Understanding the Theory of SmartDefense

Previous page
Table of content
Next page

SmartDefense takes a different approach than a standard intrusion detection system (IDS). It does not attempt to counter each new attack that is discovered ; instead, it protects your network against entire classes of attacks. SmartDefense performs strict sanity checks on packet headers and protocol data to prevent any malformed information getting into your network.

For example, instead of watching for an extensive list of attacks that can be used against DNS servers, SmartDefense will check DNS packets for compliance with the RFC standard for DNS packets. This behavior can protect against a large number of current and future exploits, without the need for continual signature updates. This method, of course, will not protect against every available attack, because many attacks are difficult to distinguish from valid traffic flows. Some of these checks may also be too strict and will subsequently drop valid traffic that is required for your applications to function properly, which is why you have the ability to change the sensitivity levels or even turn off the protection entirely.



Previous page
Table of content
Next page
Check Point NG[s]AI
Check Point NG[s]AI
ISBN: 735623015
EAN: N/A
Year: 2004
Pages: 149
BUY ON AMAZON
Database Modeling with MicrosoftВ® Visio for Enterprise Architects (The Morgan Kaufmann Series in Data Management Systems)
FileMaker Pro 8: The Missing Manual
Visual C# 2005 How to Program (2nd Edition)
Cultural Imperative: Global Trends in the 21st Century
Programming .Net Windows Applications
Understanding Digital Signal Processing (2nd Edition)
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy