Trend Micro TippingPoint

2017

Announcement of TippingPoint TX

The Trend Micro company announced on November 13, 2017 availability of the solution Trend Micro TippingPoint TX with a high rate of capacity at prevention of threats. The product provides capacity at an intrusion prevention in 40 Gbps with a height in only one unit (1U).

Trend Micro TippingPoint 8200TX and 8400TX with XGen technologies are models in the TippingPoint Threat Protection System (TPS) family. With flexible model of licensing clients can easily be scaled and reach required performance level. All this is thanks to a possibility of "payment in process of growth" (pay-as-you-grow) and reassignment of the license for deployment of TPS without change of network infrastructure.

The TX series provides the integrated advanced protection, using and optimizing the analysis of threats thanks to Trend Micro Smart Protection Network (SPN) for detection and blocking of the known, unknown and hidden threats in real time and also now includes function of filtering of the URL addresses and control of transitions of users according to malicious URLs. Thanks to the Advanced Threat Analysis function the solution is also integrated with Deep Discovery and without delay announces suspicious objects, including the URL addresses which are analyzed and if necessary, are blocked. It guarantees to the enterprises due protection against the compromised and harmful websites worldwide, claim in Trend Micro.

Announcement Security Management System Threat Insights components

Trend Micro Incorporated announced in August Trend Micro TippingPoint Security Management System (SMS) Threat Insights with XGen Security technologies. This a component is designed to increase the level of awareness on the known and potential threats having an impact on corporate network.

SMS Threat Insights helps the enterprises to prioritize measures for response to the arising threats thanks to the operational analysis of the threats having an impact on corporate network and also identification of the most serious of them — those which deserve special attention.

SMS Threat Insights allows experts in network security:

• Define the compromised devices which are already infected or on which the attack — on the basis of the blocked or permitted access attempts is made;
• Be integrated with third-party vulnerability scanners, carry out data retrieveds via filters of service of digital vaccination Digital Vaccine to take adequate measures and to optimize protection level;
• Distinguish potential threats — those that are already classified as harmful and also on the basis of whether a suspicious object was blocked or not;
• Define whether any filters of service of digital vaccination Digital Vaccine for threats of zero day using exclusive these programs "Initiative of Zero Day" worked (Zero Day Initiative, ZDI). It allows to provide protection against vulnerabilities and protection against threats of zero day for the hidden vulnerabilities before the publication of corrections by the developer.

The companies can automatically block the known and hidden vulnerabilities in corporate network, using an intrusion prevention system of the next generation (NGIPS) of Trend Micro TippingPoint. NGIPS-платформа TippingPoint can automatically send indicators of a compromise (IOCs) to SMS Threat Insights. Then a component will define whether the compromise indicator is harmful, coordinating the actions with TippingPoint Advanced Threat Protection Analyzer for the careful analysis and protection of sandboxes, without change the politician or network infrastructure of the company.

In the whole SMS Threat Insights increases the level of awareness of the companies on the vulnerable and protected servers thanks to the existing integration with third-party vulnerability scanners. The solution Enterprise Vulnerability Remediation (eVR) allows clients to provide the necessary level of transparency to optimize a status of information security within all organization. It is reached at the expense of an opportunity to import data of vulnerability scanners to TippingPoint Security Management System and to hold them via filters services of digital vaccination Digital Vaccine that then without delay to take the necessary measures.

SMS Threat Insights will help our clients to create general idea about security status of their corporate network and will allow them to define priority response measures imperceptibly — Don Closser, the vice president of Trend Micro and the general manager of Trend Micro TippingPoint comments. — Thanks to further integration of our advanced solutions — TippingPoint NGIPS with Advanced Threat Protection — we will help our clients to optimize network protection against the known, unknown and hidden threats by means of complex measures for protection.

Prolongation of the certificate of conformity of FSTEC No. 3232

In June, 2017 Trend Micro was announced prolongation of certificate of conformity No. 3232 (it is issued to FSTEC of Russia on September 12, 2014, the validity is extended till September 12, 2020) on the hardware and software system Trend Micro TippingPoint of the N and NX series with the TOS operating system by version 3 and a SMS management system version 4.

Results of certification tests confirmed that the hardware and software system Trend Micro TippingPoint of the N and NX series with the TOS operating system version 3.9.0 and a management system of Security Management System version 4.5.0 is the information protection software and hardware which is not containing the data which are the state secret, implementing functions of an intrusion detection system of level of network and also "The profile of protection of intrusion detection systems of level of network of the fourth class of protection" conforms to requirements of the documents "Requirements to Intrusion Detection Systems" (FSTEC of Russia, 2011) (FSTEC of Russia, 2012). The certificate is issued on the basis of results of the certification tests which are carried out by testing laboratory JSC SINKLIT.

The TippingPoint NGIPS system is a part of the solution Trend Micro Network Defence and provides comprehensive protection against sophisticated and difficult detectable attacks to data centers and distribution corporate networks. The platform uses statistical techniques of machine learning that, on certain signs, on the basis of the taken network data, in real time to make decisions on whether network traffic is infected or not. The TippingPoint NX series helps to reduce costs of time for administration and to place priorities on security using the solution Enterprise Vulnerability Remediation (eVR) which allows clients to import data of vulnerability scanners to TippingPoint Security Management System, to hold them via filters services of digital vaccination Digital Vaccine® and without delay to take measures.

The structure of Trend Micro TippingPoint includes XGen Security

On February 13, 2017 Trend Micro Incorporated announced updating of technology of network protection of Trend Micro TippingPoint using XGen Security technologies.

Trend Micro implemented the patented machine learning technology of NGIPS in an intrusion prevention system of Trend Micro TippingPoint.

TippingPoing NGIPS is a part of the solution Trend Micro for network protection which, in combination with protection against threats, is optimized for prevention of the purposeful attacks, the blockings of the threats and malware implemented or extending in data centers and corporate networks. Now a system uses XGen Security technologies which represent a combination of technologies of protection of different generations, specially developed for client platforms and applications and also complemented with the system of detection of threats.

Security of corporate network is an important part of the joint protection against threats which also should include protection of servers and end devices. In process of growth of business the need for solutions which provide end-to-end controllability in any user environments increases and, at the same time, exchange data on threats on all levels of protection. Steve Quane, executive vice president and director of the products Trend Micro TippingPoint

NGIPS Trend Micro TippingPoint uses statistical models of machine learning that on the basis of the taken network data, in real time to make the decision on whether network traffic is harmful or not. TippingPoint NGIPS also applies machine learning technologies to determination and blocking of the known and unknown types of malware which use algorithms of generation of domains (Domain Generation Algorithms, DGAs) to create domain names for command servers.

Feature of Trend Micro technology for network protection - anticipatory prevention of threats and availability of protection to many known and still undetected vulnerabilities. The Initiative of Zero Day project (ZDI) provides clients with exclusive data on undetected vulnerabilities that allows to provide their protection, on average, within 57 days, before the publication of correction by the developer. Consolidation of information of TippingPoint Digital Vaccine Labs (DVLabs) and data collected by the Smart Protection Network platform for the analysis of threats provides unique information on threats in corporate network in real time. These data are transferred to the system of collecting and correlation of events (Security Information and Event Management, SIEM), to other technological solutions Trend Micro and products of the third parties.

TippingPoint 7600NX

On January 16, 2017 the Trend Micro Incorporated company announced release of a HSS of TippingPoint NX with capacity in 100 Gbit / c and the minimum delay of TippingPoint 7600NX. The technology is developed for security of data centers and corporate networks with high requirements to performance.

Problems of a system - protection of critical infrastructure, data and vulnerable applications in real time.

TippingPoint 7600NX, (2016)

7600NX provides data centers with the complete solution for data protection. A system uses a combination of technologies as Deep Packet Inspection, technologies of check on existence of threats and the analysis of malware, for detection and prevention of the attacks on infrastructure of data processing centers.

The clients consuming large volumes of traffic need effective solution which will help to understand on what threats it is necessary to focus first of all. High performance of our solution with capacity in 100 Gbit / c and also availability of exclusive data on the hidden vulnerabilities which were obtained thanks to the Initiative of Zero Day program (ZDI) provide reliable prevention of threats in real time, from the moment of detection of vulnerability to an exit of the corresponding patch. Don Closser, vice president of Trend Micro and manager of TippingPoint

The TippingPoint NX series helps to reduce costs of time for administration and to place priorities on security using the solution Enterprise Vulnerability Remediation (eVR) which allows clients to import data of vulnerability scanners to TippingPoint Security Management System, to hold them via filters services of digital vaccination Digital Vaccine and without delay to take measures. Such analysis of threats provides the transparency level necessary for optimization of a status of information security within all organization.

2014

On April 15, 2014 the Hewlett-Packard company announced new generation of devices of network security of HP TippingPoint. Solutions for network security of HP TippingPoint there is Next Generation Intrusion Prevention System (NGIPS), provide flexible and modular protection for applications, networks and data against the modern widespread attacks.

Main Functions

• Protection of physical, virtual and cloud networks and also traffic between applications;
• Comprehensive protection from threats by means of data from the advanced researches HP DVLabs conducted by the international group of experts;
• Access on a basis the politician.

Products of the line of HP of TippingPoint Next Generation Intrusion Prevention System (NGIPS) - high-quality breakthrough in the direction of protection against threats. Providing new functionality of security of level of applications in a combination with ensuring awareness of users and opportunities of a research of contents of the entering / outbound traffic, the product NGIPS dynamically protects applications, network and data from new and advanced threats.

Contents supervision provides prevention of distribution of the malware by studying of the entering and outgoing communications regarding content and executable code, giving an opportunity for identification and blocking of harmful traffic which can perform contact with servers of management and control and also to try to steal the user information.

The flexible engine easily integrates new services from research laboratory Digital Vaccine Labs, such as AppDV, WebAppDV and RepDV to guarantee protection against new types of threats. New technicians of protection are dynamically integrated into the product NGIPS, providing protection of investments and decrease in capital investments.

Support of the solution

The HP TippingPoint series represents industry-leading researches of logic with the assistance of research laboratory Digital Vaccine Labs. The DVLabs command defines, develops and provides services of security NGIPS, including Reputation DV, Application DV, Web Application DV, Digital Vaccine Toolkit and service of filtering Digital Vaccine. In a combination with HP TippingPoint Security Management System (SMS) and the portal of security ThreatLinQ, the client receives permanent transparency in the environment saturated with threats, the best control of politicians, the best device management, higher level of security of network.

Certificate of conformity to "Requirements to intrusion detection systems" of FSTEC of Russia

In September, 2014 announced HP that the solution in the field of ensuring cybernetic security of HP TippingPoint received the certificate of conformity to "Requirements to intrusion detection systems" (FSTEC of Russia of 2011) and "A profile of protection of intrusion detection systems of level of network of the fourth class of protection" (FSTEC of Russia of 2012).

The received certificate on HP TippingPoint and SMS No3232 of 9/12/14 (NDV-4, SOV-4, 1G, ISPDN-1) certifies that the solution is an intrusion detection system with the built-in means of protecting from unauthorized access to information which is not containing the data which are the state secret and conforms to requirements of regulating documents: "Protection against unauthorized access to information. Part I. Information security software. Classification by the level of absence control of not declared opportunities" (State Technical Commission of Russia, 1999) — on the 4th level of control. To requirements to the intrusion detection systems approved by the order of FSTEC of Russia of December 6, 2011 No 638 – on the 4th class of protection it can also be used during creation of automated systems to a class of security 1G inclusive according to requirements of the regulating document "Automated systems. Protection against unauthorized access to information. Classification of automated systems and the requirement for data protection" (State Technical Commission of Russia, 1992) and also for data protection in ISPDN up to 1 level inclusive.

HP TippingPoint Advanced Threat Appliance

On October 15, 2014 provided to HP an esheniye in the field of protection against cyberthreats within the HP Protect conference - HP TippingPoint Advanced Threat Appliance.

HP TippingPoint Advanced Threat Appliance (ATA) is a product family for operational counteraction to cybercriminals, generic collection of mechanisms of recognition of network threats.

In the solution an extensive set of means of recognition of difficult security risks of network, counteraction by it and decrease in damage is implemented. Static and dynamic methods of the analysis and also the behavioural analysis are for this purpose applied. The developed means of recognition and the analysis of threats along with the automated counteraction mechanisms provided in new solutions of HP allow to neutralize effectively the attack at its beginning.

The systems of HP of Tipping Point Next-Generation Intrusion Prevention System (NGIPS), HP TippingPoint Next-Generation Firewall (NGFW) and HP TippingPoint Security Management System (SMS) help to solve these problems — they help to stop quickly distribution of the malware on network. The data on threats collected at the same time are used for prevention of the further attacks.

In addition the filters prepared by specialists of HP of TippingPoint Digital Vaccine (DV) Labs help to strengthen the protection offered by HP solutions of TippingPoint ATA.

Trend Micro signed the agreement on strategic OEM partnership with HP

On December 17, 2014 the Trend Micro company signed the agreement on strategic OEM partnership with HP company. The partnership purpose — to help the organizations to fight against modern purposeful threats and malware. Products of HP TippingPoint Advanced Threat Appliance (ATA) will use possibilities of Trend Micro Deep Discovery to provide to customers single integrated solution for detection of threats. The solution reveals, blocks and neutralizes malware, applying static, dynamic and behavioural techniques that protects confidential corporate data from a compromise.

Description

HP TippingPoint is solutions for network security (HSS). HP Tipping Point is a full range of the solutions for network security intended for prevention of relevant threats of new generation which the enterprises face. It is an innovative intrusion prevention system (IPS) which is integrated into main system and in real time blocks the known, unknown and just appeared (zero-day) of vulnerability. Solutions on network security of HP TippingPoint provide flexible and modular protection for applications, networks and data against the modern widespread attacks.

Main Functions:

• Protection of physical, virtual and cloud networks and also traffic between applications.
• Comprehensive protection from threats by means of data from the advanced researches HP DVLabs conducted by the international group of experts.
• Access on a basis the politician.