Category: Product

With the 5.0 version of Instant Virtual Extranet, the platform Juniper’s SSL VPN family runs on, the vendor is adding a new dual-mode feature that can automatically switch between IPsec and SSL for transport. This flexibility could help customers cut costs as they decrease their reliance on separate IPsec infrastructures, said Steve Fuller, president and CTO of solution provider Networks Group, Brighton, Mich.

“I’ve had customers who deployed SSL but kept their IPsec infrastructure up and running, usually for a select subset of power users.”

The upgrade also adds enhanced remediation capabilities to the Juniper Endpoint Defense Initiative (JEDI) that enable a network to propose fixes for devices that try to connect but do not meet security requirements, Ganitsky said.

http://www.securitypipeline.com/news/164301972

The Oracle Identity Management suite will guard computer systems and applications against intruders across systems that run operating systems, directories, application servers and applications from different vendors.

For example, Oracle’s suite can seamlessly run IBM’s database, SAP applications and a LDAP directory from Microsoft with no disruptions, he said.

The outfit’s previous suite was a batch of solutions that only protected Oracle’s application server and database offerings, the executive said.

As part of the heterogeneity theme, the ID management suite includes more support for IBM WebSphere and BEA WebLogic applications servers; SQL Server and Oracle Database support for federated identity information; provisioning for Microsoft Active Directory and Microsoft Identity Integration Server; and better Web services support for .NET, TIBCO and WebSphere.

http://internetnews.com/ent-news/article.php/3510621

The Update Rollup, which replaces Windows 2000 SP5 (Service Pack 5), is a cumulative set of hot fixes, security patches and critical updates packaged together for easy deployment. The Update Rollup will contain all security-related updates produced for Windows 2000 between the time SP4 was released and the date the update ships.

The Update Rollup comes just one month before mainstream support for Windows 2000 client and server releases expires on June 30.

Windows 2000 remains the most dominant operating system used in the enterprise, but once mainstream support ends later this month, analysts expect corporate migration to Windows XP to speed up.

http://www.eweek.com/article2/0,1759,1822852,00.asp

The company has integrated its Content Alarm NW product for networks with Content Alarm DT for desktop computers, which is based on technology picked up in Tablus’ recent acquisition of Indigo Security.

The package aims to provide a single dashboard to monitor and manage data to prevent it from being copied, printed or transmitted in violation of a company’s policies. “Our customers said they…didn’t want to manage two separate monitoring reports, two separate policies,” said Jim Nisbet, Tablus’ chief technology officer. Companies are increasingly becoming concerned about sensitive information leaving their corporate networks and employees’ computers, especially since new federal regulations, such as the Sarbanes-Oxley Act, have kicked in.

Tablus’ technology promises to analyze a range of data types, from databases to word-processing documents to source code. It will check the data whether it’s moving across the network, being copied from a computer onto a small storage device or transmitted via e-mail.

“Everyone in the security world realizes there is not just one perimeter that needs protection,” said Dan Keldsen, an analyst at the Delphi Group.

Tablus, based in San Mateo, Calif., plans to begin full shipments of the Content Alarm combination in July. It will offer three sensors, a controller and licenses for up to 500 desktops for $75,000.

Another leak prevention company, PortAuthority Technologies, is expected to announce a new e-mail security feature on Monday. The company, formerly named Vidius, plans to add monitoring of internal e-mail to its coverage of Web-based e-mail and of messages sent outside a company. PortAuthority for Internal Mail promises to check communications sent within a company over Microsoft Exchange and Lotus Domino to make sure they don’t let workers in authorized departments–such as human resources–send social security numbers and other confidential information to unauthorized employees.

http://news.zdnet.com/2100-1009_22-5731369.html?part=rss&tag=feed&subj=zdnet

The latest anti-spam offerings are tied to Microsoft’s web-mail service Hotmail, which is offered through the Redmond, Wash., software maker’s MSN entertainment portal.

Microsoft introduced a preview release of its new ISP service, called Smart Network Data Services, which provides a variety of characteristics of e-mail traffic sent to MSN Hotmail subscribers, which number 200 million active users worldwide. ISPs can find out the volume of e-mail being sent from their Internet protocol space, how the e-mail is affected by Hotmail spam filtering and the percentage of e-mail marked as spam by Hotmail and its subscribers. By providing this information, ISPs can attack problems by cleaning compromised servers, increasing security measures for the host or network, or working with e-mail senders to determine if their spammers or legitimate marketers, Microsoft said.

Earlier this week, the U.S. Federal Trade Commission, in conjunction with government agencies in more than 20 countries, launched an international campaign to educate ISPs about computers that have been hijacked by virus writers in order to send spam.

The new Microsoft site called MSN Postmaster provides information on issues and tools related to fighting junk e-mail sent to MSN Hotmail members.

In January, Microsoft implemented in Hotmail its proposed e-mail sender authentication protocol called Sender ID, which is designed to fight domain spoofing and phishing.

http://www.techweb.com/wire/security/163701457

Tumbleweed Communications announced that it has extended its MailGate email security suite with Recurrent Pattern Detection technology.

The new addition enables Outbreak Detection in a new layer of defense against breaking spam, phishing, spyware, virus and worm attacks sent out in e-mail blasts.

Statistics compiled by the company indicate less than 10% of inbound enterprise message traffic is legitimate e-mail. Since the volume and complexity of malicious traffic grows, the company believes that multi-layer multi-technology approaches are proving to be the most successful at stopping both known and unknown e-mail threats.

The company has positioned the addition of Outbreak Detection to its MailGate products as providing customers with a more complete approach to inbound e-mail security. “We’re committed to providing our customers with an expansive arsenal of security features in order to combat increasingly sophisticated malicious email attacks,” said Tumbleweed CTO John Thielens. “Outbreak Detection, combined with Tumbleweed’s other protection technology, ensures that our customers are comprehensively protected.”

http://www.messagingpipeline.com/showArticle.jhtml?articleID=163700727