Products - TippingPoint

TippingPoint

(Click to enlarge)

TippingPoint Intrusion Prevention System (IPS) delivers the most powerful network protection in the world. TippingPoint is an in-line device that is inserted seamlessly and transparently into the network. As packets pass through the IPS, they are fully inspected to determine whether they are legitimate or malicious. This instantaneous form of protection is the most effective means of preventing attacks from ever reaching their targets.

TippingPoint IPS systems is built upon Tippingpoint’s Threat Suppression Engine (TSE) – a highly specialized hardware-based intrusion prevention platform using custom ASICs. TippingPoint ASIC-based TSE is able to perform thousands of check on each packet flow simultaneously at layers 2-7. Parallel processing ensures that packet flows continue to move through the IPS with a latency of less than 215 microseconds, independent of number of filters applied.

Tippingpoint IPS provides Application Protection, Performance Protection and Infrastructure Protection at gigabit speeds through total packet inspection. Application Protection capabilities provide fast, accurate, reliable protection from internal and external cyber attacks. Through its Infrastructure Protection capabilities, TippingPoint protects routers, switches, DNS and other critical infrastructure from targeted attacks and traffic anomalies. TippingPoint IPS Performance Protection capabilities enable customer to throttle non-mission critical applications that hijack valuable bandwidth and IT resources.

·          Phishing Protection

TippingPoint's Phishing Protection is an extension of the market-leading, award-winning TippingPoint Intrusion Prevention System (IPS). Using a combination of vulnerability filters, signatures and behavior-based protection techniques to detect and prevent phishing attempts, the TippingPoint IPS is able to analyze the content of both the e-mail and the Web site and look for defining phishing characteristics, certain behaviors or certain vulnerabilities. The TippingPoint IPS uses its intelligence to determine if it is an attack. With Phishing Protection, the TippingPoint IPS thwarts phishing e-mail scams to protect end users from financial losses and protect enterprises from unauthorized phishing operations within their networks or on their Web servers.

·          Spyware Protection

TippingPoint's protection strategy and "defense-in-depth" approach can prevent attempts to install Spyware. To prevent existing infected systems from contaminating the network, the TippingPoint IPS prevents pop-up advertisements and information transfer to and from the enterprise network. Reports and event tracking in the IPS logs provides information to pinpoint infected systems and isolate and eradicate Spyware infections.

·          Quarantine Protection

TippingPoint's Intrusion Prevention System (IPS) and Security Management System (SMS) incorporate innovative enhancements to prevent the propagation of cyber threats from within the network and quarantine infected devices. This quarantine process prevents the infected device from harming neighboring systems and provides instantaneous redirection to remediation Web pages or URLs.

·          VoIP Protection

TippingPoint's Application Protection provides comprehensive attack prevention for VoIP against known and unknown zero-day cyber threats. TippingPoint secures VoIP through Infrastructure Protection, VoIP Protocol Anomaly Protection and VoIP Application Protection. TippingPoint assures VoIP Quality of Service and further protects against denial of service attacks through its patent pending thresholding and rate shaping capabilities. TippingPoint also provides constant Virtual Software Patch updates with its Digital Vaccine service to maintain evergreeen protection at all networking layers.

·          Advanced Denial of Service Protection

TippingPoint's Advanced Denial of Service (DoS) Protection offers the most comprehensive coverage against a broad variety of Denial of Service attacks. TippingPoint utilizes a hybrid approach to provide comprehensive protection against DoS attacks that exploit vulnerabilities, attacks from other Distributed Denial of Service (DDoS) attack programs and attacks from bandwidth consuming packet floods. In addition, TippingPoint's Advanced DoS Protection provides coverage against the following:

·   SYN Floods: An attacker floods a server with malicious connection requests (TCP SYNs) with spoofed source IP addresses, preventing legitimate clients from accessing the server.

·   Established Connection Floods: An attacker takes control of many computers (bot army) and has the bot army establish a large number - potentially millions - of malicious TCP connections to a server, preventing it from accepting new requests from legitimate clients.

·   Connections Per Second Floods: An attacker uses a bot army to repeatedly request resources, such as Web pages, from a server. The resulting load makes the server sluggish or inaccessible.

In addition, TippingPoint's existing DoS/DDoS Protection includes:

·    Vulnerability Protection - Protects against DoS attacks that exploit vulnerabilities

·    Attack Tool Protection - Protects against well-known DDoS attack programs including TFN, Loki and Stacheldraht

·   Threshold Filters - Protects against packet floods like ICMP, TCP or UDP that can consume network bandwidth or server resources causing legitimate packets to be dropped. These filters baseline and throttle traffic when it goes beyond a set percentage.