Security Tools - IT Library : ZDNet Asia

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

The Critical Importance of Three-Dimensional Protection (3DP) in an Intrusion Prevention System 2007-10-18 Top Layer Networks

Many companies also employ network intrusion detection systems (IDS), which inspect the network traffic and report their findings to log files and databases. IDS tools have been instrumental in providing forensics about attacks and in determining over time what areas of the network become compromised. While IDSs enable record-keeping, an alarm function, and eventual analysis and remediation, they do not stop or mitigate damage from malicious attacks in real time. An increasing number of organizations, therefore, are using network intrusion prevention systems in addition to other network security measures to mitigate information security risks. This is a generally positive development, as inline intrusion prevention systems with deep packet inspection capabilities are critical to protecting corporate networks.

Tags: Intrusion Detection Systems

Integrated Solution Simplifies Management, Improves Protection of Client Devices 2007-10-16 Microsoft Tips

Paul Smith, a designer and retailer of clothing and luxury goods, wanted a client security solution that would be easier to manage. The current solution had to be maintained separately, which conflicted with the company goal of a more streamlined, integrated IT environment. To improve efficiency, Paul Smith and Risual chose a solution based on Microsoft Forefront Client Security. Although still in the early stages of implementation, the company reports that integration with familiar tools like Microsoft Systems Management Server and Operations Manager are simplifying management. The IT team has better control over client security through detailed reporting and more effective administration of software and virus definition updates.

Tags: Email, Collaboration Tools

Food Company Improves IT Security System View and Management Using New Solution 2007-10-01 Microsoft Tips

Del Monte Foods, based in San Francisco, California, sells popular, premium-quality branded food and pet products throughout the United States. The organization's employees rely heavily on Microsoft Exchange Server 2007 and Microsoft Office SharePoint Server 2007 for messaging and collaboration. To better protect these environments, Del Monte deployed Microsoft Forefront Security for Exchange Server and Forefront Security for SharePoint. However, the company's small IT department needed a solution that would help it better manage those products. In June 2007, Del Monte implemented Microsoft Forefront Server Security Management Console. The company's administrators now have a better view of security and can more effectively manage the infrastructure. The solution also integrates with existing Del Monte software products and will help the company save time and improve protection.

Tags: Email, Collaboration Tools

CyberDefender AntiSpyware 2008 2.0 2007-09-19 CyberDefender

CyberDefender AntiSpyware remover and free AntiVirus remover protects against spyware, viruses, trojans, adware, spam, phishing and Internet identity theft. If your system is crashing, incredibly slow, filled with spam email, or covered with pop-up ads, you probably have spyware. CyberDefender protects PCs against new online attacks twelve times faster than the competition. This is a free spyware removal download. Try CyberDefender for FREE!

Tags: Intrusion Detection Systems, Spyware

Cisco Protects Data Center Assets With Network-Based Intrusion Prevention System 2007-08-01 Cisco Systems

To protect network availability and intellectual property, Cisco constantly monitors its network for a large assortment of threats, including insider threats, unauthorized access to data center assets, policy violations, such as privileged account logins with clear-text protocols, and botnets, which are used by miscreants and organized criminals for phishing and stealing intellectual property. They wanted to protect data center assets and avoid false positives and false negatives. Cisco deployed IPS in data centers, engineering server rooms, and offshore development centers. Network-based IPS enables them to detect and mitigate internal security events before users experience a secondary impact, such as a Cisco server attacking an outside server, service disruption, loss of intellectual property, or infection.

Tags: Data Center

Characterizing Intrusion Tolerant Systems Using a State Transition Model 2007-06-30 Duke University

Intrusion detection and response research has so far mostly concentrated on known and well-defined attacks. The authors believe that this narrow focus of attacks accounts for both the successes and limitation of commercial in Intrusion Detection Systems (IDS). Intrusion tolerance, on the other hand, is inherently tied to functions and services that require protection. This paper presents a state transition model to describe the dynamic behavior of intrusion tolerant systems. This model provides a framework from which one can define the vulnerability and the threat set to be addressed. The authors also show how this model helps one to describe both known and unknown security exploits by focusing on impacts rather than specific attack procedures.

Tags: Intrusion Detection Systems

LITEWORP: Detection and Isolation of the Wormhole Attack in Static Multihop Wireless Networks 2007-06-12 Purdue University

In multihop wireless systems, such as ad-hoc and sensor networks, the need for cooperation among nodes to relay each other's packets exposes them to a wide range of security attacks. A particularly devastating attack is known as the wormhole attack, where a malicious node records control and data traffic at one location and tunnels it to a colluding node far away, which replays it locally. This can either disrupt route establishment or make routes pass through the malicious nodes. This paper presents a lightweight countermeasure for the wormhole attack, called LITEWORP, which relies on overhearing neighbor communication. LITEWORP is particularly suitable for resource-constrained multihop wireless networks, such as sensor networks. This solution allows detection of the wormhole, followed by isolation of the malicious nodes.

SmartSiren: Virus Detection and Alert for Smartphones 2007-05-29 University of California

Smartphones have recently become increasingly popular because they provide all-in-one" convenience by integrating traditional mobile phones with handheld computing devices. However, the flexibility of running third-party softwares also leaves the smartphones open to malicious viruses. In fact, hundreds of smartphone viruses have emerged, which can quickly spread through various means such as SMS/MMS, Bluetooth and traditional IP-based applications. The implementations of two proof-of-concept viruses on Windows Mobile have confirmed the vulnerability of this popular smartphone platform. This paper presents SmartSiren, a collaborative virus detection and alert system for smartphones. In order to detect viruses, SmartSiren collects the communication activity information from the smartphones, and performs joint analysis to detect both single-device and system-wide abnormal behaviors.

Tags: Mobile - Wireless Communications

TechNet Webcast: Secure Application Publishing With Internet Security and Acceleration Server 2006 (Level 200) 2007-05-03 Microsoft

The presenter of this webcast explores how Microsoft Internet Security and Acceleration (ISA) Server 2006 and Microsoft Office Outlook Web Access (OWA) work together to provide enhanced security for e-mail messages. The presenter takes a closer look at how ISA Server 2006 and Microsoft Office SharePoint Portal Server 2003 enhance security for Windows SharePoint Services.

Tags: Email, Collaboration Tools

High-Performance Network Intrusion Detection Through Parallelism 2007-05-01 Purdue University

Network intrusion detection has become increasingly popular in recent years due to the proliferation of Internet-based security attacks. Network Intrusion Detection Systems (NIDS) inspect the content of incoming packets on a network for known attacks and alert the operator when they are found. Intrusion detection is computationally expensive, and this expense limits the inspection throughput for current implementations to substantially less than the Gigabit line rate for modern CPUs. This paper presents methods for increasing NIDS performance though parallel execution using the open-source Snort NIDS, both on commodity multiprocessor systems and as part of a hardware-accelerated programmable Ethernet network interface.

Tags: Intrusion Detection Systems

Jump to 1 [2] 3 4 5 6 7 8 9 10

Title	Date Added	Company
The Critical Importance of Three-Dimensional Protection (3DP) in an Intrusion Prevention System	2007-10-18	Top Layer Networks
Many companies also employ network intrusion detection systems (IDS), which inspect the network traffic and report their findings to log files and databases. IDS tools have been instrumental in providing forensics about attacks and in determining over time what areas of the network become compromised. While IDSs enable record-keeping, an alarm function, and eventual analysis and remediation, they do not stop or mitigate damage from malicious attacks in real time. An increasing number of organizations, therefore, are using network intrusion prevention systems in addition to other network security measures to mitigate information security risks. This is a generally positive development, as inline intrusion prevention systems with deep packet inspection capabilities are critical to protecting corporate networks. Tags: Intrusion Detection Systems
Integrated Solution Simplifies Management, Improves Protection of Client Devices	2007-10-16	Microsoft Tips
Paul Smith, a designer and retailer of clothing and luxury goods, wanted a client security solution that would be easier to manage. The current solution had to be maintained separately, which conflicted with the company goal of a more streamlined, integrated IT environment. To improve efficiency, Paul Smith and Risual chose a solution based on Microsoft Forefront Client Security. Although still in the early stages of implementation, the company reports that integration with familiar tools like Microsoft Systems Management Server and Operations Manager are simplifying management. The IT team has better control over client security through detailed reporting and more effective administration of software and virus definition updates. Tags: Email, Collaboration Tools
Food Company Improves IT Security System View and Management Using New Solution	2007-10-01	Microsoft Tips
Del Monte Foods, based in San Francisco, California, sells popular, premium-quality branded food and pet products throughout the United States. The organization's employees rely heavily on Microsoft Exchange Server 2007 and Microsoft Office SharePoint Server 2007 for messaging and collaboration. To better protect these environments, Del Monte deployed Microsoft Forefront Security for Exchange Server and Forefront Security for SharePoint. However, the company's small IT department needed a solution that would help it better manage those products. In June 2007, Del Monte implemented Microsoft Forefront Server Security Management Console. The company's administrators now have a better view of security and can more effectively manage the infrastructure. The solution also integrates with existing Del Monte software products and will help the company save time and improve protection. Tags: Email, Collaboration Tools
CyberDefender AntiSpyware 2008 2.0	2007-09-19	CyberDefender
CyberDefender AntiSpyware remover and free AntiVirus remover protects against spyware, viruses, trojans, adware, spam, phishing and Internet identity theft. If your system is crashing, incredibly slow, filled with spam email, or covered with pop-up ads, you probably have spyware. CyberDefender protects PCs against new online attacks twelve times faster than the competition. This is a free spyware removal download. Try CyberDefender for FREE! Tags: Intrusion Detection Systems, Spyware
Cisco Protects Data Center Assets With Network-Based Intrusion Prevention System	2007-08-01	Cisco Systems
To protect network availability and intellectual property, Cisco constantly monitors its network for a large assortment of threats, including insider threats, unauthorized access to data center assets, policy violations, such as privileged account logins with clear-text protocols, and botnets, which are used by miscreants and organized criminals for phishing and stealing intellectual property. They wanted to protect data center assets and avoid false positives and false negatives. Cisco deployed IPS in data centers, engineering server rooms, and offshore development centers. Network-based IPS enables them to detect and mitigate internal security events before users experience a secondary impact, such as a Cisco server attacking an outside server, service disruption, loss of intellectual property, or infection. Tags: Data Center
Characterizing Intrusion Tolerant Systems Using a State Transition Model	2007-06-30	Duke University
Intrusion detection and response research has so far mostly concentrated on known and well-defined attacks. The authors believe that this narrow focus of attacks accounts for both the successes and limitation of commercial in Intrusion Detection Systems (IDS). Intrusion tolerance, on the other hand, is inherently tied to functions and services that require protection. This paper presents a state transition model to describe the dynamic behavior of intrusion tolerant systems. This model provides a framework from which one can define the vulnerability and the threat set to be addressed. The authors also show how this model helps one to describe both known and unknown security exploits by focusing on impacts rather than specific attack procedures. Tags: Intrusion Detection Systems
LITEWORP: Detection and Isolation of the Wormhole Attack in Static Multihop Wireless Networks	2007-06-12	Purdue University
In multihop wireless systems, such as ad-hoc and sensor networks, the need for cooperation among nodes to relay each other's packets exposes them to a wide range of security attacks. A particularly devastating attack is known as the wormhole attack, where a malicious node records control and data traffic at one location and tunnels it to a colluding node far away, which replays it locally. This can either disrupt route establishment or make routes pass through the malicious nodes. This paper presents a lightweight countermeasure for the wormhole attack, called LITEWORP, which relies on overhearing neighbor communication. LITEWORP is particularly suitable for resource-constrained multihop wireless networks, such as sensor networks. This solution allows detection of the wormhole, followed by isolation of the malicious nodes.
SmartSiren: Virus Detection and Alert for Smartphones	2007-05-29	University of California
Smartphones have recently become increasingly popular because they provide all-in-one" convenience by integrating traditional mobile phones with handheld computing devices. However, the flexibility of running third-party softwares also leaves the smartphones open to malicious viruses. In fact, hundreds of smartphone viruses have emerged, which can quickly spread through various means such as SMS/MMS, Bluetooth and traditional IP-based applications. The implementations of two proof-of-concept viruses on Windows Mobile have confirmed the vulnerability of this popular smartphone platform. This paper presents SmartSiren, a collaborative virus detection and alert system for smartphones. In order to detect viruses, SmartSiren collects the communication activity information from the smartphones, and performs joint analysis to detect both single-device and system-wide abnormal behaviors. Tags: Mobile - Wireless Communications
TechNet Webcast: Secure Application Publishing With Internet Security and Acceleration Server 2006 (Level 200)	2007-05-03	Microsoft
The presenter of this webcast explores how Microsoft Internet Security and Acceleration (ISA) Server 2006 and Microsoft Office Outlook Web Access (OWA) work together to provide enhanced security for e-mail messages. The presenter takes a closer look at how ISA Server 2006 and Microsoft Office SharePoint Portal Server 2003 enhance security for Windows SharePoint Services. Tags: Email, Collaboration Tools
High-Performance Network Intrusion Detection Through Parallelism	2007-05-01	Purdue University
Network intrusion detection has become increasingly popular in recent years due to the proliferation of Internet-based security attacks. Network Intrusion Detection Systems (NIDS) inspect the content of incoming packets on a network for known attacks and alert the operator when they are found. Intrusion detection is computationally expensive, and this expense limits the inspection throughput for current implementations to substantially less than the Gigabit line rate for modern CPUs. This paper presents methods for increasing NIDS performance though parallel execution using the open-source Snort NIDS, both on commodity multiprocessor systems and as part of a hardware-accelerated programmable Ethernet network interface. Tags: Intrusion Detection Systems

Security

Featured Whitepapers

Member Login

Oracle Technology Solutions for Midsize Businesses

Country Insight: China