HP/TippingPoint solutions decrease IT security cost by eliminating ad-hoc patching and alert response, while simultaneously increasing IT productivity and profitability through bandwidth savings and protection of critical applications.

Blocking cyber-attacks at multi-gigabit speeds with extremely low latency requires purpose-built hardware. HP/TippingPoint has taken such a revolutionary architectural approach needed for true Intrusion Prevention. Traditional software and appliance solutions operate on general-purpose hardware and processors and are simply unable to perform without degrading network performance. Through rigorous third-party testing, HP/TippingPoint has demonstrated Intrusion Prevention at multi-gigabit speeds, with extraordinary attack prevention accuracy.

HP/TippingPoint’s ASIC-based Threat Suppression Engine (TSE) is the underlying technology that has revolutionized network protection. Through a combination of pipelined and massively parallel processing hardware, the TSE is able to perform thousands of checks on each packet flow simultaneously. The TSE architecture utilizes custom ASICs and high-performance network processors to perform total packet flow inspection at Layers 2-7. Parallel processing ensures that packet flows continue to move through the IPS with a bounded latency of less than 84 microseconds, independent of the number of filters that are applied.

The TSE architecture also enables traffic classification and rate shaping. Sophisticated algorithms baseline “normal” traffic, allowing for automatic thresholds and throttling so that mission critical applications are given a higher priority on the network.

HP/TippingPoint performs comprehensive total packet flow inspection through Layer 7 to continually cleanse Internet and Intranet traffic and accurately eradicate attacks (worms, viruses, Trojans, blended threats, Phishing, Spyware, VoIP Threats, DoS, DDoS, Backdoors, Walk-in Worms, Bandwidth Hijacking) before damage occurs. HP/TippingPoint protects network infrastructure by blocking attacks against routers, switches, DNS and other infrastructure equipment.

Through HP/TippingPoint’s Zero-Day Initiative (ZDI) customers are protected against new threats before vulnerabilities are disclosed to the public.

HP/TippingPoint provides statistical, protocol and application anomaly protection to protect against traffic surges, buffer overflows, unknown attacks and unknown vulnerabilities. The HP/TippingPoint IPS delivers traffic normalization to eliminate malformed or illegal packets, and performs TCP reassembly and IP defragmentation, thus increasing network bandwidth and protecting against evasion techniques. HP/TippingPoint can also act as an access control firewall that can replace CPU intensive router and switch access control lists. Additionally, by rate limiting or blocking unwanted traffic, HP/TippingPoint conserves bandwidth and server capacity to provide complete application protection.

HP/TippingPoint’s Quarantine protection offers a radical new approach to LAN security. By extending the protective power of the IPS down to every endpoint, HP/TippingPoint Quarantine blocks insider threats and walk-in worms, and then communicates with switching infrastructures to isolate offending endpoints with remediation VLANs that prevent network infection. Unlike cumbersome client-based solutions which merely check for endpoint configurations on Windows PCs, HP/TippingPoint’s Quarantine Protection offers an agentless solution that constantly monitors all endpoint activities, instantly eliminating LAN-based threats automatically.

HP/TippingPoint’s DVLabs team is a premier security research organization for vulnerability analysis and discovery. Recognized in 2007 as the fastest growing discoverer of new vulnerabilities and the leader in the discovery of high-severity and Microsoft vulnerabilities by Frost & Sullivan 1 , the team consists of industry recognized security researchers that apply their cutting-edge engineering, reverse engineering and analysis talents in their daily operations. The by-product of these efforts fuels the creation of vulnerability filters that are automatically delivered to HP/TippingPoint customers’ intrusion prevention systems through the Digital Vaccine service. The HP DVLabs Web site serves as a portal into the research laboratories headquartered in Austin, Texas. The portal includes upcoming and published advisories as well as blogs, RSS feeds and other security resources.

HP/TippingPoint is also the primary author of the SANS @RISK newsletter, which contains the latest information on new and existing network security vulnerabilities. Coordinated by The SANS Institute, the SANS @RISK newsletter summarizes newly discovered vulnerabilities, details their impact and informs of actions large organizations have taken to protect their users.

HP/TippingPoint offers ongoing threat prevention against emerging vulnerabilities through the Digital Vaccine service. Digital Vaccines are created not only to address specific exploits, but also potential attack permutations, protecting customers from zero-day threats. Digital Vaccines are delivered to customers twice a week, or immediately when critical vulnerabilities emerge, and can be deployed automatically with no user interaction required. This unique and valuable service allows customers to restore efficiency to the security patching process. The burden of emergency and ad-hoc vulnerability patching is alleviated; as IT personnel can apply patches only as required and at regularly scheduled times.