Quantcast
 
Search for: Search what?
Nov 22, 2008  
 Sections
Latest New Product News
Industrial Market Trends
Association & Government News
Adhesives and Sealants
Agricultural and Farming Products
Architectural and Civil Engineering Products
Automatic ID
Chemical Processing and Waste Management
Cleaning Products and Equipment
Communication Systems and Equipment
Computer Hardware and Peripherals
Construction Equipment and Supplies
Controls and Controllers
Display and Presentation Equipment
Electrical Equipment and Systems
Electronic Components and Devices
Explosives, Armaments and Weaponry
Fasteners and Hardware
Fluid and Gas Flow Equipment
Food Processing and Preparation
Health, Medical and Dental Supplies and Equipment
HVAC
Labels, Tags, Signage and Equipment
Laboratory and Research Supplies and Equipment
Lubricants
Machinery and Machining Tools
Material Handling and Storage
Materials and Material Processing
Mechanical Components and Assemblies
Mechanical Power Transmission
Mining, Oil Drilling & Refining
Mounting and Attaching Products
Non-Industrial Products
Optics and Photonics
Packaging Products & Equipment
Paints and Coatings
Plant Furnishings and Accessories
Portable Tools
Printing and Duplicating Equipment
Retail and Sales Equipment
Robotics
Safety and Security Equipment
Sensors, Monitors and Transducers
Services
Software
Test and Measuring Instruments
Textile Industry Products
Thermal and Heating Equipment
Timers and Clocks
Transportation Industry Products
Vision Systems
Waste Handling Equipment
Welding Equipment and Supplies
 Press Releases
Products in the News
Company News
Mergers & Acquisitions
People in the News
Literature & Websites
 Resources
News Delivery Options
Browse Categories
Browse Companies
Mobile Edition
PR Resources
Licensing
Advertising
How to Write an effective Press Release
Trade Associations
Small Business Support
MEP
Advertisement

Firmware protects against Kaminsky DNS exploit.


October 7, 2008 - Intrusion Prevention System (IPS) firmware virtually eliminates threat of Domain Name Server (DNS) Cache Poisoning when combined with existing DNS patch. While able to actively detect and block DNS exploit while still allowing the DNS to function properly, solution also includes components for rate/threshold-based signatures, blacklisting, and stateful firewall functions, components that promote protection for DNS servers.
 See related product stories
Software manages SIM card content.
Software helps dealers comply with FTC Red Flag Rule.
Software offers governance, risk, and compliance management.
Email Archiving Software works with MS Exchange server.
Software provides secure access of documents via web browser.
 See more product news in:
Software
 Tools for you
del.icio.us DIGG  
Facebook Reddit
StumbleUpon  
Print This Page E-Mail Story
Watch_Company  Save Story
Contact company
Company web site 
More news from this company

Advertisement
More Tools and information
Search for suppliers of
Data Security Software
Join the forum discussion at:
 Engineers Lounge
 Newsletters
Your Gateway to a Fast Changing World
Product News Alerts
Receive similar stories and other customized news to keep you in the know on the products shaping industry.
Subscribe Free Today
Subscribe   View Sample
Industrial Market Trends
Has Got It
  • Latest developments
  • Trends
  • Best practices
  • Opinions & Commentary
Get Ahead. Get IMT.
Subscribe Free Today
Subscribe   View Sample
 See more related product stories:
Software protects against website image theft.
Authentication Software protects Mac data and applications.
Software cleans up all Internet tracks.
Software Plug-In identifies security vulnerabilities.
Email Security Software adapts to evolving threats.
Identity Fraud Risk Software protects Internet transactions.
Software password-protects folders in Windows.
Software provides web application security scanning.
Software offers content security for 1-way pay-TV networks.
Email Security Software offers spam and virus protection.
Hosted Antivirus Service can be customized for channel.
Software aligns IT and business to achieve compliance.
Software aids cross-platform identity/access management.
Software offers PKI-based authentication solution.
PKI Device provides 2-factor strong authentication.
Software proactively addresses secure access management.
Driver secures data in third-party POS systems.
Software meets password management challenges of SMBs.
Network Appliance provides data leakage prevention.
Software offers backup and recovery for MySQL.


NitroSecurity Releases New Defense for Domain Name Server (DNS) Cache Poisoning Threat


Intrusion Prevention System (IPS) Firmware Upgrade Proves Virtually 100 Percent Effective in Blocking 'Kaminsky' Exploit when Combined with DNS Patch

PORTSMOUTH, N.H., Sept. 23 -- NitroSecurity, Inc. (http://www.nitrosecurity.com/), a leading provider of network and information security solutions, today announced that it has developed a unique IPS solution that virtually eliminates the threat of DNS Cache Poisoning. Through research with the Rochester Institute of Technology (RIT), NitroSecurity demonstrated that its IPS, combined with the DNS server patch, provides protection against the exploit that is nearly 100 percent effective.

The DNS exploit presents a challenge in regard to protection. Simply blocking the vulnerability via a standard IPS detection signature would prevent access to the DNS altogether. Therefore, it is crucial to have a broad solution that not only blocks the exploit, but does not compromise the functionality of the DNS. Working with RIT, NitroSecurity has validated a solution to actively detect and block the DNS exploit while still allowing the DNS to function properly.

Recently, the DNS exploit gained widespread industry attention when Dan Kaminsky presented on the topic at this year's Black Hat Conference in Las Vegas. If successfully executed, the exploit represents a massive security threat. Although a patch has been released, DNS servers can still be easily compromised over a short period of time. NitroSecurity's research with leading experts puts the risk at 10 percent within a week's time and 37 percent within a month. For those organizations that are unable to apply a DNS patch, the research also validates that utilizing the upgraded NitroSecurity IPS solution without the DNS server patch provides similar protection as using the patch alone.

"In our rigorous testing, we found that the solution to the DNS problem is to provide secondary measures, in addition to the current patch, to reduce the chances of exploitation," said Bill Stackpole, assistant professor, Rochester Institute of Technology. "In the specified test environment a successful DNS attack without the NitroSecurity IPS in place took approximately four minutes to exploit. With the IPS in place the attack continued for more than 24 hours without a successful exploit."

"The recent attention the DNS vulnerability has garnered is highly important since companies need to know it's out there and how they can protect against it. IPS solutions are widely deployed throughout the industry to combat many vulnerabilities," said Michael Leland, chief technology officer, NitroSecurity. "However, the DNS exploit requires more than just a signature-based IPS solution. Nitro's IPS is capable of rate/threshold-based signatures, blacklisting and stateful firewall functions -- all components that, when used in conjunction, can dramatically improve the protection for DNS servers."

The NitroSecurity IPS solution is currently available. A firmware upgrade is available for existing customers. For more information please contact NitroSecurity at (800) 795-4771 or visit http://www.nitrosecurity.com/. NitroSecurity will be hosting a Webinar to provide further details on the DNS exploit and available solutions on September 25, 2008 from 1:00 - 2:00 p.m. EDT. To register, please go to https://www1.gotomeeting.com/register/243976897 .

To download NitroSecurity's Whitepaper on the DNS exploit and available solutions go to http://nitrosecurity.com/media/whitepapers/. You can also view Chief Technology Officer Michael Leland's recent DNS blog posting on the SIEMBlog at http://siemblog.com/?p=10 .

About NitroSecurity

NitroSecurity is the leading supplier of information security products that protect business information and infrastructure -- Edge-to-Core. NitroSecurity solutions reduce business risk exposure and increase network and information availability by monitoring, protecting and alerting organizations about suspicious or harmful network activities from inside or outside the enterprise. Utilizing the industry's fastest analytical tools, NitroSecurity will identify, correlate and remediate threats in minutes instead of hours, allowing organizations to quickly mitigate risks to the organization's information and infrastructure.

NitroSecurity serves more than 500 enterprises across many vertical markets, including healthcare, education, financial services, government, retail, hospitality and managed services. For more information, please visit http://www.nitrosecurity.com/.

CONTACT: Frank Hayes of NitroSecurity, +1-603-570-3909, fhayes@nitrosecurity.com; or Rachel Miller of SHIFT Communications for NitroSecurity, +1-617-779-1856, nitrosecurity@shiftcomm.com


Contacts:

Public Relations:
SHIFT Communications
Rachel Miller
USA
Phone: 617-779-1856
Send email  E-mail this person

General Information:
Frank Hayes
USA
Phone: 603-570-3909
Send email  E-mail this person
Company Information:
Name: NitroSecurity, Inc.
Address: 230 Commerce Way
City: Portsmouth
State: NH
ZIP: 03801
Country: USA
Phone: 603-766-8160
http://www.nitrosecurity.com

More New Product News from this company:
Appliance delivers unified security management.


[Get Copyright Permissions]
Click here for copyright permissions!
Copyright 2008 Thomas Publishing Company
Category Advertisements
Newsroom Advertisers

Industrial Vacuum Cleaners from VAC-U-MAX. Field Proven for over 50 years.
"Click here for a FREE Fairloc catalog D242 or download from the web."
"Click here for a FREE Fairloc catalog D242 or download from the web."
http://www.rhhfoamsystems.com
Versi-Foam- portable systems come ready to use.
Home  |  My Newsroom  |  Industrial Market Trends  |  Submit Release  |  Advertise  |  Contact NewsRoom  |  About Us
Brought to you by Thomasnet.com        Browse ThomasNet Directory

News provided by ThomasNet Industrial Newsroom® (TIN). TIN is a comprehensive source of new and timely product information in the industrial marketplace. TIN supplies new product information to the web sites, e-marketplaces and print publications that serve the industrial marketplace. For press release submissions please go to http://news.thomasnet.com/submitpr.html. BY ACCESSING, BROWSING AND/OR USING THIS WEB SITE AND/OR ANY WEB SITES PROVIDED BY ProductNews.com, YOU AGREE TO BE BOUND BY THE TERMS OF USE AGREEMENT.

Copyright © 2008 Thomas Publishing Company
Terms of Use - Privacy Policy



1.02