Intrusion Detection Systems - IT Library : ZDNet Asia

White Papers

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

IBM Managed Security Services for security intelligence 2005-10-10 13:45:52

Help protect and defend IT assets with IBM security intelligence.

Without credible threat analysis and security intelligence, your infrastructure has little-to-no defense against threats and attacks. IBM Managed Security Services can help you secure and defend your IT environment with security intelligence services.

Get advanced warnings against imminent threats including where the next IT threat is likely to materialize. Be prepared, and help save your business from productivity loss, downtime, and costly disruptions.

Securing Critical Data and IT Infrastructure in Healthcare Environments 2005-03-28 3Com

The seemingly paradoxical demand in healthcare organizations today is increased availability and security. Without a defined security architecture in place this would truly be impossible. TippingPoint provides the solution to both availability and security with the TippingPoint IPS. TippingPoint is the industry's leading Intrusion Prevention System (IPS), unrivaled in security, performance, high availability, and ease-of-use. Unlike passive-mode Intrusion Detection Systems, the TippingPoint IPS operates in-line in the network, blocking malicious and unwanted traffic, while allowing good traffic to pass unimpeded.

Managing Peer-to-Peer Traffic in Network Environments 2005-08-04 03:00:01 3Com

In order for an IPS to provide network security and management of Peer-to-Peer applications in today's networks, the device must perform well on multiple fronts simultaneously. Specifically, the IPS must implement high precision filters, handle a heavily-loaded gigabit network with a full filter set enabled (no dropped packets), and with low packet latency. To date, TippingPoint's IPS is the only IPS shown to be capable of meeting these fundamental requirements.

A SAS Framework for Network Security Intelligence 2005-12-01 01:00:02

This paper presents a SAS-based framework that enhances the real-time data provided by point products and event correlation engines, provides a consolidated view of CND data in a historical context, and most important, improves an organization's understanding of the health of its computer networks. This paper details the key components of the framework: a centralized repository to integrate and manage all CND-related data, scalable storage architecture to efficiently handle extremely large volumes of data, and role-based interfaces to deliver critical CND information to the right consumers at the right time.

Beyond the Perimeter: Enterprise-wide Intrusion Prevention 2004-11-01 Q1 Labs

Intrusion Prevention Systems (IPS), a technology that evolved from firewalls and Intrusion Detection Systems (IDS), have never fully delivered the promised benefits. The technology presents significant challenges and limitations that leave major gaps in the network defenses. As IPS functionality is incorporated into switches and firewalls, standalone systems become effectively obsolete. This white paper addresses the problems and limitations of IPS devices and explains how they leave the network exposed. The paper discusses a new approach that leverages threat data from multiple sources and performs advanced behavioral analysis to provide an IPS that spans the enterprise. It fills in the gaps left by standalone IPS systems and provides a host of new benefits for both network and security administratorsat less cost and in a fraction of the deployment time.

Intrusion Detection and Cyber Security Monitoring of SCADA and DCS Networks 2005-02-17 04:01:01 Instrumentation, Systems, and Automation Society

Governments and industry organizations, including ISA, have recognized that Supervisory Control and Data Acquisition (SCADA), Distributed Control Systems (DCS), and other process control networks, referred to as SCADA networks in this paper, are potential targets of attack from hackers, disgruntled insiders, cyber terrorists, and others who want to disrupt the critical infrastructure. This paper describes how current intrusion detection and cyber security monitoring products and services used in IT enterprise networks can provide early identification of attacks from the most common threat agents.

Improving Security ROI Via an Integrated Application Security Solution 2005-08-04 03:00:01

Application Intelligence is a software-based technology that is aware of the protocol in use by an application and is fully aware of the actual and potential limitations of the protocol such that it can identify characteristics exhibited by an exploit. So if exploiting a perceived vulnerability requires coming through a certain firewall port and contains a payload larger than a certain size, the software can be tuned to look for traffic meeting those criteria. If such traffic is found, it can be dropped.

Next generation e-business solutions 2005-02-01 IBM

To compete in today's fast business environment, mid-size businesses are always looking for new ways to improve their mobile employees' productivity. With IBM Secure Wireless Networking Solutions for Cisco Systems, businesses can help translate technology investments into real business benefits. See how IBM can give you a competitive edge with highly secure wireless infrastructures, improved productivity, enterprise class security and easily deployed implementation.

Host and Network Intrusion Prevention: Competitors or Partners 2006-06-02 01:00:29 McAfee

Intrusion Prevention Systems are designed to protect information systems from unauthorized access, damage or disruption. Vendors have developed IPS to counteract the rapidly evolving threats presented by the latest generation of worms, software and network exploits. The need for access to these critical services has led to the development of redundant communication links, wireless networks, mobile notebook computers, handheld digital devices, even internet-enabled cellular phones. This paper will address the need for Intrusion Prevention Systems, will explore the two most popular IPS architectures and will try to provide insight into the selection and use of these systems.

How to Perform Network-Wide Security Event Log Monitoring 2005-01-31 08:49:50 GFI Software

Microsoft Windows machines have basic audit facilities but they fall short of fulfilling real-life business needs (i.e., monitoring Windows computers in real-time, periodically analyzing security activity, and maintaining a long-term audit trail). Therefore, the need exists for a log-based intrusion detection and analysis tool such as GFI LANguard Security Event Log Monitor (S.E.L.M.). This paper explains how GFI LANguard S.E.L.M.'s innovative architecture can fill the gaps in Windows' security log functionality - without hurting performance and while remaining cost-effective.

Jump to 1 2 3 4 5 6 7 [8] 9 10

Title	Date Added	Company
IBM Managed Security Services for security intelligence	2005-10-10 13:45:52
Help protect and defend IT assets with IBM security intelligence. Without credible threat analysis and security intelligence, your infrastructure has little-to-no defense against threats and attacks. IBM Managed Security Services can help you secure and defend your IT environment with security intelligence services. Get advanced warnings against imminent threats including where the next IT threat is likely to materialize. Be prepared, and help save your business from productivity loss, downtime, and costly disruptions.
Securing Critical Data and IT Infrastructure in Healthcare Environments	2005-03-28	3Com
The seemingly paradoxical demand in healthcare organizations today is increased availability and security. Without a defined security architecture in place this would truly be impossible. TippingPoint provides the solution to both availability and security with the TippingPoint IPS. TippingPoint is the industry's leading Intrusion Prevention System (IPS), unrivaled in security, performance, high availability, and ease-of-use. Unlike passive-mode Intrusion Detection Systems, the TippingPoint IPS operates in-line in the network, blocking malicious and unwanted traffic, while allowing good traffic to pass unimpeded.
Managing Peer-to-Peer Traffic in Network Environments	2005-08-04 03:00:01	3Com
In order for an IPS to provide network security and management of Peer-to-Peer applications in today's networks, the device must perform well on multiple fronts simultaneously. Specifically, the IPS must implement high precision filters, handle a heavily-loaded gigabit network with a full filter set enabled (no dropped packets), and with low packet latency. To date, TippingPoint's IPS is the only IPS shown to be capable of meeting these fundamental requirements.
A SAS Framework for Network Security Intelligence	2005-12-01 01:00:02
This paper presents a SAS-based framework that enhances the real-time data provided by point products and event correlation engines, provides a consolidated view of CND data in a historical context, and most important, improves an organization's understanding of the health of its computer networks. This paper details the key components of the framework: a centralized repository to integrate and manage all CND-related data, scalable storage architecture to efficiently handle extremely large volumes of data, and role-based interfaces to deliver critical CND information to the right consumers at the right time.
Beyond the Perimeter: Enterprise-wide Intrusion Prevention	2004-11-01	Q1 Labs
Intrusion Prevention Systems (IPS), a technology that evolved from firewalls and Intrusion Detection Systems (IDS), have never fully delivered the promised benefits. The technology presents significant challenges and limitations that leave major gaps in the network defenses. As IPS functionality is incorporated into switches and firewalls, standalone systems become effectively obsolete. This white paper addresses the problems and limitations of IPS devices and explains how they leave the network exposed. The paper discusses a new approach that leverages threat data from multiple sources and performs advanced behavioral analysis to provide an IPS that spans the enterprise. It fills in the gaps left by standalone IPS systems and provides a host of new benefits for both network and security administratorsat less cost and in a fraction of the deployment time.
Intrusion Detection and Cyber Security Monitoring of SCADA and DCS Networks	2005-02-17 04:01:01	Instrumentation, Systems, and Automation Society
Governments and industry organizations, including ISA, have recognized that Supervisory Control and Data Acquisition (SCADA), Distributed Control Systems (DCS), and other process control networks, referred to as SCADA networks in this paper, are potential targets of attack from hackers, disgruntled insiders, cyber terrorists, and others who want to disrupt the critical infrastructure. This paper describes how current intrusion detection and cyber security monitoring products and services used in IT enterprise networks can provide early identification of attacks from the most common threat agents.
Improving Security ROI Via an Integrated Application Security Solution	2005-08-04 03:00:01
Application Intelligence is a software-based technology that is aware of the protocol in use by an application and is fully aware of the actual and potential limitations of the protocol such that it can identify characteristics exhibited by an exploit. So if exploiting a perceived vulnerability requires coming through a certain firewall port and contains a payload larger than a certain size, the software can be tuned to look for traffic meeting those criteria. If such traffic is found, it can be dropped.
Next generation e-business solutions	2005-02-01	IBM
To compete in today's fast business environment, mid-size businesses are always looking for new ways to improve their mobile employees' productivity. With IBM Secure Wireless Networking Solutions for Cisco Systems, businesses can help translate technology investments into real business benefits. See how IBM can give you a competitive edge with highly secure wireless infrastructures, improved productivity, enterprise class security and easily deployed implementation.
Host and Network Intrusion Prevention: Competitors or Partners	2006-06-02 01:00:29	McAfee
Intrusion Prevention Systems are designed to protect information systems from unauthorized access, damage or disruption. Vendors have developed IPS to counteract the rapidly evolving threats presented by the latest generation of worms, software and network exploits. The need for access to these critical services has led to the development of redundant communication links, wireless networks, mobile notebook computers, handheld digital devices, even internet-enabled cellular phones. This paper will address the need for Intrusion Prevention Systems, will explore the two most popular IPS architectures and will try to provide insight into the selection and use of these systems.
How to Perform Network-Wide Security Event Log Monitoring	2005-01-31 08:49:50	GFI Software
Microsoft Windows machines have basic audit facilities but they fall short of fulfilling real-life business needs (i.e., monitoring Windows computers in real-time, periodically analyzing security activity, and maintaining a long-term audit trail). Therefore, the need exists for a log-based intrusion detection and analysis tool such as GFI LANguard Security Event Log Monitor (S.E.L.M.). This paper explains how GFI LANguard S.E.L.M.'s innovative architecture can fill the gaps in Windows' security log functionality - without hurting performance and while remaining cost-effective.

Security

Featured Whitepapers

Member Login

Webcast:

Enabling Telecom 2.0 with the next generation Service Delivery Platform

Featured Speakers

Oracle Technology Solutions for Midsize Businesses

Industry Report: Financial Services