yl23455永利(中国)有限公司

Intrusion Prevention IPS Position:Home » Products » Intrusion Prevention IPS

First, Product Overview

With the rapid development of computer network and information technology, more and more enterprises, the government established the Internet information system, bring efficient and quick in the network at the same time, put forward higher requirements for the explosive network attack diversification and bandwidth growth on the processing performance and protection of network security products precision. Intrusion prevention system Topsec independent research and development company (hereinafter referred to as TopIDP) using online deployment, real-time detection and blocking including overflow attacks, RPC attacks, WEBCGI attacks, denial of service attacks, Trojans, worms, system vulnerabilities, etc. more than 3500 kinds of network attacks, network users can effectively protect IT service resources. TopIDP also has the application protocol of intelligent identification, P2P flow control, network virus defense, Internet behavior management, malicious web site filtering, network monitoring and wireless intrusion prevention and other functions, providing a three-dimensional network security protection for the user to complete.

 

Second, product features

Quick processing performance is the basic requirement for gateway products, especially for intrusion prevention products dealing with application layer data. TopIDP full range of products with unique patented Topsec multi-core processing hardware platform, advanced SmartAMP parallel processing architecture based on load balancing technology patent built-in dynamic processor, combined with the original SecDFA core algorithm, to achieve high performance of network data flow detection and defense, so that the full TopIDP detection rate reached 40Gbps.

Accurate identification of network attacks is the core value of intrusion prevention products. TopIDP products use protocol analysis, pattern matching, traffic anomaly monitoring and other comprehensive technical means to determine network intrusion behavior, which can accurately identify and block all kinds of network attacks. The security defense laboratory Topsec Company (hereinafter referred to as TopLabs) is the national vulnerability database creation attack detection unit, is also a national emergency response support service units and designated national post doctoral workstations, with high-quality technical professional researchers, through continuous tracking, research and analysis of the latest security vulnerabilities found, attack detection rules with independent form intellectual property rights, to ensure that the TopIDP product has accurate detection ability. The rule base has been authenticated by international authoritative organization CVE and maintained at least once a week for update frequency.

Stability is the foundation of intrusion prevention products. TopIDP products from the R & D team Topsec firewall and firewall products R & D, using the same multi-core processing hardware platform and talent of independent intellectual property rights TOS (Topsec Operating System) system, the heritage of the Topsec Company accumulated sixteen years of experience in TopIDP gateway products technology; large-scale deployment examples in the government, banking, telecommunications, insurance, electric power and other industries, with high stability and high reliability, can be sustained and stable recognition in a variety of network environments and block the intrusion behavior, to ensure safe and smooth network business.

TopIDP product, which integrates wired and wireless attack detection, is the foundation of constructing new wireless network security. Wireless attack defense system can be widely used in enterprises, hospitals, universities, educational institutions, governments and other wireless service environment, providing information security, attack and defense guarantee for wireless deployment areas.

 

Third, protective function三、防护功能

Intrusion Prevention

TopIDP uses an advanced target based system for stream reorganization detection, which completely blocks the overlapped attack of TCP stream from the root. And has 11 categories, more than 3500 attack rules, especially in depth mining localization business system vulnerabilities, forming defensive blocking rules, directly applied to TopIDP products, more effective protection of enterprise information assets.


DoS/DDoS protection

TopIDP full support for DoS/DDoS defense, through the construction of statistical attack model and abnormal packet attack model, SYN flood, ICMP can be a comprehensive defense flood, UDP flood, DNS Flood, DHCP flood, Winnuke, TcpScan and CC up to dozens of DoS/DDoS attacks; TopIDP also uses self-learning mode, intelligent defense for the user to protect the server.

Application control

TopIDP products to more than 1200 kinds of network application identification including traditional protocol, P2P download, stock exchange, instant messaging, streaming media, network game, network video, users easily determine the bandwidth in the network abuse, then taken to limit the number of connections, including blocking, limit the flow of various means of control, to ensure that network traffic unobstructed.

Network virus detection

TopIDP product integrates Kabasiji SafeStream II network virus library, and uses data stream based detection technology to detect more than 3 million kinds of network viruses, including Trojan horse, back door and worm. Different from the traditional gateway anti virus, TopIDP products do not need on the basis of the transparent proxy restore files, but directly in the detection of viruses in data stream, to carry out high-speed online detection, real-time blocking newly popular network virus with the greatest degree of harm. 

URL filtering

TopIDP built a huge URL classification database, database storage, including a malicious web site in violation of state regulations and policies of the website, potentially unsafe websites, websites, public interest in the bandwidth waste sites, chat with the forum website, industry website classification and computer technology related websites and other more than 80 categories, a total of more than 6 million URL address. TopIDP can connect to the Internet user behavior analysis, restrictions on the malicious web site or potentially unsafe access to the site, combined with the application of the control function, can develop effective management strategies, online behavior management, network users.

 
Wireless attack defense

TopIDP products provide wireless network intrusion prevention capabilities. According to the information security caused by wireless Ad-hoc, connect the AP, even outside, illegal fishing, agents and other wireless wireless radio attacks can be effective protection, the same is to provide a wired network, wireless network boundary border defense.

© 2000-2024 Suzhou HuaSu Info-Tech Co., Ltd.   |   Su ICP 16051456号-1

              Technical support:HUICHENG

Online
Baidu
sogou