Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

SecoShield™

Product Version Certified: 3.1 for Windows 2000/NT
Certified for use with: Check Point NG

 
Product Description: Utilizing the most advanced technologies, SecoShield NG is the most intuitive and complete network-based intrusion detection and prevention solution on the market. SecoShield NG's tight integration with Check Point's FireWall-1® solves the challenges of interoperability and management complexity in a multi -vendor security network. It's flexibility and integration adds to the already powerful Check Point Next Generation security suite, and delivers the best-in-class IDS solution available.
   

Key Features and Benefits
OPSEC Integration

 INFOSEC Technologies
 
Company Description: Secos, founded in 1997, is dedicated to the development of effective, globally focused security and eCommerce technologies. We are committed to ensuring that our customers are provided with world-class technological support and services.

INFOSEC Technologies, based in Seoul, Korea, is focused on the development of best-of-breed Intrusion Detection and Response Systems (IDnR). The company's flagship product, T.E.S.S. (Trust Enterprise Security SuiteT) is marketed as SecoShieldT in North America.

 

 
Key Features and Benefits

Comprehensive Event Detection

  • Misuse Detection: One of the largest attack signature databases in the world
  • Anomaly Detection: Threshold, statistical, and protocol rules
  • Policy-Based Detection: Controls external and internal behavior
  • Stateful Inspection: Reassembles fragment packets to detect attacks
  • Customizable flood and port scanning detection

Quick, Easy and Accurate Interface

  • Intuitive central management through a windows-based console allows target-based control and policy-based detection permitting behavior control similar to an HIDS
  • Customizable signatures, live updates, and active response capabilities
  • Policy setting wizard
  • Easy integration with enterprise Network Management Systems (NMS)
  • Powerful, accurate, real-time reporting tools

Advanced Forensic Capabilities

  • Point and click access to raw packet data
  • Source, destination, and event details
  • Full session reconstruction

High Performance & Scalability

  • Supports multiple network interfaces
  • Single sensor can monitor multiple connections or segments
  • Modest sensor hardware and multiple interfaces can recognize sustained sensor monitoring performance in excess of 300Mbps
  • MAC level packet gathering and analysis for real-time network traffic analysis
  • Patented Fusion Detection Algorithm offers re-analysis that reduces false positives
  • Gigabit capable
  • Supports major Operating System (OS) environments
  • Real-time packet drop alerts and statistics
  • Multi-processor, multi-threaded engine
OPSEC Integration

SecoShield utilises multiple OPSEC Interfaces:

OPSEC CPMI allows SecoShield NG to securely access and import object information stored in the Check Point's central Objects and Policies database. With this interface, a security administrator only needs to define networks, groups, and objects once, at the firewall, eliminating redundancy and simplifying overall management.

OPSEC ELA enables the Check Point Management Console to become the central repository for all traffic events, monitoring, and analysis. Consolidated event management ensures suspicious activities are tracked and that corrective actions are taken by FireWall-1 to prevent malicious connections.

OPSEC AMON allows SecoShield to export real-time status information of both the Manager and the Sensor to the Check Point System Status Viewer.

OPSEC SAM enables SecoShield to communicate suspicious activities on a network to the FireWall-1 management server, which allows FireWall-1 to take specific preventive measures that can range from terminating the current session in progress or blocking new session attempts. SecoShield can also set dynamic and time-dependent policies at FireWall-1 to respond to specific attacks .