Quantcast
 
Search for: Search what?
Jul 4, 2009  
 Sections
Latest New Product News
Industrial Market Trends
Green & Clean News
Association & Government News
Adhesives and Sealants
Agricultural and Farming Products
Architectural and Civil Engineering Products
Automatic ID
Chemical Processing and Waste Management
Cleaning Products and Equipment
Communication Systems and Equipment
Computer Hardware and Peripherals
Construction Equipment and Supplies
Controls and Controllers
Display and Presentation Equipment
Electrical Equipment and Systems
Electronic Components and Devices
Explosives, Armaments and Weaponry
Fasteners and Hardware
Fluid and Gas Flow Equipment
Food Processing and Preparation
Health, Medical and Dental Supplies and Equipment
HVAC
Labels, Tags, Signage and Equipment
Laboratory and Research Supplies and Equipment
Lubricants
Machinery and Machining Tools
Material Handling and Storage
Materials and Material Processing
Mechanical Components and Assemblies
Mechanical Power Transmission
Mining, Oil Drilling & Refining
Mounting and Attaching Products
Non-Industrial Products
Optics and Photonics
Packaging Products & Equipment
Paints and Coatings
Plant Furnishings and Accessories
Portable Tools
Printing and Duplicating Equipment
Retail and Sales Equipment
Robotics
Safety and Security Equipment
Sensors, Monitors and Transducers
Services
Software
Test and Measuring Instruments
Textile Industry Products
Thermal and Heating Equipment
Timers and Clocks
Transportation Industry Products
Vision Systems
Waste Handling Equipment
Welding Equipment and Supplies
 Press Releases
Products in the News
Company News
Mergers & Acquisitions
People in the News
Literature & Websites
 Resources
News Delivery Options
Browse Categories
Browse Companies
Mobile Edition
PR Resources
Licensing
Advertising
How to Write an effective Press Release
Trade Associations
Small Business Support
MEP
Advertisement

Firmware protects against Kaminsky DNS exploit.


October 7, 2008 - Intrusion Prevention System (IPS) firmware virtually eliminates threat of Domain Name Server (DNS) Cache Poisoning when combined with existing DNS patch. While able to actively detect and block DNS exploit while still allowing the DNS to function properly, solution also includes components for rate/threshold-based signatures, blacklisting, and stateful firewall functions, components that promote protection for DNS servers.
 See related product stories
Software provides policy-based end point encryption.
Software creates secure online backup of data.
Software provides backup for users of whole disk encryption.
Software offers scalability to data backup service providers.
Software for MSSPs offers customer and management insight.
 See more product news in:
Software
 Tools for you
del.icio.us DIGG  
Facebook Reddit
StumbleUpon Twitter
Print This Page E-Mail Story
Watch_Company  Save Story
Contact company View Company Profile
Company web site 
More news from this company

Advertisement
More Tools and information
Search for suppliers of
Data Security Software
Join the forum discussion at:
 Engineers Lounge
 Newsletters
Your Gateway to a Fast Changing World
Product News Alerts
Receive similar stories and other customized news to keep you in the know on the products shaping industry.
Subscribe Free Today
Subscribe   View Sample
Industrial Market Trends
Has Got It
  • Latest developments
  • Trends
  • Best practices
  • Opinions & Commentary
Get Ahead. Get IMT.
Subscribe Free Today
Subscribe   View Sample
 See more related product stories:
UTM Security Gateway targets medium to large enterprises.
Software provides access control and identity management.
Software automates IT risk discovery and remediation.
PC Optimization Software targets Windows users.
Software provides centralized network security.
Software manages information and supplier risk.
Applications protect and manage software licenses.
Software removes/protects against spam and spyware.
Software protects vulnerable servers.
Software streamlines file backup and synchronization.
Anti-Spam Solution delivers email security in the cloud.
Software analyzes website/web application vulnerability.
Software automates mainframe security operations.
Software offers all-in-one defense against various threats.
Software blocks malware and unauthorized software.
Software secures Flash files against IP theft.
Software enhaces computer performance and user privacy.
Software uses unique arithmetic to ensure data security.
Software enables large-scale identity management.
Software creates portable and protected applications.


NitroSecurity Releases New Defense for Domain Name Server (DNS) Cache Poisoning Threat


Intrusion Prevention System (IPS) Firmware Upgrade Proves Virtually 100 Percent Effective in Blocking 'Kaminsky' Exploit when Combined with DNS Patch

PORTSMOUTH, N.H., Sept. 23 -- NitroSecurity, Inc. (http://www.nitrosecurity.com/), a leading provider of network and information security solutions, today announced that it has developed a unique IPS solution that virtually eliminates the threat of DNS Cache Poisoning. Through research with the Rochester Institute of Technology (RIT), NitroSecurity demonstrated that its IPS, combined with the DNS server patch, provides protection against the exploit that is nearly 100 percent effective.

The DNS exploit presents a challenge in regard to protection. Simply blocking the vulnerability via a standard IPS detection signature would prevent access to the DNS altogether. Therefore, it is crucial to have a broad solution that not only blocks the exploit, but does not compromise the functionality of the DNS. Working with RIT, NitroSecurity has validated a solution to actively detect and block the DNS exploit while still allowing the DNS to function properly.

Recently, the DNS exploit gained widespread industry attention when Dan Kaminsky presented on the topic at this year's Black Hat Conference in Las Vegas. If successfully executed, the exploit represents a massive security threat. Although a patch has been released, DNS servers can still be easily compromised over a short period of time. NitroSecurity's research with leading experts puts the risk at 10 percent within a week's time and 37 percent within a month. For those organizations that are unable to apply a DNS patch, the research also validates that utilizing the upgraded NitroSecurity IPS solution without the DNS server patch provides similar protection as using the patch alone.

"In our rigorous testing, we found that the solution to the DNS problem is to provide secondary measures, in addition to the current patch, to reduce the chances of exploitation," said Bill Stackpole, assistant professor, Rochester Institute of Technology. "In the specified test environment a successful DNS attack without the NitroSecurity IPS in place took approximately four minutes to exploit. With the IPS in place the attack continued for more than 24 hours without a successful exploit."

"The recent attention the DNS vulnerability has garnered is highly important since companies need to know it's out there and how they can protect against it. IPS solutions are widely deployed throughout the industry to combat many vulnerabilities," said Michael Leland, chief technology officer, NitroSecurity. "However, the DNS exploit requires more than just a signature-based IPS solution. Nitro's IPS is capable of rate/threshold-based signatures, blacklisting and stateful firewall functions -- all components that, when used in conjunction, can dramatically improve the protection for DNS servers."

The NitroSecurity IPS solution is currently available. A firmware upgrade is available for existing customers. For more information please contact NitroSecurity at (800) 795-4771 or visit http://www.nitrosecurity.com/. NitroSecurity will be hosting a Webinar to provide further details on the DNS exploit and available solutions on September 25, 2008 from 1:00 - 2:00 p.m. EDT. To register, please go to https://www1.gotomeeting.com/register/243976897 .

To download NitroSecurity's Whitepaper on the DNS exploit and available solutions go to http://nitrosecurity.com/media/whitepapers/. You can also view Chief Technology Officer Michael Leland's recent DNS blog posting on the SIEMBlog at http://siemblog.com/?p=10 .

About NitroSecurity

NitroSecurity is the leading supplier of information security products that protect business information and infrastructure -- Edge-to-Core. NitroSecurity solutions reduce business risk exposure and increase network and information availability by monitoring, protecting and alerting organizations about suspicious or harmful network activities from inside or outside the enterprise. Utilizing the industry's fastest analytical tools, NitroSecurity will identify, correlate and remediate threats in minutes instead of hours, allowing organizations to quickly mitigate risks to the organization's information and infrastructure.

NitroSecurity serves more than 500 enterprises across many vertical markets, including healthcare, education, financial services, government, retail, hospitality and managed services. For more information, please visit http://www.nitrosecurity.com/.

CONTACT: Frank Hayes of NitroSecurity, +1-603-570-3909, fhayes@nitrosecurity.com; or Rachel Miller of SHIFT Communications for NitroSecurity, +1-617-779-1856, nitrosecurity@shiftcomm.com


Contacts:

Public Relations:
SHIFT Communications
Rachel Miller
USA
Phone: 617-779-1856
Send email  E-mail this person

General Information:
Frank Hayes
USA
Phone: 603-570-3909
Send email  E-mail this person
Company Information:
Name: NitroSecurity, Inc.
Address: 230 Commerce Way
City: Portsmouth
State: NH
ZIP: 03801
Country: USA
Phone: 603-766-8160
http://www.nitrosecurity.com

More New Product News from this company:
Appliance delivers unified security management.


[Get Copyright Permissions]
Click here for copyright permissions!
Copyright 2009 Thomas Publishing Company


 

Post a comment about this story

Name:
E-mail:
(your e-mail address will not be posted)
Comment title:
Comment:
 
Category Advertisements
Newsroom Advertisers
Visit Our New Web Site
Home  |  My Newsroom  |  Industrial Market Trends  |  Submit Release  |  Advertise  |  Contact NewsRoom  |  About Us
Brought to you by Thomasnet.com        Browse ThomasNet Directory

News provided by ThomasNet Industrial Newsroom® (TIN). TIN is a comprehensive source of new and timely product information in the industrial marketplace. TIN supplies new product information to the web sites, e-marketplaces and print publications that serve the industrial marketplace. For press release submissions please go to http://news.thomasnet.com/submitpr.html. BY ACCESSING, BROWSING AND/OR USING THIS WEB SITE AND/OR ANY WEB SITES PROVIDED BY ProductNews.com, YOU AGREE TO BE BOUND BY THE TERMS OF USE AGREEMENT.

Copyright © 2009 Thomas Publishing Company
Terms of Use - Privacy Policy



1.17