StoneGate IPS

The Stonesoft corporation, the developer of products in the field of network security and business continuity, announced that StoneGate IPS (intrusion prevention system) provides effective protection against the new critical vulnerabilities which are present at Adobe Flash Player, Adobe Reader and Adobe Acrobat and also vulnerabilities in products of Microsoft.

According to Adobe security advisory (the last update on June 10, 2010), the last vulnerability (CVE-2010-1297) can lead to failure and will allow malefactors to receive control over faulty system. Users are convinced to open the document in the PDF format which contains a malicious code. This code strikes the user's computer via the web browser and can cause serious damage. Now the high activity of the malware using this vulnerability in the products Adobe Flash Player and Adobe Reader and Acrobat is recorded.

Similarly and in products of Microsoft: the user is redirected on the web page which then uses vulnerability of Windows to help the program to get into the client's computer. After successful operation of vulnerability, the removed malefactor can execute any commands with the privileges of the user.

StoneGate IPS provides protection against both above-mentioned vulnerabilities. StoneGate IPS allows to identify and stop the attacks when the web page or the PDF document it is open and/or is loaded. A system can also limit email delivery which bears in itself the document in the PDF format as investments, or when reliable protection is required, can not allow loading of contents of Adobe Flash even. Thus, all clients of Stonesoft who use StoneGate IPS for protection of the networks are protected from the attacks of these vulnerabilities. It is worth noticing that the main protection gears were implemented at the beginning of 2009 and were directed to the whole class of vulnerabilities so at emergence of the attacks so-called protection of "Zero Day Protection" was already performed and users of this IPS just did not learn about these attacks.

The last Adobe and Microsoft of vulnerability - examples of the so-called "attacks to the client" which become more and more widespread phenomenon. Attacks on the client work great mischief especially as they can get via traditional firewalls and huge number of users "suffer" from these vulnerabilities. After successful penetration these vulnerabilities allow attacking to read and change any files and to abduct personal information, such as ID of users and passwords. Hosts subject to risk also usually integrate in a bot network. Usually such vulnerabilities are detected and used long before the corresponding patches are available so it is extremely difficult to protect hosts from similar attacks without external safety controls, such as StoneGate IPS".

Certification

In September, 2010 was objyavileno about the termination of a certification process of production of intrusion prevention systems with function of the StoneGate IPS firewall according to security requirements of information of FSTEC of Russia.

The received FSTEC certificate of Russia No. 2163 of 8/31/2010 certifies that the intrusion prevention system with function of the StoneGate IPS firewall is an information protection software and hardware, not containing the data which are the state secret, processed in computer networks with TCP/IP the protocol, from unauthorized access from external computer networks, and conforms to requirements of regulating documents "Computer aids. Firewalls. Protection against unauthorized access to information. Security indicators from unauthorized access to information" - on the 3rd class of security, "Protection against unauthorized access to information. Part 1. Information security software. Classification by the level of absence control of not declared opportunities" on the 4th level of control, specifications can be also used for creation of automated systems to a class of security 1G inclusive and also for data protection in personal data information systems up to 1 class inclusive.

2014: Prolongation of action of the FSTEC certificate

On March 31, 2014 it became known of prolongation of the FSTEC certificate of Russia on an intrusion prevention system with function of the StoneGate IPS firewall.

The validity of certificate of conformity No. 2163 is extended till August 31, 2016 and confirms that the solution StoneGate IPS of version 5.2.7, is an information protection software and hardware, not containing the data which are the state secret, processed on the local computer networks with TCP/IP the protocol, from unauthorized access from external computer networks, and computer aids conform to requirements of regulating documents ". Firewalls. Protection against unauthorized access to information.

Security indicators from unauthorized access to information" (State Technical Commission of Russia, 1997) – on the 3rd class of security, "Protection against unauthorized access to information. Part 1. Information security software. Classification by the level of absence control of not declared opportunities (State Technical Commission of Russia, 1999) – on the 4th level of control and specifications.