RSS Alerts

Related Stories

  • Look After Your SCADA Heart
    Critical national infrastructures such as the National Grid, water and other utility networks have SCADA technology at their heart, but how are these systems protected against hacker, malware and terrorist attacks? Steve Gold spoke to the major players in this important, but little-understood, side of the security industry
  • 2010 Virtual Conference on Endpoint Security - Beyond the Perimeter - Full conference programme revealed
    Infosecurity US magazine is excited to announce the 2010 virtual conference on endpoint security, to be held on February 25, 2010. This one-day event brings a series of topical keynote sessions direct to your computer, giving you the flexibility to learn about the latest information security trends and challenges from wherever you are in the world.
  • It’s a Whole New Ballgame
    Suzanne Hall, chief information officer of the Washington Nationals baseball team, talks to Greg Valero about the unique IT security challenges associated with opening a new ballpark in the nation’s capital
  • Ex-NSA CIO/CTO says Eastern Europe is developing its IT security technology more efficiently
    Eastern Europe is catching up to the West in terms of IT security awareness and, as a result, is starting to develop some interesting solutions to the problem of cybersecurity, according to Prescott Winter, the former CIO/CTO with the National Security Agency.
  • Like Falling Off a Log
    System logs haven’t really changed since the days of the IBM 360, but the need to manage them effectively for security purposes certainly has. Danny Bradbury finds out why log management is so important – and why we aren’t doing it properly
    Members' Content

News

Infosecurity Europe: firms get access to military grade forensics

01 May 2009

It's not often that firms supplying specialist network forensics technology to US government agencies are allowed to supply their systems software to civilian companies, especially outside of the United States, but Utah-based Solera Networks has achieved this.

Talking with Infosecurity at the Infosecurity Show in London this week, Alan Hall, the firm's marketing director - who has had several years of experience with Novell - said that his firm's technology - which is used by a variety of government agencies - allows IT managers to go beyond deep level packet inspection by logging all aspects of network traffic on both physical and virtual systems.

The resultant data, he says, can then be analysed at leisure and allows IT managers to forensically analyse how network incidents - such as unauthorised intrusions - have taken place.

And, presumably, stop such an event happening again.

Solera's deep packet capture, as it is known, is billed as streaming network data at much faster speeds than other companies.

But the appliance technology is not all about hacking forensic investigations, as it can also be used to analyse why a network element is not performing as it should be and benchmarking the network performance for future comparison.

The DS appliance can also be used, says Hall, to set up network triggers and capture the data when certain events occur.

When an event triggers, Solera's technology can send email notifications and SNMP traps.

Once a particular attack or signature has been identified, every packet comprising that event is available, both in raw packet form or accurately rendered in its original format, he explained.

Hall went on to say that the Solera DS appliances can be deployed in both physically and virtual environments, as well as installed on a closely integrated basis with existing network systems, using a set of programming APIs.

http://www.soleranetworks.com

 

 

 

This article is featured in:
Data Loss Internet and Network Security IT Forensics

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water