Network ICE Corporation and CyberSafe Corporation are pleased to present the CentraxICE security solution, a software solution providing hybrid, next generation intrusion detection. The CentraxICE software solution includes the industry leading Centrax® host-based technology, policy management, and console combined with industry leading ICEpac™ Security Suite and BlackICE™ Agent network node technology.

The components of the CentraxICE software solution were recently praised in an independent test by the NSS Group, Europe's foremost independent network testing facility and consultancy organization. According to the NSS Group, Network ICE provides the best network intrusion detection system in the market and CyberSafe has the most comprehensive security solution. The combination provides a best in class security solution and raises the standards for security infrastructure solutions, making them more reliable and mutually operable across the corporate network.

CyberSafe

The next generation IDS capabilities inside the CentraxICE software solution include external focus on perimeter threats such as hackers and internal focus on insiders. The CentraxICE security solution represents a transition from threat detection where losses are only a possibility to actual loss detection where losses are measurable. One of the results of this approach is that it significantly reduces false positives and wasted time trying to determine where the losses occurred.

Most organizations buy intrusion detection systems because they want to detect and respond to hackers exploiting or attempting to exploit network vulnerabilities.

The benefits of the CentraxICE software bundle include:

• Reduces corporate liability by continuously monitoring your network, server, and applications from internal and external misuse
• Ensures data integrity and user accountability
• Ease of management and deployment from a centralized console reduces administrative costs
• Creates, deploys and manages security policies centrally
• Automated audit logs and management reporting capabilities for prosecution support

How CentraxICE Hybrid Security Solution Works

The CentraxICE software bundle provides two types of monitoring software: host-based agents and network node agents. Host-based agents analyze the audit data that is generated by each computer as users perform daily work, such as logging on and accessing files. The real-time host agent analyzes the audit log and responds immediately if a threat is detected. The audit data is transferred to the Command Console based on a user-defined 24 x 7 schedule, where it can be further analyzed from a central location.

Network node agents analyze network traffic on a per-host basis. This enables them to monitor networks even if traffic is encrypted, flowing at very high rates, or traveling across network switches. Event alerts are sent back to the Command Console for trending and analysis. Upon detecting a misuse, a network node agent can also respond immediately by blocking the IP address or port of the attacker.

Administrators are notified of threats via on-screen alerts, email, pager, or Simple Network Management Protocol (SNMP) traps. From the same integrated console, the administrator can generate detailed reports of activities by user, target, activity, and date. These easy-to-read reports provide information on who did what and when, helping to identify potential misuse and pinpoint damage that has occurred.

The CentraxICE software includes advanced features for audit policy management, real-time and scheduled management, and prosecution support. This includes a return to behavioral data forensics from the early first generation systems. The CentraxICE software solution is used for decision support rather than automated anomaly detection. Analysts will be able to use statistical and rule-based information to create a picture of what happened for damage assessment, trending, and attack anticipation.

Get Secure..... 
CyberSafe

Today's NetworkNewz was Sponsored by CyberSafe
CyberSafe and Centrax are registered trademarks, and CentraxICE is a trademark of CyberSafe Corporation. Network ICE, BlackICE, and ICEpac are trademarks of Network ICE Corporation.