The TippingPoint Intrusion Prevention System (IPS) delivers the most powerful network protection in the world. The TippingPoint IPS is an in-line device that is inserted seamlessly and transparently into the network. As packets pass through the IPS, they are fully inspected to determine whether they are legitimate or malicious. This instantaneous form of protection is the most effective means of preventing attacks from ever reaching their targets.
TippingPoint's Intrusion Prevention Systems provide Application Protection, Performance Protection and Infrastructure Protection at gigabit speeds through total packet inspection. Application Protection capabilities provide fast, accurate, reliable protection from internal and external cyber attacks. Through its Infrastructure Protection capabilities, the TippingPoint IPS protects VoIP infrastructure, routers, switches, DNS and other critical infrastructure from targeted attacks and traffic anomalies. TippingPoint's Performance Protection capabilities enable customers to throttle non-mission critical applications that hijack valuable bandwidth and IT resources, thereby aligning network resources and business-critical application performance.
The system is built upon TippingPoint's Threat Suppression Engine (TSE) - a highly specialized hardware-based intrusion prevention platform consisting of state-of-the-art network processor technology and TippingPoint's own set of custom ASICs. The TippingPoint ASIC-based Threat Suppression Engine is the underlying technology that has revolutionized network protection. Through a combination of pipelined and massively parallel processing hardware, the TSE is able to perform thousands of checks on each packet flow simultaneously. The TSE architecture utilizes custom ASICs, a 20 Gbps backplane and high-performance network processors to perform total packet flow inspection at Layers 2-7. Parallel processing ensures that packet flows continue to move through the IPS with a latency of less than 84 microseconds, independent of the number of filters that are applied.
The TippingPoint TSE architecture also enables traffic classification and rate shaping. Sophisticated algorithms baseline "normal" traffic allowing for automatic thresholds and throttling so that mission critical applications are given a higher priority on the network.
The TippingPoint IPS family offers a range of products that differ in capacity and the number of simultaneous segments they protect.
- TippingPoint 10
- TippingPoint 110
- TippingPoint 330
- TippingPoint 210E
- TippingPoint 600E
- TippingPoint 1200E
- TippingPoint 2400E
- TippingPoint 5000E
- TippingPoint 660N
- TippingPoint 1400N
- TippingPoint 2500N
- TippingPoint 5100N
- TippingPoint SMS (Enterprise-Level Management System)
- TippingPoint ZPHA (Zero Power High Availability)
The integral part of the TippingPoint solution is the Digital Vaccine ® Service. Developed by TippingPoint's world-renowned security researchers (DVLabs), the Digital Vaccine service delivers comprehensive security filters to TippingPoint Intrusion Prevention Systems to to pre-emptively protect against the exploit of new and zero-day vulnerabilities. These filters, created to block multiple attack variants on a single vulnerability versus a simple exploit, provide attack recognition accuracy without compromising network performance. Digital Vaccine updates are automatically delivered twice a week, or immediately when critical vulnerabilities and threats emerge. TippingPoint's "Recommended Settings" provide preconfigured policies to automatically and accurately block attacks without any tuning, significantly reducing the amount of time and resources required to protect and maintain a healthy network.
Fortinet intrusion prevention technology, available in all FortiGate® and FortiWifi™ platforms, can be installed at the network edge or at the network core to protect critical business applications from both external and internal attacks. Backed by the automatic, real-time updates delivered by the FortiGuard® Intrusion Prevention Service, FortiGate IPS technology combines a customizable database of thousands of known threats to stop attacks that evade conventional firewall defenses, plus anomaly-based detection that enables the system to recognize threats for which no signature has yet been developed. The combination of known and unknown threat prevention, plus tight integration with other Fortinet security technologies, enables FortiGate systems to stop the most damaging attacks at security check points regardless of whether the network is a wired, wireless, partner extranet, or branch office network connection.
Key Benefits
- FortiASIC™ processors accelerates intrusion prevention performance, enabling it to scale from SOHO appliances to multi-gigabit core network or data center platforms.
- Combined signature and protocol anomaly detection protects against known and unknown threats, with support for more than 1000 protocols and applications.
- Automatic updates of attack signatures from FortiGuard Intrusion Prevention Service keeps organizations ahead of the latest threats.
- Simple per-device/unlimited-user licensing delivers reduced total cost of ownership.
- Available centralized management and reporting reduce capital and operational expenditures for intrusion prevention.
- Detailed logging and reporting aid in auditing and forensic analysis.
- High-availability support for uninterrupted service.
- Available bypass modules on select FortiGate appliances provide an additional layer of network availability for mission-critical network segments.
IPS-1 provides the strong, robust, and dynamic security for which Check Point is known. In addition, IPS-1 features superior management tools that increase administrator efficiency and provide unique rapid-response mitigation. The highly intuitive IPS-1 centralized interface provides graphical management tools that allow a system administrator to quickly identify and act on threats to the network. IPS-1 management and enforcement are unified with the Check Point security architecture, so administrators can implement IPS defenses seamlessly across an entire network security infrastructure. Also, because of this unification, the familiar, intuitive Check Point interface helps reduce IPS-1 training costs and increase administrator effectiveness.
IPS-1 solutions are available as turnkey Check Point appliances and software-only versions that can run on open servers. Real-time security updates and advisories are provided by SmartDefense Services, which are supported by Check Point Research Centers around the globe.
Key Benefits
- Robust security: protect your network and business against increasingly sophisticated attacks and attack vectors
- Efficient management and compliance: overcome data overload, focus on what’s critical, and track compliance issues
- Flexible deployment: flexibility to meet ever-changing security needs