Stonesoft Discloses 163 New Samples of Advanced Evasion Techniques
10/10/2011 | 08:15am
The network security company Stonesoft today announced it has
delivered 163 new advanced evasion technique (AET) samples for global
vulnerability coordination. The new samples include AETs over a number
of various protocols, including IPv4, IPv6, TCP and HTTP.
Since the discovery of AETs a year ago, Stonesoft has continued
extensive research in the area and has now delivered a new set of 163
AET samples to CERT-FI (Finnish national computer security incident
response team) for global vulnerability coordination. The set is
comprised of 54 atomic evasions and 109 combinations that can be further
combined with each other or with the evasions in the previous releases
to create new AETs. They work efficiently also over IPv6, which results
in increased security risks and challenges.
In Stonesoft's tests, the latest samples of AETs have successfully
bypassed intrusion prevention system (IPS) devices currently on the
market. As the number of AETs and their potential combinations is
constantly growing, building efficient protection against them requires
profound understanding of network traffic. However, most network
security vendors still demonstrate a lack of understanding on where the
problem stems and how to resolve it.
"Network security vendors have now had more than a year to provide their
customers protection against AETs, but unfortunately we still have not
seen much success in this area. Very few vendors have truly understood
the magnitude of the problem, while some are struggling to provide some
kind of protection. Most of the vendors who acknowledge the problem are
incapable of building a working solution - instead, they are keeping
themselves busy doing temporary and inflexible fixes. The rest just
ignore the issue and do nothing," said Ilkka Hiidenheimo, founder
and CEO of Stonesoft.
According to Stonesoft, network security must be regarded as a dynamic,
constantly evolving process. A security vendor who still uses 10-year
old protocol normalization methods in order to look for exploits or
other malicious activities is prone to miss new threats. The core
functionality of the protocol parsing cannot be static - instead, it has
to evolve in order to meet the constantly changing threats. While new
exploits, vulnerabilities and even attack vectors are constantly
discovered and must be addressed quickly by security products, these new
evasions require equally dynamic and fast responses.
For more information about AETs, please visit www.antievasion.com
or www.stonesoft.com.
About Stonesoft
Stonesoft Corporation (NASDAQ OMX: SFT1V) delivers proven, innovative
solutions that simplify network security management for even the most
complex network environments. The StoneGate Platform unifies management
of entire networks -- including StoneGate and third-party devices --
blending integrated threat management, end-to-end high availability and
network optimization into a centrally controlled system. As a result,
Stonesoft provides the highest levels of proactive control, always-on
connectivity and compliance at the lowest total cost of ownership (TCO)
on the market today. Founded in 1990, the company is an established
leader in network security innovation with corporate headquarters in
Helsinki, Finland, and Americas headquarters in Atlanta, Georgia. For
more information, visit www.stonesoft.com,
www.antievasion.com
and the corporate blog http://stoneblog.stonesoft.com.
Stonesoft Corporation
Heather Pritchett, 678-578-8429
heather.pritchett@stonesoft.com
or
Media
Relations:
Bower Communications
Hannah Bower, 404-371-3989
hannah@bower-communications.com
© Business Wire 2011
