 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
 |
|
||||||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
 |
 |
 |
 |
 |
 |
 |
|
||||||||
PORTUS Application Protection System
Overview
The PORTUS Application Protection System (APS) functions as an in-line Network Intrusion Prevention System (NIPS) and firewall. PORTUS delivers in-depth protection against known and unknown forms of attack. Protocol Anomaly Detection (PAD) detects and blocks previously unknown forms of attack without the need for signatures while Stateful Signature Analysis (SSA) of the payload data allows detection and blocking of known attacks. Both PAD and SSA can be fine tuned to your unique applications, to provide the highest level of security without producing false alarms. The PORTUS APS is capable of stopping all forms of attack in real-time and preventing them from reaching your protected systems.
In addition to unequaled security PORTUS also provides content filtering, web caching, workload balancing, a fault-tolerant High Availability option and extensive report generation.
PORTUS provides unequaled scalability to meet the requirements of small, medium, large and ultra-large organizations. PORTUS is capable of multi-gigabit per second throughput, and can meet any desired performance or throughput requirements.
Zero-Hour Protection
PORTUS provides Zero-Hour protection, which means new forms of attack are blocked the instant they reach the PORTUS gateway. With PORTUS it is not necessary to wait days for the latest attack signatures to be identified and downloaded for use in an IDS.
Unequaled Security Record
PORTUS has been securing large organizations for more than eleven years and has undergone fifteen product releases. Today PORTUS is the only firewall that has been on the market for more than 10 years without being compromised. No vulnerabilities have ever been reported by CERT, BugTraq, SANS or the FBI's NIPC.
Why choose PORTUS?
PORTUS has been on the market for over eleven years, and is the only product of its kind to have achieved a perfect security record. Security is too crucial an issue to rely upon methods, technologies and products that have a history of being penetrated, and with known vulnerabilities in their code. Over the last eleven years PORTUS has proven over and over again that it is the most advanced and secure product of its kind in the world. PORTUS has undergone over fifteen revisions, and every new release of PORTUS has increased the security, reliability and stability of the product, all the while maintaining the highest levels of performance. Over the years PORTUS has proven that its technology is both FutureReady and capable of providing Zero-Hour(TM) protection, this is possible because more often than not PORTUS integrates protections against many forms of attacks years before they are first deployed.
More than a FirewallPORTUS provides application level defenses that block thousands of application attacks that pass undetected through the best of the Stateful Packet Filters. Embedded intrusion prevention eliminates the need for intrusion detection software at the network boundary.Unequaled Scalability and PerformancePORTUS provides unequaled performance and scalability and is limited by the I/O bandwidth of the hardware. Single systems can configured to deliver more than 8 gigabit per second throughput. Multiple systems can be clustered to provide even higher levels of performance.Integrated High Availability (99.999%) DesignHigh Availability is integrated into PORTUS using fault tolerant hardware and software technology. This provides customers with a highly reliable product that detects, isolates and recovers from hardware and software errors on the fly.Integrated Workload BalancingWorkload balancing allows the use of clustered servers to provide higher levels of throughput. PORTUS automatically detects a server failure and redirects traffic the remaining servers in the server pool. PORTUS automatically reschedules work to the server when it comes back online.ArchitectureHybrid architecture provides maximum security and performance. Application specific proxies provide high levels of security and access control tailored for the application. The Application Program Interface (API) allows site specific extensions to the application proxy. This provides fine grain application control beyond the standard product. Stateful Packet Filters can also be employed for applications that do not require the same level of security. A circuit level proxy provides additional flexibility. This unprecedented flexibility allows the security administrator to configure the firewall to meet unique site requirements.Key Benefits
Key Features
Main Technologies
The main technologies found in PORTUS include:
- Application specific proxies for: e-mail, FTP, HTTP, terminal services (telnet, TN3270), Real Audio & Real Video, Real Time Streaming Protocol (RTSP)
- Protocol Anomaly Detection (PAD) and Stateful Signature Analysis (SSA) provide Network Intrusion Prevention (NIPS)
- Advanced Application proxy with an API
- RPC & UDP proxy
- Integrated Interoperable VPN support
- Hardware Assisted encryption feature available
- Network Address Translation (NAT)
- Socks V4 & V5 proxy
- E-mail controls
- Integrated content filtering (URL, Java,JavaScript, ActiveX, SPAM)
- Fault Tolerant High Availability (99.999%) Option
- Integrated workload balancing
- High Speed web caching
- Dual DNS
- Intrusion Monitoring and Detection
- Graphical User Interface
- Network and Host Security scanners
- Built-in monitors for detecting attacks, checking system and network integrity
- Real-time performance monitor,
- Extensive auditing with report programs that generate more than 57 unique reports
- Automated operations with log rotation and archiving
Software
PORTUS is supported on three operating systems: AIX 5.x , Red Hat Linux ES and Solaris 8+. Automated installation permits the system to be installed in minutes. The installation process hardens the OS and deactivates unwanted programs. PORTUS is also available as an appliance.
Hardware
- PORTUS runs on all systems supported by AIX 5.x, Red Hat Linux ES and Solaris 8+.
- PORTUS supports all network adapters supported by the OS, including 10/100/1000 megabit Ethernet Adapters, 155 and 622 Megabit ATM Adapters, Token Ring and gigabit HIPPI channels.
- PORTUS fully supports and exploits the benefits of SMP servers.
Additional Information
PORTUS is also available as an Appliance, click here for more information on the PORTUS-APS Appliance. If you are interested in receiving additional information about PORTUS please contact us.
PORTUS
is a registered trademark of Livermore Software Laboratories, Inc.
This website and its content © 1993-2005 Livermore Software Laboratories,
Inc.