Member Login

E-mail:    Password:  




 TitleDate AddedCompany
whitepaper Making VoIP Secure: Proactive Network Intrusion Prevention for Enterprises and Service Providers2009-05-01 McAfee
  This white paper takes a close look at security concerns associated with Voice over Internet Protocol (VoIP). It discusses how network architects can minimize the risks associated with converged networks by designing the network itself to include security as a key component. Ensuring network availability and quality of service are also important issues but are beyond the scope of this white paper.

Tags: Security Administration, Intrusion - Tampering		   
whitepaper Leverage IPS to Make Patch Tuesday Just Another Day2009-04-29 Check Point Software Technologies
  Responsible administrators struggle to patch in a timely fashion without disrupting their networks, but patching all of an organization's assets takes time. Server patches must be tested before deploying. Endpoint patching is further slowed by logistics, since administrators don't have direct possession or control of end-point devices and there may be a diversity of software versions. Administrators want to limit this vulnerable period between the availability and the complete deployment of the patch. This white paper discusses the inherent challenges of Patch Tuesdays, and the need for the complimentary, pre-emptive protections offered by Intrusion Prevention Systems (IPS). While patching is still necessary, an IPS can help make the process less disruptive and solve many of the security problems associated with patching delays.

Tags: Security Administration, Intrusion - Tampering		   
whitepaper Pronto.com Accelerates Online Shopping Applications with Crescendo Networks2009-04-27
  Pronto.com is the Web's fastest growing comparison shopping site, servicing more than 15 million users each month. With business growing rapidly, Pronto.com decided it was essential to upgrade load balancing capabilities, as peak traffic and other stresses were preventing the site from performing optimally. After testing both load balancers and application delivery controllers, Crescendo Networks AppBeat DC was selected. Since deploying the solution, Pronto.com has seen significant improvements in the speed and performance of the site, which has also contributed to a considerable increase in revenue.

Tags: IT Infrastructure, Workflow Management, Network Management, Intrusion - Tampering		   
whitepaper Using Static Analysis for Ajax Intrusion Detection2009-04-24 Association for Computing Machinery
  This paper presents a static control-flow analysis for JavaScript programs running in a web browser. The analysis tackles numerous challenges posed by modern web applications including asynchronous communication, frameworks, and dynamic code generation. The paper uses the analysis to extract a model of expected client behavior as seen from the server, and build an intrusion-prevention proxy for the server: the proxy intercepts client requests and disables those that do not meet the expected behavior. The paper inserts random asynchronous requests to foil mimicry attacks. Finally, the paper evaluates the technique against several real applications and show that it protects against an attack in a widely-used web application.

Tags: Intrusion - Tampering, Intrusion - Tampering		   
whitepaper File-System Intrusion Detection by Preserving MAC DTS: A Loadable Kernel Module Based Approach for LINUX Kernel 2.6.x2009-04-15 Association for Computing Machinery
  Every operating system has its own set of critical files, whose access is generally protected by access control mechanisms, native to the operating system. The importance of such files also simultaneously invites their inspection, unauthorized modification and tampering. So, the need for preserving the authenticity of these critical files along with tracking any unauthorized access to them demands paramount importance. This addresses the need of a good file-system intrusion detection system which is capable of monitoring and tracking any accidental, benign, malicious, intentional changes made to the files that reside in the file-system.

Tags: Intrusion - Tampering, Intrusion - Tampering		   
whitepaper Semi-Supervised Co-Training and Active Learning Based Approach for Multi-View Intrusion Detection2009-03-12 Association for Computing Machinery
  Although there is immense data available from networks and hosts, a very small proportion of this data is labeled due to the cost of obtaining expert labels. This proves to be a significant bottle-neck for developing supervised intrusion detection systems that rely solely on labeled data. In spite of the data being collected from real network environments and hence potentially holding valuable information for intrusion detection, such systems cannot exploit the remaining unlabeled data. In this work, one intelligently leverages both labeled and unlabeled data. Also, intrusion detection tasks naturally lend themselves into a multiview scenario, and can benefit significantly if these multiple views are combined meaningfully.

Tags: Security Administration, Intrusion - Tampering		   
whitepaper A Chipset Level Network Backdoor: Bypassing Host-Based Firewall & IDS2009-03-12 Association for Computing Machinery
  Chipsets refer to a set of specialized chips on a computer's motherboard or an expansion card. This paper presents a proof of concept chipset level rootkit/network backdoor. It interacts directly with network interface card hardware based on a widely deployed Intel chipset 8255x, and it tested it successfully on two different Ethernet cards with this chipset. The network backdoor has the ability to both covertly send out packets and receive packets, without the need to disable security software installed in the compromised host in order to hide its presence.

Tags: Security Administration, Intrusion - Tampering		   
whitepaper Cisco Security Troubleshooting: Part III - Intrusion Prevention Systems2009-03-11 Global Knowledge
  This paper is the third in a three-part series of white papers on Cisco security troubleshooting, each of which examines the challenge of implementing network security on equipment from Cisco Systems while maintaining the connectivity requirements of the business or enterprise. The focus of this third paper is primarily on troubleshooting the proper sensing operation of a signature-based Intrusion Prevention System (IPS).

Tags: Security Administration, Intrusion - Tampering		   
whitepaper The NitroGuard IPS Engine, From the Creators of In-Line SNORT (IPS)2009-03-06 NitroSecurity
  NitroSecurity has been developing innovations in intrusion detection and prevention, and security data management, since 2000, investing approximately 100 man-years of research and development into IPS technology - including the creation of the first Snort-based IPS, Snort-inline. Snort-inline, which was incorporated into SNORT in v2.2, was further enhanced by NitroSecurity, branching away from Snort to create a powerful, custom Intrusion Detection and Prevention engine: NitroGuard.

Tags: Security Administration, Intrusion - Tampering		   
whitepaper The Evolution of IPS: Intrusion Prevention (Protection) Systems Aren't What They Used to Be2009-02-23 Check Point Software Technologies
  Whichever solution works for the network, organizations must carefully compare IPS solutions from competing vendors to ensure that they are getting the desired level of security and performance. The Check Point IPS Software Blade, which integrates full IPS functionality into firewalls and other security enforcement points, is leading the way in integrated IPS. This solution was designed from the bottom-up to be a fully-functional integrated IPS offering multi-gigabit threat coverage. What's more, the Check Point IPS Software Blade provides strong protection and the ability to be deployed on existing security enforcement points. Check Point also offers both an integrated IPS (Check Point IPS Software Blade) and a standalone solution (Check Point IPS-1).

Tags: Security Administration, Intrusion - Tampering