New products aim to control rogue applications that avoid firewalls

By Ron Condon, U.K. Bureau Chief 29 Apr 2009 | SearchSecurity.co.uk

Enterprise IT news roundup Digg This!     StumbleUpon     Del.icio.us

Instant messaging and open communications applications such as Skype, deliberately channel-hop to avoid detection by traditional firewalls, and allow users to send out attachments without being noticed.

Now a new arrival in the U.K. is promising to provide systems administrators with a clear picture of all applications, even those that try to avoid firewalls.

For more Infosecurity Europe 2009 news Get the latest news and interviews from the conference floor. Check out our live coverage of Infosecurity Europe 2009.

California-based Palo Alto Networks Inc. was sporting the slogan "Fix the Firewall" at its first Infosecurity Europe exhibition in London, and showing off its range of firewall appliances. Head of marketing Franklyn Jones said the products analyse traffic on the fly and match applications against a library of more than 800 signatures, regardless of the port they are using.

By corresponding users to Active Directory, the system is also able to report on and track the application users, rather than just providing an IP address.

Jones said the systems grade applications on a scale of 1 to 5 according to their apparent risk – channel-hopping to evade detection would be one risk factor, for instance. It is then up to the systems administrators to decide to block or allow use of the applications, or just to allow certain users to access the application.

Don't miss need-to-know info! Security pros can't afford to be the last to know. Sign up for email updates from SearchSecurity.co.uk and you'll never be behind the curve. Read more about data protection topics on SearchSecurity.com Connect with your peers to ask and answer data protection questions on ITKnowledge Exchange

The system could also be used to regulate usage of social networking sites or webmail. "We can decrypt Gmail encryption tunnels, and so we could apply granular control, for instance, to allow Gmail, but block attachments going out," said Jones.

The company appointed Vadition Ltd., a Web 2.0 and social networking value-added reseller, as its U.K. distributor, and has won its first U.K. sale at Wellington College in Berkshire.

Palo Alto comes with an impressive pedigree. It was founded in 2005 by CTO Nir Zuk, a former principal engineer at Check Point Software Technologies Ltd. where he helped develop stateful inspection in firewalls. He went on to co-found OneSecure Inc., a pioneer in intrusion prevention, and was CTO at NetScreen Technologies Inc., which was acquired by Juniper Networks Inc, a California-based vendor of network security products, in 2004.

Tags: Threat and Vulnerability Management,  Endpoint and NAC Protection,  Web Application Security,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Threat and Vulnerability Management Microsoft issues temporary fix for Windows Shell zero-day Attackers target Windows Shell zero-day via USB sticks How to stop Conficker: Anti-Conficker patch management, defense Trojan virus attack using hijacked Web browser sessions hits UK banks Law firm security gets positive verdict with UTM device IBM to acquire BigFix for configuration, vulnerability management Perimeter defenses deemed ineffective against modern security threats Critical Adobe Reader, Acrobat update due today Twitter settles with FTC over security issues, careless policies Frustration growing over limited ability to shut down botnets Endpoint and NAC Protection Microsoft issues temporary fix for Windows Shell zero-day Attackers target Windows Shell zero-day via USB sticks Perimeter defenses deemed ineffective against modern security threats Market snapshot: PC virtual desktops on a USB Alternatives to buying full-on network access control (NAC) systems Apple iPad security debated as U.K. launch approaches Microsoft to issue two critical bulletins, SharePoint to remain vulnerable Logical and physical security integrated by U.K. startup Panel debates 'buy vs. build' mobile device security policy management Data encryption methods: Securing emerging endpoints Web Application Security Twitter settles with FTC over security issues, careless policies Report: Google to phase out Windows, cites security issues New tool enables botnet command and control via Twitter Symantec Internet threat report highlights botnet, malware trends Researchers aim to smarten Web application security scanners Security-related social networking issues abound in organisations New cloud VPN service improves application acceleration, security New banking Trojan targets U.K. banks Social networking risks, benefits for enterprises weighed by RSA panel How to prevent Adobe hacks from affecting your organisation

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary Centre for the Protection of National Infrastructure  (SearchSecurityUK.com) Serious Organized Crime Agency  (SearchSecurityUK.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary