ICT World & Computing SA proofing sponsored by Lexmark.
 
TippingPoint releases open source code for Tomahawk
 
Date: 08 November 2004 Issue: One Hundred and fourteen (08/11/04 - 13/11/04)
(ICT World)
Category: Technical & Product News
 
Secure Data, a member of the ERP.com Group, and the African distributor for TippingPoint Technologies, recently announced the availability and open source release of Tomahawk, the first test tool designed specifically to evaluate the unique capabilities of network-based intrusion prevention systems (IPS), the company says.
 

TippingPoint is contributing Tomahawk to the public to make IPS testing easier and more affordable for end-users, comments TippingPoint's chief technology officer, Marc Willebeek-LeMair. By enabling users to evaluate security, performance, and usability in real world environments, we believe it will accelerate the adoption of intrusion prevention, and confirm its necessity in today's threat environment. We believe that the benefit of open sourcing the tool to facilitate IPS testing outweighs the potential benefits of commercialising the tool.

An IPS is as much a networking device as it is a security device. Customers should be confident that the IPS they buy will not adversely impact their network, and will perform security functions accurately.

Although intrusion prevention systems are gaining mainstream acceptance, and are recognised as a best practice technology, tools for evaluating these systems are still primitive.

Designed for testing other security products, current tools are expensive, limited in functionality, and unable to simulate the heavy load of real networks under attack.

TippingPoint says that it developed Tomahawk to test the first network-based IPS in 2002, and has been perfecting the tool ever since.

Tomahawk aims to evaluate network performance (throughput and latency) with security accuracy, while simulating real world environments.

With Tomahawk, end-users can test very high throughput with realistic traffic mixes, and ensure that malicious traffic is blocked while legitimate traffic reaches its destination, the company says.

Through the open source community, Tomahawk can receive extended testing and development, end-users can set up their own IPS test beds free of charge, and IPS will reach a broader audience for testing, the company says.

TippingPoint's goal in open sourcing Tomahawk is to cultivate education on IPS capabilities and improve IPS testing through test tool transparency.

TippingPoints UnityOne aims to provide application protection, performance protection and infrastructure protection at gigabit speeds through total packet inspection.

Application protection capabilities are said to provide fast, accurate, reliable protection from internal and external cyber attacks.

Through its Infrastructure protection capabilities, UnityOne aims to protect VoIP infrastructure, routers, switches, DNS and other critical infrastructure from targeted attacks and traffic anomalies.

UnityOne Performance Protection capabilities are designed to enable customers to throttle non-mission critical applications that hijack valuable bandwidth and IT resources, thereby aligning network resources and business-critical application performance.
 
[ Print Now ]
[ Close Window ]