McAfee Launches Security Framework for Application, Network VisibilityBy Channel Insider Staff | Posted 2011-10-12 Email Print
WEBINAR: On-demand webcast
Take Advantage of Cloud Backup to Kick-Start Your Disaster Recovery REGISTER >
The Network Security Framework builds on the McAfee Network Security Platform to provide threats intelligence, risk management, data analysis and network visibility.
McAfee announced a network security framework designed to provide network administrators with intrusion prevention systems that provide context, content and application awareness.
The new network security framework integrates intrusion prevention systems with advanced features such as application visibility and integrated threat context, McAfee said Oct. 11. The framework is based on Network Security Platform 7 for network intrusion prevention system and is focused on helping enterprises prevent increasingly sophisticated attacks on their networks, according to the company.
The McAfee framework also includes application awareness and control, predictive threat intelligence, context-aware security and content analysis. Network Security Platform integrates with other McAfee products and third-party technologies, according to Tyler Carter, senior group manager at McAfee. The combined tools give administrators complete visibility over what is happening on the network, McAfee said.
"Each of the technologies in the framework integrates with Network Security Platform to provide a single solution to address next-generation intrusion prevention needs," Carter told eWEEK.
Network Security Platform provides the core-IPS capabilities in the framework, including advanced intrusion prevention system, application visibility and control, up-to-date threat information from McAfee Global Threat Intelligence, heuristics to detect botnet behavior and traffic, and threat correlation, according to Carter. Protocol-based inspection tools protect users from advanced malware, exploits targeting zero-day vulnerabilities, distributed denial-of-service attacks, and botnets. The platform can also be extended to included advanced network and data forensics as well as data leak prevention capabilities.
Application visibility and control includes Layer 7 visibility over 1,100 applications and an enhanced rules engine that can correlate application activity with network attacks. The framework provides insight into system and user behavior as well as network activity in both the physical and virtual environment. Vulnerability scans also proactively uncover problems before they are exploited.
Data collected and analyzed by McAfee Labs for the McAfee Global Threat Intelligence cloud service provide detailed threats information. The data provides administrators the ability to make security decisions based on the identity and reputation of hundreds of billions of file, IP addresses, URLs, protocols and geo-locations data, McAfee said.
To read the original eWeek article, click here: McAfee Unveils Security Framework for Application, Network Visibility