|
|
|
Anti-reconnaissance
|
Arxceo's patented technologies, called Plug and Protect™ (PnPro™) and Tagged Universal Resource Information Transmission™ (Tag-UR-IT) provides true, transparent TCP address authentication, while hardening network protocols to improve the security of all protected computers. This is accomplished without implementing a traditional network stack, which is often the target of numerous attacks or exploits. |
Arxceo’s PnPro, or Plug and Protect, architecture encompasses a combination of both hardware and software innovation that provides the underpinnings for the most robust implementation of attack prevention in the areas of Anomaly Intrusion Detection, Protocol Enforcement, Anti-Reconnaissance, and Address Authentication. Products based on PnPro are quick to deploy, easy to administer, and extremely difficult for attackers to detect, much less compromise.
The PnPro architecture starts with a Layer 2 bridge implementation using dual network interface cards (NICs) that do not use a network stack for receiving or sending network packets. The Ally IP1000 provides two pairs of 1000BaseT, or 1Gigabit, NICs. One of these 1000BaseT NICs also has the ability to continue passing traffic if the device fails or loses power – as if the device was never installed in the first place. Arxceo’s feature of passing traffic during a “crashed state” is called NetFailOpen™ and administrators can choose to fail open or closed based on their specific needs or preferences.
An adaptive and intuitive pre-processing engine, Tag-UR-IT also provides anti-reconnaissance 'false' data to network scans and helps thwart would-be attackers from accurately analyzing network vulnerabilities. Even "slow and low" bounce scanning does not return correct information. Additional benefits of this unique implementation are the extremely fast performance provided by operating without a network stack while remaining invisible to attackers.
Tag-UR-IT utilizes a unique tagging methodology to tag network traffic, adding relevant information -- such as source IP addresses, OS version and date/time stamps -- to each transmitted packet without affecting the integrity or compatibility of other network devices and protocols.
The Ally IP1000, PnPro and Tag-UR-IT technology enhances the security of existing firewall-protected corporate and government sites. Arxceo products provide a more secure DMZ front-end that guarantees every TCP/IP source address arriving from the Internet is who they say they are. Coupling this IP Source Authentication filter with superior anti-reconnaissance alerts and responses, allows administrators to fully realize when truly dangerous cyberhackers are targetting their site. Arxceo's products are undetectable on the network and do not require any modifications to routing tables or other network configurations -- it's truly "plug and protect". Therefore, PnPro is also the perfect technology for today's 'bulkhead' requirements - protecting the LAN from intrusions coming from the inside, as opposed to the traditional front door firewall role. Application or database server protection is now easy, cost effective, and literally free of performance impacts.
