SecoShield, one of the best Networks based Intrusion Detection System (IDS)...an armed security control for your data network. 

Unlike other IDS products currently on the market, SecoShield can handle large throughput requirements within the network enterprise. Scalable performance is essential to ensure that all traffic is being analyzed in real-time, without packet loss. SecoShield¡¯s real-time packet gathering technology analyzes traffic at the MAC level, as well as at layer 3, resulting in faster traffic analysis. Furthermore, SecoShield for gigabit can handle sustained traffic of over 700 Mps without dropping packets. 

Currently up to seven subnets can be monitored from one network sensor, resulting in significant cost savings, while other IDS systems can only monitor one subnet per a host. Additionally, to ensure that traffic is not being dropped, real-time monitoring statistics are available. 

SecoShield¡¯s powerful and unique features that have contributed to its industry leader position include:

  • A complete defense arsenal of ¡®detection protection¡¯, including misuse, anomaly, policy-based detection and Reanalysis. 

  • One of the world¡¯s largest signature database libraries including customizable signatures, live updates and response capabilities. INFOSEC has established a license agreement with Security Focus to access their globally collected and analyzed Vulnerability Database. Our clients can enjoy the benefits of vulnerabilities gathered by more than 1,300 sensors in more than 105 countries to establish SecoShields' detection signatures. These vulnerability-based signatures are updated within 24 hours of discovery, allowing SecoShield to detect any verified hacking pattern from anywhere in the world.

  • Customizable flood and port scanning detection.

  • An intuitive graphical-user interface that creates fast, accurate and customizable reports.

  • Advanced forensic capabilities allow network administrators to compile data on hackers with point & click access to event details, raw packet data and keystroke-by-keystroke analysis of each attempted attack.

  • Re-analysis and consolidation of redundant alerts through INFOSEC¡¯s patented Fusion Detection Algorithm technology.

SecoShield offers a powerful and robust security software application that comes unbundled from appliances, providing more flexibility. 

  • It provides ACTIVE responses such as access exclusion, which responds at the network or host levels for re-attempt prevention. It also provides basic responses such as digest audit logs, detailed detection information, e-mail and window alerts.

SecoShield is the first NIDS to become OPSEC NG certified by complying Check Point¡¯s most rigorous testing and usability standards.
SecoShield interoperates with Check Point NG software using four different categories;

  • Suspicious Activity Monitoring (SAM)
  • Event loggings (ELA)
  • Application Monitoring (AMON)
  • Check Point Management Interface (CPMI)

SecoShield supports Microsoft Windows NT and Windows 2000, Sun Solaris and most LINUX operating systems and can be administered remotely from the network operation center.

Copyright ¨Ï 2009 Infosec Technologies. All Rights Reserved.