Disclaimer: This information comes from sources that cannot be verified. As such, make no assumptions about its completeness or accuracy. We endeavor to keep this information up to date as much as possible. Feel free to send comments/ updates to the Security News Editor.

October 20, 1997, Section: Management & Security

Security Vendors Unveil Their Wares At N+

By Rutrell Yasin

Atlanta - Multidimensional security, enhanced administration and secure virtual private networking were some of the key themes as security vendors made their presence felt here at NetWorld+Interop earlier this month.

Seeking to move beyond its firewall roots, Trusted Information Systems announced its plans to acquire Haystack Labs, maker of advanced intrusion detection and monitoring software, for an undisclosed amount of stock. Haystack's Stalker and WebStalker packages let security administrators detect unauthorized users or activities on servers, systems and Web sites. The software can respond to attacks by disabling a logon or terminating a process, then restoring data from any changes that might have been made during the attack.

TIS' (www.tis.com) move is in line with its strategy to become a "multidimensional security" company, said James Ishikawa, product director at TIS. Detection and response software packages like Stalker are becoming important complements to traditional firewalls because 70 percent of security attacks come from inside an organization, he said.

In addition to acquiring the intrusion detection software, TIS is enhancing its Gauntlet firewall line with antivirus, reporting, URL filtering and security policy management capabilities through partnerships, Ishikawa added.

Internal Threats

Several other vendors at N+I launched new products that protect corporations from internal threats, and analysts said the trend will continue. The intranet firewall market will take off as companies recognize that most security threats emanate from inside the organization, said Michael Zboray, a Gartner Group (www.gartner.com) information security analyst.

CyberGuard Corp. (www.cyberguardcorp.com) introduced a firewall designed especially for intranets. The CyberGuard IntraNT Firewall can secure NT workgroup applications through smart proxies for user authentication between clients and servers; a Lotus Notes-aware proxy; and an Oracle SQL*Net proxy to secure Oracle SQL database applications, the company said.

The IntraNT Firewall will be available to participants in CyberGuard's Intranet User Program next month. Prices start at $2,495 for the firewall and $495 for the SecureGuard for NT feature.

Not all the security vendors at the show focused on intranet technology. Security Dynamics (www.securid.com) announced that it has extended the administration capabilities of its authentication tool, ACE/Server.

ACE/Server 3.1 lets IT managers designate roles for security administrators, perform remote administration of servers from a central console, patch up aging tokens and add support for mobile users, according to Walt Sizer, product manager for applications at Security Dynamics. It is available now and costs $3,950.

Other new features include unattended log management, which lets administrators perform log maintenance automatically. This can be done according to type, frequency and method. Support for the Radius (Remote Authentication Dial-In User Service) protocol lets ACE/Server manage Radius users from a single point of administration. ACE/Server is the foundation for Security Dynamics' Enterprise Security Services strategy.

On the VPN front, RedCreek Communications (www.redcreek.com) announced a partnership with Fourelle Systems. The agreement calls for the integration of Fourelle's Venturi caching compressor with RedCreek's Ravlin PCI-based encryption card. The compression and encryption product will give network users a more secure, high-speed VPN, according to RedCreek officials.