Disclaimer: This information comes from sources that cannot be verified. As such, make no assumptions about its completeness or accuracy. We endeavor to keep this information up to date as much as possible. Feel free to send comments/ updates to the Security News Editor.

October 27, 1997, Section: Test Center:Internet Security Tools

RealSecure

Firewalls are imperfect security devices. Notoriously hard to configure, a savvy hacker can easily break through. RealSecure guards against intruders and reveals network weak spots. This product monitors network traffic without affecting performance, analyzes packets for unauthorized activity and known attack patterns, and identifies intruders.

If an intrusion is detected, RealSecure alerts personnel via E-mail or pager, logs the event and pertinent data, and kills the attack by terminating its connection before damage is done. RealSecure guards against unauthorized attempts to get at password files, remote registry access attempts, null session attempts, and attempts to read and write from protected directories.

RealSecure is more effective than having a person monitoring network activity for foul play because RealSecure can detect intrusions lasting only a few milliseconds. If attacks do get through a firewall-or come from behind the firewall-RealSecure logs the activity in an ODBC-compliant database. This way, a network administrator can figure out where the attack originated and how to prevent future attacks through the same security breach.

RealSecure can be deployed across an entire enterprise network with engines placed on critical network segments, all reporting to a centralized management console.

RealSecure was the easiest Internet security application to install of all those tested but did require a fairly high knowledge base of the site infrastructure. RealSecure's simple point-and-click interface is top-notch. Documentation is good, though rarely needed.

RealSecure more than meets its primary goal of monitoring for attacks, although it really is just a partial solution. RealSecure is not nearly as important as a basic firewall, nor can it substitute for one. RealSecure is more of a stand-alone product and does not integrate with all security products, but it does support multiple sites and servers.

---

RealSecure

Price:$4,995

Warranty:90 days

Distributors/Integrators:Distributes to systems integrators and VARs

Authorization Requirements:$5,000 entry fee, maintain at least one ISS certified engineer on staff, annual license volume of $250,000

Model Number: RS-1-

Internet Security Systems Inc.

Atlanta, Ga.

(770) 395-0150

www.iss.net