IBM Security Intrusion Protection System

Now the companies face the growing number of external security risks, such as purposeful attacks, worms, bots, attempts of invasions and phishing. On average, IT infrastructures of the companies are exposed to the attacks of 60000 times a day. Network attacks are aimed at vulnerabilities in systems, workstations and applications. They can break business operations and lead to losses of confidential and private information, causing to the companies financial damage.

In response to these growing threats IBM submits the new Intrusion Prevention System (IPS) system integrating means of an intrusion prevention with data protection and web applications in the uniform, optimized device for performance improvement and the accuracy of operations on security. This hardware device delivered with the set and configured software of IBM for security, expands possibilities of research group IBM X-Force ó area of effective management of network security at cost reduction.

Unlike the competing solutions, the new IBM Security Intrusion Protection System device allows the organizations to implement more complete approach to security, excepting the need for deployment of a set of point solutions. Using a single platform of the company can apply a set of means of ensuring of network security, including the technology of automatic update the politician of Virtual Patch allowing to detect and block network threats and also protection of applications on client side, data protection, protection of web applications and control of applications. Integrating all these opportunities in a single platform, IBM allows the organizations to provide protection of the networks more simply.

The emergency closing of the detected vulnerabilities requires unplanned idle times of systems, and the enterprise will remain under the threat until correction is not applied to all systems, workstations and applications. In spite of the fact that these vulnerabilities open opportunities for the attacks, in report IBM X-Force Trend and Risk Report on trends and risks of security risks in 2009 it is noted that 52% of vulnerabilities were not excluded by suppliers until the end of the year.

For example, more than in two years prior to detection of the famous net worm of Conficker researchers IBM X-Force выявили the probability of such attacks and released Virtual Patch correction, having provided preventive protection of systems and workstations of clients. For 61 most serious security risks in 2009 the group IBM X-Force выпускала required means of protecting on average in 340 days prior to the message about existence of vulnerability. The new solution of IBM is based on Virtual Patch technology, providing to clients direct access to the freshest updates of security protections allowing to block threats even before application of service packs from suppliers.

The new solution of IBM Security Network Intrusion Protection System (IPS) includes the following improvements:

• The improved security of network — more perfect protection against the attacks like zero-day for blocking of threats before they can cause damage.
• Protection of web applications — security protections for firewalls. Thanks to integration into the solution IBM Security AppScan, the IPS system can automatically generate special security policies for protection of web applications, proceeding from the vulnerabilities revealed using AppScan.
• Data protection — the updated means of protecting of data providing monitoring for the purpose of suppression of a release of confidential information out of limits of network.
• High-performance network devices — the processed platform which performance more than twice exceeds possibilities of devices of the previous generation. It allows the enterprises to reduce the number of the devices unrolled for protection of networks, ensuring safety of modern high-speed networks and applications with intensive use of network channels.
• Increase in convenience of using — the simplification of problems of deployment and daily management allowing the organizations is easy to execute routine transactions on safety.
• Protection and management for IPv6 — support of the new version of the communications protocol. This important improvement as more and more organizations require use of IPv6 as the industry standard worldwide.

The enterprises can independently unroll and support the solution IBM Security Network IPS, or charge this task to experts of service IBM Managed Security Services for reducing costs for security.

The Network Intrusion Protection systems are the devices of ensuring network security intended for protection of network and/or system transactions against malicious actions. The solution IBM Security Network Intrusion Prevention System already went on sale. For more information visit the web page.