Security
Aricent
enables network security product vendors to deliver solutions that address
emerging security challenges such as the Internet threats, attacks variants,
evasion, exploits, application vulnerabilities and network infrastructures
issues.
Aricent
provides specialized technical consulting and R&D software services to build
high-performance network security solutions that reduce and prevent emerging
security threats.
-
Aricent security products provide key enforcement functions while
minimizing development time and costs
-
Aricent’s in-house R&D function develops service differentiators to
simplify the overall security solution development and accelerate
time-to-market
-
Aricent offers an integrated network security framework for multi-core
platforms
-
Aricent provides signature libraries for network-based application
classifications and security threats
Aricent
teams deliver a range of specialized services for every aspect of the
security products development lifecycle, from R&D and testing through
rollout and sustenance. Aricent provides end-to-end software services for
Unified Threat Management (UTM), Secure Web Gateway (SWG), Application
Firewall, Intrusion Prevention System (IPS), Gateway Anti-X device, SSL and
IPSec VPN appliances.
The
services in this category include:
-
Attack prevention and threat management services
-
Product development for high performance next generation security
solutions with multi-core architectures or hardware ASICs
-
Product sustenance with complete software maintenance, field report
investigation, release management and feature enhancements.
-
Testing services that include software release testing, integration
testing, regression testing and automation.
Aricent
teams help customers research, develop, test and sustain security products.
These services support products that provide attack and intrusion
prevention, web security, and threat management.
-
Pattern-matching, regular expressions and compound signatures
-
Traffic behavior based signatures with interrogative decode
-
Heuristic approaches (based on packet length) for cryptic and encoded
captures
-
Reverse engineering on encrypted, obfuscated and adaptive applications
-
DPI
to inspect and detect payload file-type with file-format specific rules
-
DDoS
attack analysis and correlation solution
-
Vulnerability signature (protocol anomaly) detection services
-
Protocol normalization and validation
-
Threat signature detection services
-
Anti-phishing, Anti-spam signature detection
-
Bi-directional traffic inspection and filtering for malicious content
-
Advanced testing services for product performance and vulnerability
assessment
-
Product performance benchmarking and security feature scalability tests
-
Product assessment for vulnerabilities through our well-designed
Black-Box Ethical Hacking tests
The open
source-based software framework provides Integrated Network Security and DPI
functionality APIs, which are customizable for proprietary modules/stacks or
open-source security modules across multiple cores with various configurable
options such as feature load balancing. Aricent’s open source based
framework for Integrated Security and DPI includes:
-
Common modules like session management, application decode, session
correlation, statistics, and packet information communication
-
Functional interfaces (API) in security and DPI modules for
configuration and customization
-
Customizable Linux and embedded applications components (FCAPS)
-
Configurable framework for load balancing, multi-core feature
processing, and customized application modules
-
Readily tested with open source-based security feature modules
Aricent
also provides ‘Engineering Reports’ for network-based signature database for
application decode, protocol anomaly, and emerging threats and attacks.
Decode
Analysis Reports (DAR)
with detailed protocol analysis, source-level analysis, signature detection
logic, software design approach and the regular-expressions scripts for
various protocols and payload file attachments.
-
P2P
Security: Filtering BitTorrent, Gnutella, eDonkey, Winny, Skype, and
FastTrack
-
Internet Applications: Encrypted SSL Inspection, Web 2.0
-
VoIP
Protocols: Skype, SIP, H.323, Megaco
-
File-Types: Graphic Formats, Executables (exe), Spreadsheet, Document
(docs, pdf), Compressed File (zip)
-
IM
Protocols: AOL, Yahoo, MSN, ICQ
Attack
Detection Reports (ADR)
with detailed analysis on the attacks, threats and evasion techniques along
with detection logic, software design approach and, measure taken to
validate false positive and negative.
-
Threats: Viruses, Worms, Trojans, Spyware, Phishing, Adware, Malwares
-
Attacks: DoS, DDoS, Smurf attack, Spoofing, Buffer overflow, SYN flood,
Backdoor attacks
-
Evasion: Packet Fragmentation, Stream Segmentation, URL/HTTP Obfuscation
-
Exploits: SQL Injection, Session Hijacking, Parameter Tampering and
Cross-Site Scripting
Aricent
offers security software products that facilitate the development of
wireless and wireline devices. Our products include:
-
Port-based Network Access Control (PNAC) for wireline products
-
802.11i/Robust Security Network Association (RSNA) for WLAN products
-
Reduced time to market with customizable integrated security framework
for multi-core platforms
-
Scalable software architecture for SMB/Enterprise and ISPs
implementation
-
Ease
of integration with existing multi-core devices with routing, switching
and L4-L7 functionality
-
Reduced development effort and time with service enabler and skilled
resource
-
Signature libraries for network-based application classification and
security threats