|
|
CyberWarfare Defense solutions
based on Melior´s Barbican technology:
Barbican RNP - Real-Time Network Protection
The Melior, Inc. product line focuses on providing CyberWarfare Defenses against all forms of Denial-of-Service attacks,
including intrusion prevention and uptime availability for both
- first- (low & high bandwidth-/network stack attacks, and compromising system) and
- second-stage (large-scale, 'bot'-network) attack levels.
With the introduction of Barbican RNP, concluding a development cycle of over two years, Melior offers its finite solution
to prevent intrusions through direct or trojan/content-based infiltrations, and to defend against direct attacks from public
sources (the Internet) as well as within corporate/government networks; thus guaranteeing uptime and system availability
during small, targeted attacks through large-scale, heavy Denial-of-Service attacks.
Key Features
- Detects and defends against all (distributed) Denial-of-Service attacks (dDoS)
- bandwidth flooding attacks - as add-on service offered by your ISP
- application request flooding
- network / IP-Stack attacks
- low/medium/high-bandwidth application-level attacks
- works against both known and unknown attack tools
- Protects on all TCP/IP protocol levels, starting at Layer 2 all the way up to Layer 7:
- TCP: all 65,535 ports with key applications auch as SMTP, SSH, FTP, Web, encrypted Web, etc.
- UDP: all 65,535 ports with key applications such as DNS and Voice over IP (VoIP)
- ICMP: all functions, blocking ICMP packets is no longer necessary
- Payload/Content-based attacks: defense against dDoS attacks embedded in the payload
(such as 'wget') will be available shortly with an add-on module
- Cloaks your networks & systems against attackers - defends against exploration of vulnerabilities
(Penetration Testing - PenTest)
- Works In-Line "on the wire" - all traffic is disassembled, inspected in our "Truth Table", and valid
traffic is re-assembled and allowed to pass through
- Works in real time (average latency under 10 ms)
- Gigabit "In" and "Out" Ethernet ports, supporting 10/100/1000 Mbit/s connections on both ports
- Cannot be detected, addressed, and thus not be compromised (no MAC or IP address) on the "In" and
"Out" inspection ports
- Throughput Processing up to 400 Mbit/s
- Third, addressable 10/100 Mbit/s Ethernet port, for remote Adminstration and Alerts/Reporting to
central monitoring solutions by way of standard 'syslog' messaging, through secure administrative network
- Does not require configuration to be effective and works instantly against DoS/dDoS attacks ("plug & protect") - with optional administration
- no baselining / QoS settings
- no signatures and no updates required! Barbican RNP is the finite solution to dDoS & Penetration Testing
- no "learning curve" for traffic pattern matching
- Foundation layer of security --- protects and enhances the effectiveness of IDS and firewalls
- Compliments existing infrastructure as an inline scanner - no reconfiguration or infrastructure changes necessary
- Decreases bandwidth cost in online hosting environments (you no longer pay for inbound dDoS attack traffic)
- Decreases log size on firewalls and intrusion detection systems by elimination of 'junk' traffic reporting, thus improving IT staff efficiency, and identification of important log entries
- Built for very large, large, medium, and small enterprise deployment - both for deployment as perimeter defense, as well as internal deployment between network segments to contain attacks from the inside upon systems compromise
Benefits
The benefits of full perimeter and internal deployment of the Barbican RNP appliance are:
- Uptime and application availability during dDoS attacks, such as:
- Web Services
- E-Commerce Services
- E-Mail Services
- Telephony Infrastructure (Voice-over-IP / VoIP)
- Domain Name Service (DNS)
- File Transfer (FTP) Services
- Decreased bandwidth costs during dDoS attacks
- No revenue loss during application request flooding attacks
- Non-Disclosure of Vulnerabilities (no Penetration Testing exploits)
- Decreased IT staff costs due to:
- Drastically reduced log sizes in firewalls and Intrusion Detection Systems (IDS) - less time spent to review efficiently
- Reduced need to rebuild firewalls, servers, desktops, and other devices from TCP/IP stack attacks
- Reduced costs from compromises from worm/virus attacks
- Reduction/Avoidance of follow-up costs of vulnerability exploits due to elimination of
Penetration Testing for yet-uninfected systems (time spent to keep up with system patches)
- Budget benefits from improved reporting on valid vs. invalid network traffic
Solution
Melior, Inc.'s Barbican RNP is the most advanced solution for preventing DoS/dDoS attacks, and the only solution
with a network & systems cloaking feature to protect against penetration testing. It stops all known and unknown
dDoS attacks in real-time, while still letting the "good" (desireable) traffic through. Legitimate users do not
experience any degradation in traffic throughput, while the DoS/dDoS attacks are thwarted. Barbican RNP also cloaks
your entire infrastructure against probing and information gathering ("Penetration Testing"), a standard first
step for hackers prior to any intrusion attempt.
We consider Barbican RNP as the new primary layer of front-line defense. An enterprise with firewall, intrusion detection,
traffic management, and anti-virus protection has only part of a comprehensive security policy. The functionality provided
by Barbican RNP is the fundamental CyberWarfare Defense component missing until now.
For more Information, Demonstrations, and Sales, please contact us. |
|
|
