IPS

The security landscape continues to evolve, so you need network security that delivers preemptive protection, visibility, and control. IBM® Security Network Protection (XGS) is a next-generation intrusion prevention system (IPS) that enables you to stay ahead of the threat, providing protection against tomorrow's threats today.

 

The Next Generation IPS provide the following:

  • Protection against unknown threats, such as zero-day attacks and mutated threats.
  • Visibility into network activities, such as applications used and websites visited, including encrypted traffic (SSL Inspection).
  • Control over specific application actions, down to the user level.
  • IBM X-Force® threat intelligence.
  • IBM Virtual Patch® technology, which protects your systems prior to being patched.

 

Protection against evolving threats

Security threats today are continually evolving. With the rapid growth of cutting-edge web applications and increased file-sharing, activities that may have been considered harmless in the past could become potential openings for attackers. Traditional security means, such as anti-malware software and firewalls, have become easier to bypass. The need for more advanced, proactive threat protection is critical in order to help ensure productivity, data security and compliance. This means providing comprehensive protection against new and emerging web application threats, the ability to detect embedded shellcode threats and other advanced features.

 

Critical insight and visibility

By combining several key security capabilities, IBM Security Network Protection is able to go beyond basic threat protection and provide IT professionals with critical insight and visibility into their enterprise network activity, such as which applications are being used, which websites are being visited and who is visiting them. To help improve security, organizations need to know exactly what is going on within their networks including which applications are being used and types of web sites being accessed from the corporate network. These activities can create opportunities for attacks, which can cause data loss, violate corporate policies or introduce compliance issues. IBM Security Network Protection can also provide visibility into bandwidth usage to help identify non-business-critical activities that consume high amounts of bandwidth and resources.

 

Granular control over network activity

Building upon high levels of threat-protection and network visibility, IBM Security Network Protection includes granular control functionality, which enables users to act on newly acquired insight into the network. Designed to reduce potential attack vectors and exposure to threats, this granular control functionality provides insight into common attack delivery methods such as social media sites to help identify and protect against emerging attacks such as spear phishing and other advanced threats targeting users.

 

Virtual networks

In addition to protecting physical networks, organizations also need to protect their private virtualized networks from advanced persistent threats and malware. IBM Security Network Protection for VMware provides comprehensive protection, visibility and control to help secure private cloud virtualized environments. IBM Security Network Protection for VMware is a virtual appliance solution that provides the same protection against attacks that the IBM Security Network Protection physical appliance provides in legacy networks.

 

Seamless deployment and integration

IBM Security Network Protection can be seamlessly deployed into a wide variety of environments. This family of products includes flexible features such as interchangeable network interface modules (NIMs) to support a wide variety of networking standards and configurations as they change over time. It also provides flexible performance licensing to allow performance upgrades without hardware changes utilizing a simple license upgrade. A pre-configured X-Force default security policy is available out-ofthe- box, and appliances can be quickly deployed and centrally managed across a large number of sites using IBM Security SiteProtector™ System.

 

 

Also, you can find its data sheet here

The security landscape continues to evolve, so you need network security that delivers preemptive protection, visibility, and control. IBM® Security Network Protection (XGS) is a next-generation intrusion prevention system (IPS) that enables you to stay ahead of the threat, providing protection against tomorrow's threats today.

 

The Next Generation IPS provide the following:

  • Protection against unknown threats, such as zero-day attacks and mutated threats.
  • Visibility into network activities, such as applications used and websites visited, including encrypted traffic (SSL Inspection).
  • Control over specific application actions, down to the user level.
  • IBM X-Force® threat intelligence.
  • IBM Virtual Patch® technology, which protects your systems prior to being patched.

 

Protection against evolving threats

Security threats today are continually evolving. With the rapid growth of cutting-edge web applications and increased file-sharing, activities that may have been considered harmless in the past could become potential openings for attackers. Traditional security means, such as anti-malware software and firewalls, have become easier to bypass. The need for more advanced, proactive threat protection is critical in order to help ensure productivity, data security and compliance. This means providing comprehensive protection against new and emerging web application threats, the ability to detect embedded shellcode threats and other advanced features.

 

Critical insight and visibility

By combining several key security capabilities, IBM Security Network Protection is able to go beyond basic threat protection and provide IT professionals with critical insight and visibility into their enterprise network activity, such as which applications are being used, which websites are being visited and who is visiting them. To help improve security, organizations need to know exactly what is going on within their networks including which applications are being used and types of web sites being accessed from the corporate network. These activities can create opportunities for attacks, which can cause data loss, violate corporate policies or introduce compliance issues. IBM Security Network Protection can also provide visibility into bandwidth usage to help identify non-business-critical activities that consume high amounts of bandwidth and resources.

 

Granular control over network activity

Building upon high levels of threat-protection and network visibility, IBM Security Network Protection includes granular control functionality, which enables users to act on newly acquired insight into the network. Designed to reduce potential attack vectors and exposure to threats, this granular control functionality provides insight into common attack delivery methods such as social media sites to help identify and protect against emerging attacks such as spear phishing and other advanced threats targeting users.

 

Virtual networks

In addition to protecting physical networks, organizations also need to protect their private virtualized networks from advanced persistent threats and malware. IBM Security Network Protection for VMware provides comprehensive protection, visibility and control to help secure private cloud virtualized environments. IBM Security Network Protection for VMware is a virtual appliance solution that provides the same protection against attacks that the IBM Security Network Protection physical appliance provides in legacy networks.

 

Seamless deployment and integration

IBM Security Network Protection can be seamlessly deployed into a wide variety of environments. This family of products includes flexible features such as interchangeable network interface modules (NIMs) to support a wide variety of networking standards and configurations as they change over time. It also provides flexible performance licensing to allow performance upgrades without hardware changes utilizing a simple license upgrade. A pre-configured X-Force default security policy is available out-ofthe- box, and appliances can be quickly deployed and centrally managed across a large number of sites using IBM Security SiteProtector™ System.

 

 

Also, you can find its data sheet here