Checkmarq Intrusion Prevention Systems

The Checkmarq Intrusion Prevention System (IPS) is a remote managed security solution that makes Intrusion Prevention available for all companies. The Checkmarq IPS appliance is placed in-line in front or inside your company network. Because the appliances bridge, the appliance can be placed anywhere in a company network without causing additional maintenance. As data passes through the IPS, they are submitted to a deep packet inspection that can determine whether the passing data is legitimate or harmful. By placing a Checkmarq appliance anywhere in your network, there is a instantaneous security for layer 2-7.

Checkmarq also inspects at application level which makes fast and reliable protection from all passing data traffic. The Checkmarq IPS also protects VoIP infrastructure, routers, switches, DNS and other critical infrastructure from malicious attacks, either manual or automated. By keeping unwanted traffic off a company network, Checkmarq provides better functionality within a company network by reducing the unnecessary traffic on the network, thus making the internal speeds higher and making sure of a better performance.

The Checkmarq Vulnerability Database Feed is an essential part of the protection - a highly specialized hardware-based intrusion prevention platform consisting of network processor technology and Checkmarq's own set of custom rules. The Checkmarq CDVF Engine is the fastest and most effective worldwide. The technology has been fine tuned for one specific reason and that is Intrusion Prevention. Because of this fine tuning Checkmarq is able to provide the fastest and most extensive IPS solution. The CDVF consists of custom made rules for each vulnerability found, except for exploit that use the same exploit as earlier versions. Using state-of-the-art hardware Checkmarq has been able to optimize speed and intensive scanning to provide customers worldwide with the best IPS possible, that works from layer 2-7.

The Checkmarq CDVF uses classifications of traffic to ensure that logging attacks does not interfere with any other traffic that needs to pass through.

The Checkmarq IPS offers a range of products that differ in through-put and simultaneous connections depending on what type of data traffic that needs to be analyzed. Everything that takes place on the Checkmarq appliances has been optimized and has almost no latency.

Checkmarq Management Portal

The Checkmarq Management Portal (CMP) is an extensive tool for administration and control of your Checkmarq appliance. Using the CMP you can:

View generated logs;
View statistics concerning your Checkmarq appliance;
Generate reports;
Administrate appliances, entitlements and user profiles.

Knowing that your network is protected is a good feeling, but seeing the facts and being able to provide cyber cops all around the world with analytical information about your attacker, now that is even better. Checkmarq provides customers with an online portal that shows in real time what is happening on the customers network concerning attacks and potential threats. This means that customers can log-in to their portal from any location worldwide and directly see the current situation, besides being able to see the history from earlier attacks. If customers prefer their logs to not be available outside of their own network, then they only have to install an local management system (LMS) to be able to combine all logs from the Checkmarq with their current management system. Besides these points our portal of course has standard facilities such as password changes, network configuration modules, reports, account management, etc.

Reports

This is a very important and time saving facility. Pre determined reports can be sent periodically to different mail addresses and can differ in structure. For example: If your manager just wants to know what has been stopped by a Checkmarq but doesn't want to receive all the technical information, then he can be sent a management report that shows tables and top 10 attacks. It can be configured to be on just one page to make it very comprehensive. However if the report is for a technical person within the organization, then it can be configured to be as extensive as possible, by even showing port numbers and explanations about the exploit that was used. This can also be very handy when it concerns legal questions about somebody trying to break in to your network. All these reports can be sent to different mail accounts, depending on who needs the information and when. For an example in printable format please click here

HIPAA Security Requirements Made Simple

Protecting the confidentiality, integrity and availability of patient information is no longer just a best practice for healthcare organizations, but a legal requirement. The Health Insurance Portability and Accountability Act (HIPAA) mandates that all healthcare organizations effectively meet Administrative, Technical and Physical safeguards to protect the privacy of patient information, and maintain data integrity for employees, customers and shareholders. Checkmarq has deployed appliances throughout the health sector and has proven to be HIPAA compliant in all projects. The proven technology has helped organisations save time in receiving certification because Checkmarq is a known good solution within network security and is there for accepted as a non issue for HIPAA. This means that time and expense is saved by placing a Checkmarq appliance at your network border or within your network.

Checkmarq's Approach to HIPAA Compliance To insure companies achieve compliance, Checkmarq has all services and appliances checked for compliance with the rules of HIPAA, including phases for Assessment, Design, Deployment, Management and Education. Analyzation of the companies policies referring to HIPAA is done by third trusted parties that have proven records concerning certification projects. If needed Checkmarq can refer a customer to a trusted third party for further information about HIPAA compliance and the steps that need to be done.

Checkmarq HIPAA compliance brief

How Checkmarq IPS helps PCI compliance

Payment Cards Industry Compliance is a way for companies to ensure that they handle sensitive information with care. Currently, being PCI compliant means that YOU are in compliance with the four major credit card companies. We're going to try to explain how these policies came about, and how you can be compliant.

As in December 2004, Visa, Mastercard, American Express, JCB, Diner's Club and Discover joined together to merge their programs and develop the Payment Card Industry Data Security Standard (abbreviated PCI DSS), it is required for all entities that participate in the card payment system i.e. those entities that process, store or transmit cardholder account and/or transaction information to adhere to the requirements of the PCI DSS. This includes all acquirers, merchants, retailers, and payment service providers.

Checkmarq not only helps you with one requirement of the PCI-list, also Checkmarq helps you keep your customers faith, by securing their information and by offering a very high security levels that is easy to maintain, so you have time for doing more business.

Checkmarq PCI compliance brief

SANS

SANS is the most trusted and by far the largest source for information security training and certification in the world. It also develops, maintains, and makes available at no cost, the largest collection of research documents about various aspects of information security, and it operates the Internet's early warning system - Internet Storm Centre. The SANS (SysAdmin, Audit, Network, Security) Institute was established in 1989 as a co-operative research and education organization.

Its programs now reach more than 165,000 security professionals, auditors, system administrators, network administrators, chief information security officers, and CIOs who share the lessons they are learning and jointly find solutions to the challenges they face. At the heart of SANS are the many security practitioners in government agencies, corporations, and universities around the world who invest hundreds of hours each year in research and teaching to help the entire information security community.

Sarbanes-Oxley (SOX)

The Sarbanes Oxley Act of 2002 (SOX) is the most important securities legislation since the federal securities laws of the 1930s. It is a framework of acceptable corporate conduct to improve investor confidence in the integrity of corporate disclosures and financial reporting. SOX was enacted for the purpose of reforming the reporting, governance and disclosure of public company financial statements and records. Companies affected by SOX include each publicly traded company, its divisions, and all of its wholly owned subsidiaries as well as public multinational companies engaging in business in America.