Content

Service Provider Intrushield/Managed IPS

Service Provider Network Intrusion Detection and Prevention Solutions

SP

With the new generation of malware and more sophisticated methodologies by which attackers gain unauthorised network access, it is no longer enough for SMBs or Enterprises to use anti-virus and anti-spyware solutions to secure their end-users. Security policies must now adopt a layered approach to protecting not only the data within a network, but the network itself, thus protecting the ability for a business to function without the loss of revenue that can result from network downtime, loss of internet connectivity, data loss, or loss of integrity and business reputation.

As part of this layered approach to network security, Service Providers can now offer their customers security solutions that detect malware and attacker attempts as they enter the network, and block them in real-time, thus securing a customer’s network assets, business operations and private data before the damage is done. These solutions may be constructed from purpose built, automated appliances that detect and prevent network intrusion attempts.

sp

These services can be designed, constructed and deployed by Service Providers to best meet the needs of their customers. Using the McAfee web-based IntruShield® management portal, the services can be easily managed on behalf of Service Provider customers, by a small, focused, elite group of Service Provider security personnel.

 

With managed services built with McAfee® IntruShield® Network IPS Appliances, Service Providers can help proactively protect their customers from zero-day, spyware, malware, botnets, worms, phishing, VoIP and peer-to-peer attacks with easy-to-use, easy-to-manage risk-aware network intrusion prevention.

 

Tab Navigation

Description

Description of Intrushield Family of Appliances

The McAfee® IntruShield® family of Intrusion Prevention System (IPS) appliances enable Service Providers to provide network protection for businesses and help reduce their business risk by deploying the industry’s most comprehensive and proven network IPS solution as part of a managed security service. IntruShield’s ASIC-based appliances proactively protect end-points and critical network infrastructure from known, zero-day, DoS ,and encrypted attacks, as well as threats like spyware, VoIP vulnerabilities, botnets, network worms, malware, phishing, Trojans, and peer-to-peer applications.

IntruShield is the industry’s first risk-aware IPS solution that maximizes security and increases efficiencies by identifying and blocking the most relevant threats and attacks that are targeting a customer’s network assets. Service Provider managed services built upon IntruShield’s unparalleled technology and deep packet inspection can pre-emptively block attacks before they reach their intended targets. IntruShield provides absolute accuracy, easy-to-use centralized management, out-of-the-Box IPS blocking and enterprise-class performance. IntruShield’s integrated and easy-to-manage platform helps Service Providers deliver broad asset protection, maximize business availability, and minimize liability and security cost.

 

Benefits and Features:

Benefits

  • Proactive protection
    Enables a Service Provider to build a comprehensive network security protection service to help defend a customer’s network from today’s attacks and tomorrow’s threats
  • Comprehensive defense
    A Managed IDS/ IPS solution built upon McAfee’s IntruShield appliances helps protect against known, zero-day, DoS and encrypted attacks, as well as spyware, malware, phishing, botnets, VoIP vulnerabilities, network worms, Trojans, and peer-to-peer applications
  • Maximize security and increase efficiencies
    Risk-aware intrusion prevention lets a Service Provider efficiently manage customer’s security risks by identifying and blocking the most relevant alerts and attacks targeting their network 
  • Manage with ease
    The IntruShield Manager facilitates simple, Web-based management of IPS appliances and policies, integrated user authentication, pre-set default blocking, real-time updates and always-on management
  • Scale as you grow
    The Virtual IPS capabilities of IntruShield, high scalability and superior price/performance enable Service Providers to build managed IDS/ IPS services for their customers that can scale as the customers business grows, whilst still providing a high-performance and flexible solution

Features:

  • Risk-aware intrusion prevention
    IntruShield appliances deliver prioritized risk management by identifying and blocking the most relevant alerts and attacks; these appliances can also import and correlate risk assessment information from the market-leading vulnerability management solution, McAfee® Foundstone
  • Advanced Web client protection
    These appliances protect a customer’s Web browsers and desktops from attacks, spyware, and malware; they prevent downloading of unwanted programs while stopping unauthorized network access
  • Prevent next-generation DoS attacks
    Advanced real-time protection against sophisticated denial-of-service attacks, including DoS, DDoS, and SYN floods
  • Defend against encrypted attacks
    Managed services built upon IntruShield appliances can proactively protect critical e-commerce infrastructure against encrypted attacks with real-time SSL decryption, and inspection technology 
  • Protect infrastructures
    Managed services using IntruShield can deliver preemptive, zero-day vulnerability protection against attacks targeting mission-critical routers, switches, perimeter firewalls, and DNS servers 
  • Block malicious botnets
    IntruShield appliances proactively block the installation, communication, and activation of malicious distributed botnets
  • Guard Against VoIP vulnerabilities
    Managed services built using IntruShield appliances can also protect against underlying VoIP protocol vulnerabilities, while preserving VoIP application and voice-quality integrity  [see White Paper on VoIP below]