IntruVert Unveils Intrusion Detection

SAN JOSE, Calif. -- IntruVert Networks (www.intruvert.com), a leading developer of next-generation intrusion detection systems (IDS), today announced general availability of the IntruShield product line. IntruShield is the first IDS solution to integrate patented signature, anomaly, and Denial of Service (DoS) analysis techniques in a single purpose-built appliance. It is also the first system to offer deployment at network aggregation points by supporting detection speeds up to 2 Gbps without any packet loss. The IntruShield system enables highly accurate network attack detection and prevention while dramatically reducing false positives and false negatives. The IntruShield product line comprises the IntruShield 4000 sensor appliance, designed for large networks that require detection rates up to 2 Gbps; the IntruShield 2600, designed for mid to large networks, scales to detection rates up to 600 Mbps; and the IntruShield Security Management system with advanced IDS management tools. "IntruShield sets a new standard for the next generation of IDS," said Parveen Jain, President and Chief Executive Officer at IntruVert Networks. "After four months of product testing at the sites of select Fortune 500 companies, government agencies and large universities, IntruShield has proven that it delivers the performance, manageability and feature set demanded by high-performance enterprise networks at a highly competitive price." In a separate release: IntruVert Networks (www.intruvert.com), a leading developer of next-generation intrusion detection systems (IDS), today announced the results of independent tests performed on its products by Chicago-based lab, Neohapsis. The laboratory independently tested the IntruShield 4000 (I-4000) using its new Open Security Evaluation Criteria (OSEC), a cutting-edge framework for the evaluation of security products that measures performance in real-world environments. Vendors that provided input in the creation of the criteria include Cisco Systems (NASDAQ: CSCO), Enterasys Networks (NYSE:ETS), Internet Security Systems (NASDAQ: ISSX), IntruVert Networks and Intrusion, Inc (NASDAQ: INTZ). IntruShield Test Results: Inline Mode Detection - The IntruShield 4000 was the first IDS product with capability to support the inline/tap mode test. I-4000 successfully detected 100% of attacks under high performance load conditions up to 1.5 Gbps. OSEC tests inline performance at up to 750 Mbps and 1500 Mbps (test maximum) Accurate Detection Without False Positives - The IntruShield 4000 achieved 100% success rate on the OSEC State Tests. These tests verify that the sensor tracks state information from low to very high number of session set-up and tear down rates, and does not report false positives from varying flows simulating real-world traffic. Comprehensive Detection Without Discarding Traffic or Missing Attacks - The IntruShield 4000 scored 100% on the Discard Tests, which verify that the sensor does not discard packets outside its signature set. These tests also verify that the sensor does not fail to detect attacks under low to very high traffic loads. Attack Recognition with Maximum Real Traffic Stress - IntruShield accurately recognized 100% of the attacks when under maximum legitimate traffic stress. This rigorous test is conducted with valid layer 7 traffic using a combination of session sizes averaging 4.5k per transaction and a mix of client browsers using HTTP 1.0 and 1.1 requests. These tests are performed from 80 Mbps to 750 Mbps traffic. Counteract Attack Evasion - IntruShield successfully recognized 100% of the attacks counteracting more than 30 obfuscation and evasion mechanisms. These tests are designed to verify the sensor's ability to deal with published means to evade network-based IDS sensors. Evasion mechanisms ranged from IP fragmentation and TCP segmentation to complex http obfuscation techniques using UTF-8 encoding, fake URL parameters, session splicing and connection reuse. High Sensor Stability and Integrity - The IntruShield 4000 scored 100% on the Device Integrity tests, which verify that the sensor is not easily subject to compromise or Denial of Service (DoS). These tests run randomized source/destination address and port traffic for a longer time period to uncover specific vulnerability or sensor stability issues. "We are very pleased with the results of the OSEC tests," added Parveen Jain, President and Chief Executive Officer at IntruVert Networks. "The IntruShield product line sets a new standard in intrusion detection and prevention with an advanced feature set and industry leading performance required for protecting today's enterprise networks. It's gratifying to have a well-reputed organization like Neohapsis independently validate the advanced capabilities of the IntruShield 4000. Customers can confidently look at the IntruShield product line as the best-in-class IDS now tested by one of the world's best IDS test laboratories." In a separate release: IntruVert Networks (www.intruvert.com), a leading developer of next-generation intrusion detection systems (IDS), today announced the results of four months of product testing at the sites of select Fortune 500 companies, government agencies, universities and in its own IDS laboratories. The Company's IntruShield sensor appliances and IntruShield Security Management systems were installed at eight sites including three federal agencies, two large financial services companies, and three major universities. "Current IDS products generate false alarms at rates reaching 100,000 alerts per day and drop packets at 200-250 Mbps," said Parveen Jain, President and Chief Executive Officer at IntruVert Networks. "Security administrators are overwhelmed by too many false positives and frustrated by the lack of scalability of IDS products for their demanding networks. Our innovative IntruShield system breaks through these barriers by integrating signature, anomaly and DoS detection on a purpose-built platform to deliver industry leading detection accuracy, real-time intrusion prevention, flexible deployment and a significant reduction in total cost of ownership by providing meaningful information rather than raw data." The IntruShield 4000 (I-4000) and IntruShield 2600 (I-2600) are two powerful network IDS sensor appliances that deliver the performance and flexibility required for enterprise-wide IDS deployments. When deployed in-line, the IntruShield sensor appliances are capable of handling deep-packet inspection at up to 2 Gbps. This sensor performance represents 10 times the packet processing capability of today's high-speed firewalls. The IntruShield Security Management system is a centralized, easy-to-use, graphical web-based management system that provides flexible environment configuration, security policy management, forensic analysis, and response management while reducing overall administrative costs. The IntruShield system delivers next-generation network IDS capabilities targeted at protecting large, distributed enterprise networks. IntruVert Networks Inc.