TippingPoint Fights DOS

TippingPoint launches advanced denial-of-service protection

August 23, 2004

2 Min Read

AUSTIN, Texas -- TippingPoint Technologies, Inc. (NASDAQ:TPTI) , the leader in intrusion prevention, today announced that it will extend its award-winning UnityOne(TM) Intrusion Prevention Systems (IPS) to include Advanced Denial of Service (DoS) Protection, which will block a variety of DoS and Distributed Denial of Service (DDoS) attacks including SYN floods, connection floods, packet floods, and difficult-to-detect attacks originating from spoofed and non-spoofed sources.

eNom, one of the largest accredited domain name registrars with over four million names, was protected recently by TippingPoint's new capabilities. Jim Beaver, vice president of operations at eNom, said, "In our evaluation of the leading DoS products, TippingPoint's UnityOne has performed the best. TippingPoint's UnityOne has already blocked several DoS attacks targeting our network."

TippingPoint's Advanced DoS Protection is made possible due to a state-of- the-art hybrid approach using a combination of anomaly filters, SYN proxy, rate shaping, and statistical techniques. UnityOne's new features control the number of new connection requests and established connections to limit the total number of connections and connection rates (the number of new connections per second). This allows legitimate clients full access to protected resources while preventing attackers from flooding a server.

"TippingPoint is excited to help customers like eNom achieve total network security," said TippingPoint's Chief Technology Officer Marc Willebeek-LeMair. "The value proposition of intrusion prevention is clear given today's threat environment, and increases dramatically with the addition of Advanced DoS Protection. Only TippingPoint combines best-of-breed intrusion prevention with Advanced DoS Protection, VoIP Protection, and Performance Protection."

Another Advanced DoS Protection feature performs IP Filtering to block attacks from malicious or spoofed IP addresses. It validates the legitimacy of the packet and source before allowing the connection request to proceed. Other DoS attacks can be caused when a request does not follow proper procedure. TippingPoint's existing security filters are able to block anomalous traffic that does not conform to normal traffic guidelines.

UnityOne's threshold filters monitor traffic patterns and automatically define "normal" traffic based on studies of a network over a period of time. If traffic surges beyond a set percentage of normal traffic, UnityOne's existing anomaly protection automatically takes action according to policy.

Gartner Research Vice President Richard Stiennon said, "Denial of Service (DoS) attacks are on the rise. Denial of Service protection is a natural extension for intrusion prevention systems because they are in-line and have the ability to deeply inspect and classify traffic, then take action accordingly."

TippingPoint Technologies Inc.

Subscribe and receive the latest news from the industry.
Join 62,000+ members. Yes it's completely free.

You May Also Like