Symantec announces new intrusion prevention solution

Posted on Monday, June 13 2005 @ 18:56 CEST by Thomas De Maesschalck
Symantec today announced Symantec Critical System Protection 4.5, a comprehensive intrusion prevention solution for desktops and servers on Windows, UNIX and Linux platforms. Scheduled to be available later this month, Symantec Critical System Protection defends against day-zero attacks, maintains system compliance, and proactively protects applications and the operating system on clients and servers by enforcing behavior-based security policies.

"Symantec Critical System Protection demonstrates our commitment to providing customers with the most innovative and effective protection for endpoint clients and servers," said Chirantan "CJ" Desai, director of product management for client and host security at Symantec. "With this solution, Symantec extends the endpoint security infrastructure by adding a layer of robust protection against new malicious threats."

When deployed alongside Symantec Client Security or Symantec AntiVirus Corporate Edition, Symantec Critical System Protection specifically safeguards applications and operating systems without the need for updates. It delivers powerful behavior-based intrusion prevention technology to protect clients and servers against unknown malicious behavior. Buffer overflow and memory-based attack protection provide added defense against the most sophisticated attacks, while a high-performance firewall monitors network traffic with the ability to block inbound and outbound connections by port, protocol and IP address range.

"Even during our profiling period, Symantec Critical System Protection has shown real value in its ability to identify malicious activity that slipped through other layers of protection," reports Kenneth Brothers, manager of Information Security at the Federal Home Loan Bank of New York. "In one specific example, it identified a 'day-zero virus' before an antivirus signature was available."

A centralized management console allows Symantec Critical System Protection to manage both clients and servers. Using the management console, security policies can be configured to implement controls for compliance auditing. Symantec Critical System Protection contains more than three-dozen predefined reports, including detailed and aggregated summary data on agents, events and policies. In addition, the management console can be configured to deliver automatic notification alerts to ensure rapid response to high priority incidents.

To reduce the complexity of administration, Symantec Critical System Protection provides out-of-the-box configurable security policies for applications and operating system functions. These policies automatically adapt to the operating system and applications installed, eliminating the need for administrators to configure different policies for different types of machines. Symantec Critical System Protection also prevents internal misuse with "de-escalation" of administrative user privileges, which restricts access to critical system components to protect against unauthorized tampering and malicious behavior.

Symantec Critical System Protection 4.5 is scheduled to be available in late June through Symantec's worldwide network of value-added resellers, distributors and systems integrators.


About the Author

Thomas De Maesschalck

Thomas has been messing with computer since early childhood and firmly believes the Internet is the best thing since sliced bread. Enjoys playing with new tech, is fascinated by science, and passionate about financial markets. When not behind a computer, he can be found with running shoes on or lifting heavy weights in the weight room.



Loading Comments