CloudShield
Careers Contact Us Support Login
English SiteJapanese Site
About Us Solutions Products Services Partners News Support


Home

Solutions
For Service Providers
For Government


Service Provider
DNS Protection
Peer-to-Peer Traffic Control
DDoS Attack Mitigation


Government
Cross Domain Solutions
IA Security Gateway
Related Documents


Document Library


Adaptable Information Assurance (IA) Security Platform 

Multi-Function

CloudShield's high-potential technology has helped us provide numerous innovative solutions for our government customers.

Jeff Steiner,
Northrop Grumman

Problem Statement:

US Government enterprise and war fighting networks are under constant digital attack by unstructured and structured threats. These attacks exploit an array of protocols and services using sophisticated tools and techniques not always anticipated by the defenders. Network security architectures and solutions deployed across these networks today are struggling to keep pace with changing network infrastructures, traffic volumes, and ever more sophisticated attacks. Moreover, organizational boundaries and control domains within these large organizations restrict what resources are available to the network operations, security center (NOSC), and emergency response teams when investigating or mitigating security incidents.

Current best practices for defense-in-depth include deploying individual appliances for each discrete security function required. However, as network security threats evolve and become more complex, the discrete function appliance model breaks down. Appliance functionality can quickly become out of date, appliances stack up causing un-needed network complexity, and each appliance brings its own management interface. And, for every new security appliance, there is an army of hackers discovering its vulnerabilities.

Solution Summary:

The IA security gateway solution is built on the CloudShield CS-2000 extensible packet processing platform, and consolidates many network defense functions into a single network device. It is designed to improve digital situational awareness, and improve reaction times to new vulnerabilities by leveraging industry standard intrusion signature formats. Additionally, the CloudShield IA security gateway solution integrates into existing security information management systems. The following functions are available for CloudShield IA security gateway solutions today:
  • High-speed signature-based intrusion detection and alerts (Snort rule format)
  • Selective full packet capture (libpcap format)
  • Selective and aggregate traffic flow information (NetFlow v5 data export)
  • Network traffic statistics (SNMP MIBS)
  • Passive network host OS and services fingerprinting (SQL, ODBC APIs)
  • High-capacity access control engine (Std. ACL format)

For a detailed discussion on how CloudShield IA security gateway solutions can improve the security posture of your organization. now and into the future, email the CloudShield Federal Team or call 1-408-331-6640.



Careers | Contact Us | Support Login | English | 日本語
Copyright © 2008 CloudShield Technologies. All rights reserved.