The Technology
The Products
Press Room
Events & Awards
Purchase
Support

Home | Contact Us | About Us | Resellers | Downloads

Help

Tag-UR-IT

Tag-UR-IT's intuitive and adaptive pre-processing engine entirely eliminates address spoofing and other network abuses such as Denial of Service (DoS), Distributed Denial of Service (DDoS), Distributed Reflective Denial of Service (DRDoS) and other resource floods designed to overload network hardware and software to cause massive system outages. In addition to its ability to track and report network reconnaissance attempts against a company's network, Arxceo's products obfuscates or confuses would be attackers by generating random and misleading network information. Tag-UR-IT implements a patent-pending methodology that randomizes vital network and computer information such as the initial sequence number (ISN), source ports, internet protocol ID, operating system fingerprints and DNS transaction IDs. And all of this protocol hardening is transparent to users, applications, routers, firewalls and servers.

This methodology has been proven to provide a 0.0000001% chance of predicting any of these values. Tag-UR-IT offers a range of features and their related benfits such as:

Protocol Fortification

Tag-UR-IT fortifies network protocols by strengthening or hardening legacy protocol vulnerabilities and eliminating exploitable holes available in various network protocol standards to eliminate abuses such as covert channeling, DNS cache poisoning, fragmented packet 'exploit injections' and raw-frame Ethenet data leak transmissions. This fortification provides a hardened network stack guarantee on connection-oriented (TCP) and connection-less based protocols, like UDP, for every device protected by an Arxceo Ally appliance.

Transparent Connection Authentication

Tag-UR-IT provides for transparently authenticating end-user TCP connections without requiring any client software to communicate or authenticate the session. This authentication elminates address spoofing, which is a common method used in both network reconnaissance and network attacks -- including the range of Denial of Service abuses.

Anti-Reconnaissance Countermeasures

Arxceo's patent-pending Tag-UR-IT implements a randomness methodology, along with various techniques that obfuscates packet scanning, to confuse reconnaissance results of tools typically used by would-be attackers. These tools derive information such as operating system and versions of the targetted device to be attacked. The results of various reconnaissance tools return different information to further delay or thwart a successful network scouting session. Results even change from session to session when using the same tool repeatedly.

Security, Convenience AND Performance

Arxceo's Tag-UR-IT based products offer consumers easy to use and install security appliances with the highest level of connectivity protection. There are no complex configuration or management inteventions required, nor any learning modes that can cause severe false positives at different times of the day, week, month, quarter or year. And all of this simplicity comes with an unheard of breakthrough for a security product -- improved overall network throughput. Traditionally, security devices, such as deep packet inspection firewalls and signature-matching IPSes pay a performance penalty in order to successfully perform their functions. As Tag-UR-IT rapidly performs its protocol fortification, exploit eliminations, and packet filtering tasks, it is also cleaning up and elminating a large amount of traffic, thus freeing up these other devices to focus on the job they do best. Therefore, overall network throughput is improved throughout the entire security 'enforcement' process. Plus, all the devices' log files are much smaller due to elimination of any spoofed traffic which is useless in an auditing procedure.

Preventing DNS Cache Poisoning, Covert Channel Tunneling and Worm propagation

Tag-UR-IT detects and prevents the misuse of traditional protocols and quickly shuts down any session or IP address attempting such an abuse. Tag-UR-IT provides covert channel protection and mis-use of protocols such as DNS that can be used to usurp security policies, along with scan detection and automatic blacklisting to mitigate worm propagation.

 

Latest News!

Attacks using Evasion Technique Highlights Problems with Signature-Based IPS

Arxceo Announces License Program and Ally Binary Engine Development Kit to Enable Anti-reconnaissance Defense for Network and Mobile Devices

Arxceo® Launches Ally™ Channel Program to Provide VARs with Revenue and Business Growth Opportunities in Security Market

Communication News writes about Arxceo's security appliance reducing workload

Arxceo Co-Founder to Bring Expertise in Anti-Reconnaissance Network Security Technologies to SecureWorld Multi-City Regional Expo

Arxceo’s Anti-Reconnaissance Security Appliance Turns the Table on Cyber Specialists at Engineering Conference

 

Copyright 2003 - 2007 Arxceo Corporation. All Rights Reserved.  Trademarks  Privacy Statement   Site Map