InvGUARD

invGUARD is a monitoring system and the analysis of traffic of data networks with a possibility of detection of the attacks which do not have accurately expressed signatures directed to failure in service (DDoS attacks) and protection against them. The product is developed to the companies of Inoventica Technologies LLC (Inoventica Technologies brand), included in the Unified register of the Russian programs for electronic computers and databases.

The invGuard system provides monitoring of network traffic, detection of anomalies and suppression of the attacks from a TCP/IP protocol stack, network to the application layer, has no impact on legitimate traffic.

invGuard is the scalable platform for ensuring protection of networks with capacity to 600 Gbps, is placed in multiservice convergent networks of telecom operators or big customers, gives unique opportunities on visualization of structure of network and the main traffic flows, traces keyword parameters of network functioning and makes high-speed cleaning of traffic of harmful influences.

The product helps customers to protect own networks or the selected segments of networks, infrastructure and application services for increase in availability and fault tolerance, improvement of quality of providing services, failure prevention in service from network infrastructure.

Scheme of interaction

invGuard AS - The analyzer is used for identification of such types of the attacks in network traffic and detects anomalies and harmful influences on the basis of special algorithms and heuristic methods.

Identification and blocking of harmful influences happens without influence on legitimate traffic to consumers in network for this purpose methods are used: black lists, change of rules of access, change of routes of traffic and use of filters. The analyzer defines a method of suppression of the attack and if necessary redirects traffic on

invGuard CS - Cleaner. Cleaner authorization, shaping, blocking of "podvisshy" sessions, detection of zombie and others applies the innovation algorithms of cleaning of traffic, including TCP-. Protection can be the automatic, and activated by the operator system, or can be complex in case of protection against the difficult attacks.

Monitoring and measurement of network traffic

The invGuard system stores statistics of traffic of controlled network, combining with a logical structure of network. Traffic flows are analyzed on a set of the cuts including information from TCP/IP stack and BGP attributes. A system uses algorithms of modeling of processes of detection and intellectual suppression of anomalies, studies normal traffic and behavior of routing between routers and interfaces of network of the telecom operator, and correlates traffic samples with data on network topology.

A system provides more than 250 reports practically on any cuts.

Diagram of invGuard

Optimization of network

The accumulated information on routes of passing of traffic allows to perform optimization of an inner pattern of network and interaction between networks: traffic types, level of loading of channels, the sizes of the transferred packets in the different directions of traffic and other statistical data.

A system underwent certification in Rossvyaz No. OS-5-SU-0388

2018: Integration with NeuroDAT SIEM

Inoventica Technologies companies (Inoventica group) and "Center of Security of Information" (CSI) in March, 2018 completed integration of a system of protection against network attacks of invGUARD and information security monitoring system of NeuroDAT SIEM.

Developed Inoventica Technologies the invGUARD system are intended for detection and suppression of the network attacks directed to failure in service (DDoS attacks) and also for condition monitoring of data networks. Features of invGUARD is centralized operation, a possibility of blocking of DDoS attacks both in automatic, and in semi-automatic the modes and also the high performance and a scaling option allowing to use it including on large data networks of federal importance.

The solution NeuroDAT SIEM developed by "The center of security of information" allows to collect from different sources, to accumulate and analyze information on cybersecurity events. A system automates processes of response to incidents and also provides interaction of administrators with the employees providing elimination of violations.

During integration the connector which provides transfer of events about the DDoS attacks detected by the invGUARD system in NeuroDAT SIEM under the SYSLOG protocol was developed. Events are transferred in the mode close to real time that allows the staff of Information Security Services to react to them quickly.

In NeuroDAT SIEM all events are automatically categorized and displayed in the single console that facilitates daily work of system administrators and optimizes it.

2017: Creation of regional Competence Center on implementation of invGUARD in Havana

Inoventica Technologies, the Russian producer of systems and solutions in the field of protection of network infrastructure against cyber attacks, and the Cuban company Softel entering into group in information technology field and communication of the Republic of Cuba (GEIC) expressed on November 7, 2017 the intention to create in Havana the Latin American regional Competence Center on implementation of the Russian system of protection against network attacks of invGUARD. Bilateral signing of the partnership agreement took place on November 3, 2017.

Representatives of Inoventica Technologies and Softel after agreement signature

According to the document, the Cuban integrator Softel will become the distributor of the solutions Inoventica Technologies and, since 2018, will advance the invGUARD system in the Latin American market. The term of the distribution agreement is 3 years. Commercial conditions of the contract do not reveal.

According to Inoventica Technologies, marketing researches showed that the market value of the invGUARD system is from 4 to 10 times lower than the cost of its American analog. In absolute digits the cost of one system of protection against DDoS attacks of Inoventica Technologies will be from $80 thousand depending on a configuration.

As of November, 2017 the invGUARD system is implemented in infrastructure of the Ministry of communications of the Republic of Cuba and performs permanent monitoring of events of security in infrastructure of the Ministry for the purpose of identification of incidents of security (anomalies). The system configuration of invGUARD set in the Ministry of communications of the Republic of Cuba is capable to analyze up to 6 Tbit / from the missed information.

In turn, the head company of the Inoventica "Communications for Innovations" group during the official visit to Cuba in September, 2017 signed the distribution agreement with Softel according to which it will advance in the Russian market and the markets of the third countries the platform of control automation developed by the Cuban company Integro virtualization.

Together with the Cuban colleagues we developed the plan for completion of the platform of automation of Integro which implementation will allow to expand considerably functionality of the platform regarding virtualization of graphic processors and to occupy an essential share in the corresponding product market — Vitaly Slizen, the CEO of Inoventica said.

2016: Demand growth

The increasing demand for the solution on protection against DDoS attacks developed by Inoventica Technologies is recorded by confirmation of what triple increase in number of installations of a system of protection against network attacks of invGUARD is. By the end of the reporting period the number of commercial installations of the invGUARD system was 28. The total amount of the traffic analyzed in the moment exceeded 10 Tbit / page. For comparison, all international information exchange of Russia is estimated on different sources from 6 to 15 Tbit / page.