|
Checkpoint OPSEC Certified |
|
Sanctum, Inc. is a member of Check Point's Open Platform for Security (OPSEC)
which was founded in 1997 to provide complete, integrated multi-vendor security
solutions.
AppShield integrates with Check Point's VPN-1/FireWall-1 using both ELA
(Event Logging API) and SAM (Suspicious Activity Monitoring).
AppShield uses the OPSEC Event Logging API (ELA) to send Web application
specific security event notifications to Check Point's VPN-1/FireWall-1. When
AppShield detects any unauthorized behavior at the application level, it sends
an alert identifying the computer that initiated the attack as well
as the duration of the violation. The administrator can then analyze these
alerts and terminate the malicious connection. This combined technology
provides joint customers with a centralized monitoring and control capability
to proactively prevent network and application-level hacking.
AppShield can be also be configured to use the OPSEC SAM in addition to ELA
to request Check Point's VPN-1/FireWall-1 NG to block specific IP addresses
from coming through the firewall. While AppShield may be already blocking these
IP addresses from accessing the Web Server applications, SAM provides customers
with a proactive, automatic way to stop these same malicious users
from attacking other resources behind the firewall.
|