Software provides network access control.

Press Release Summary:

Original Press Release:

Sygate Launches First Single Agent Security Solution to Integrate Network Access Control (NAC) and Host Intrusion Prevention

Sygate Enterprise Protection Offers Broadest Protection on a Single Agent and Console, Scales to Millions of Devices FREMONT, Calif., Aug. 8 -- Sygate Technologies, the leading provider of Network Access Control solutions, today announced the launch of Sygate Enterprise Protection (SEP) 5.0, delivering the first comprehensive Host Intrusion Prevention and Universal NAC System to be fully integrated on a single agent and centrally managed by a single console. Building on Sygate's broad range of enforcement options for Network Access Control and its award-winning personal firewall technology, SEP 5.0 adds multi-layered Firewall and Host Intrusion Prevention System (HIPS) technology to protect against the broadest set of exploits. To accommodate the growing number of mobile devices connected to the network and unprotected embedded systems such as point-of-sale terminals and ATMs, Sygate has improved SEP 5.0 performance more than ten-fold, enabling next generation NAC and HIPS deployments to 700,000 users per server and 2.5 million agents per company. "With its ability to prevent unapproved applications from running in memory, the ability to control the transfer of data to removable storage devices, and incorporating both application and network-based Host Intrusion Prevention functionality on a single agent, Sygate has really set the bar with Sygate Enterprise Protection," said Scott Harroff, Chief Security Architect, Diebold. "We use Sygate's products on both our internal network and on our automated teller machines because they have been able to consistently translate their vision for enterprise security into products that provide a strategic approach for dealing with constantly changing threat profiles." Industry-leading Host Intrusion Prevention In a May 2005 report titled Understanding the Nine Protection Styles of Host-Based Intrusion Prevention, Gartner, Inc. Vice President and Distinguished Analyst Neil MacDonald outlines nine distinct host intrusion prevention styles across three levels -- behavior, application, and network -- to help enterprises determine which style or combination of styles best serves their needs. "All security frameworks should include a comprehensive, layered approach for providing host based intrusion prevention," said MacDonald. Sygate already enables enterprises to extend NAC protection -- the ability to ensure that only trusted devices in compliance with corporate security policies access the network -- to every type of network access (VPN, wireless, routers, DHCP, etc), and on all endpoints, including laptops, desktops, servers, guest systems and embedded devices. SEP seamlessly integrates multilayered firewall and host intrusion prevention for endpoint protection, offering black list, white list, and behavioral approaches to protect against exploits that target the network, application, and operating system layers of computer systems. Highlights of SEP's HIPS protection include: -- At the device layer, Sygate can block the transfer of data to unauthorized removable media devices including USB keys, iPods, CD/DVD Burners, PCMCIA hard drives, etc.; specify authorized devices for data transfer (such as a mouse or a keyboard) and control a user's ability to read, write, or execute data on specific devices and adapt that policy based on the network environment the computer is in at the time. -- At the operating system layer, Sygate blocks exploits that target known operating system vulnerabilities such as the RPC DCOM buffer overflow, restricts the operating system to only specific authorized operations, and blocks unknown exploits based on templates of secure operating system behavior. -- At the application layer, Sygate's protection includes the ability to block the exploit of known vulnerabilities in applications such as email, web browsers, and word processors, ensure that only authorized executables and .DLLs are allowed to execute on the system, and block unknown exploits of applications such as web servers by ensuring the validity of operating system instructions based on application interface conventions. -- At the network layer, Sygate's intrusion prevention capabilities include the ability to block known network-based worm and web server attacks, to ensure that only authorized network traffic is transmitted, and to block anomalous network behavior such as malformed packets designed to cause a denial of service. "Through 2010, we believe the best HIPS strategy for desktops and servers will use a combination of HIPS styles across all levels for optimal protection," MacDonald continued. Enhanced Server-side Protection SEP 5.0 includes robust HIPS protection designed specifically for servers with enhancements such as protection templates for specific types of servers and Memory Firewall technology licensed from Determina, to protect business-critical server applications against zero-day buffer overflow attacks. This capability reflects the fact that Buffer Overflow attacks have accounted for 100% of all Microsoft Windows Server critical vulnerabilities since 2003. "Recent events show that devastating consequences to business occur when protection technology and control processes are not integrated, verifiably in place and operational," said John De Santis, CEO, Sygate. "Intruders get in, information is stolen, regulators and business partners deliver swift and hard punishment. Anticipating the explosion in the number of intelligent connected devices, we are proud to announce the first integrated Compliance Firewall solution scalable to millions of computers to bring simplicity and certainty about information security to executives. Ours is the first solution to fuse next generation protection with policy compliance enforcement to protect both business operations and information assets." Pricing and Availability SEP is available immediately direct through Sygate and through partners. Quantity onepricing for complete protection of 1,000 seats starts at $65/seat for desktops and laptops and $115/seat for servers. Volume discounts apply. About Sygate Technologies Sygate is the market-leader in Network Access Control (NAC) solutions for the large enterprise. Through intelligent policy enforcement, its solution ensures "Compliance on Contact," protecting computers, data and networks from misuse, malicious access and misconfiguration. Using Sygate solutions, the world's largest organizations protect their networks, enforce business policies, and automate security practices to regain control of network security, reduce costs, and ensure compliance across the organization. Partnerships with industry leaders, including Alcatel, Aruba, Aventail, Cisco, Enterasys, Extreme Networks, Hewlett Packard, iPass, Juniper Networks, Microsoft and Nortel enable Sygate's technology to operate seamlessly across multiple platforms and applications. Sygate Technologies is a privately held company headquartered in Fremont, California. For more information, please visit www.sygate.com or call (866) 308-8899.