identification required for appliance management
|
More extensive methods used for administrative access to security devices for management and control
|
Ensures that only authorized personnel have access
|
For additional information about the technologies and features of the Barrier1™ appliance contact: sales@thebarriergroup.com
Barrier1™ Maximizes Return On Investment
Because it Leverages Your Previous Security Investments
Return on investment plays a crucial role in any business purchase decision today. Key elements of any ROI analysis include leveraging past investments with tomorrow’s investment, competitive products and services available, and the ongoing operating costs of annual license agreements, and annual support contracts. The Barrier1™ solution addresses all of these elements to define an ROI that is very attractive to its customers.
The Barrier1™ solution leverages customers’ past investments by working side-by-side with these security investments. It integrates 29 distinct security technologies into a single appliance and combines that with continuous software updates, along with 24/7 monitoring of the customer's security environment. This provides constant attention to customer needs. The all-in-one cost model of the Barrier1™ solution provides a comprehensive solution for organizations that seek a rapid and quantifiable return on investment.
Download our sales specification sheet.
|
