|
|
|
SERVICES
|
|
Service Center
|
The security of a network is not something that ends at the end of a business day. Hackers work around the clock and from allover the globe. Therefore a network security needs to be monitored and managed 24 hours a day with no interruptions.
The worst problem with new threats today is that they propagate at a very high rate, and the chances of receiving a virus before your anti virus has run the next batch of updates are getting higher and higher. The expression zero day attack is unfortunately well known today, and protecting your network in those hours, if not minutes, from the start of a new attack, is crucial.
The Network Box is monitored and updated in real time, 24 hours a day, by a global network of Security Operations Centers. Our centers monitor the activity of the Internet, detect new threats in real time, and immediately release temporary patterns (just in time signatures) and filtering patterns, to reduce the impact of emerging viruses and threats.
|
|
Firewall
|
At the heart of the system, is a state-of-the-art network firewall. Firewalls have traditionally relied on a technique known as "static packet filtering", to protect network systems.
The firewall has built-in support for advanced networking features such as:
- Policy-based routing
- Multiple Redundant / Balanced Internet Links
- Traffic shaping and QOS control
- Network Address Translation
- Port / Address Forwarding
- Proxy-ARP transparency
|
|
Intrusion Detection and Prevention
|
|
While a firewall can provide good protection at a port and protocol level, there are times when a particular port or protocol must be opened and that will open your network up to attacks through that port.
|
|
Email Filtering
|
|
In the year 2000 65.5% of virus attacks were reported as email based. In 2002 this figure rose to almost 100%. The internet has removed the barriers and increased the speed of communications, but it has also provided an ideal platform for the spread of computer viruses. Today we don't even refer to these threats as viruses but rather as malware, a term which encompasses a wide range of threats, from viruses to Trojans, to dangerous spyware, rootkits, and so forth. The methods for delivering such threats are becoming every day more sophisticated, and the ideal separation between spam and malware is a line that is rapidly fading away. While in 2005 American Online estimated that spam was only 30% of the total number of emails to its members, this figure has rapidly increased to the point that for some of Network Box clients today we are seeing figures close to 90%. Spam is no longer only a nuisance, it has become a serious waste of resources and a threat in and of itself.
|
|
Web Filtering
|
|
In the USA it is a Federal Law that companies with 25 or more employees must provide a work environment free of gender, ethnic or racial harassment or discrimination. It does not matter whether the company was aware or not of its employees' behavior (downloading pornographic material, emailing racist jokes, etc.) The company needs to take 'reasonable" remedies to prevent such actions, issue policies, and enforce them.
|
|
Virtual Private Networking
|
|
Information sent over the Internet is not secure. Data that is sent across the Internet without being encrypted (scrambled) can be read by just about anyone. Most people do not realize that sending an email ensures no more privacy than sending a postcard.
|
|
General Technical Specifications
|
The Firewall operates at several layers:
|
Physical Layer
|
Separate network segments and inter-segment routing
|
|
IP Layer
|
Filtering by source/destination and protocol
|
|
Connection Layer
|
Connection tracking and filtering by connection
|
|
Protocol Layer
|
Specific filters for specific protocols
|
Standard firewalls will usually reject unauthorized traffic. Unfortunately, this gives out information to hackers on what is actually protected (as opposed to what is not available).
|
|
|
|
|
| |
|
|
|
|
Today, a network security system updated at this time yesterday has probably been vulnerable to attacks for over twenty-three hours. Few companies in the world have the time, equipment, budget or experienced IT personnel, to keep up with the level of security threats posed by the Internet today. Any network security system based only on sporadic updating is likely to be out of date, and therefore potentially useless, even before initial installation.
|
|
|
|
| |
|
