Top Layer Networks, a provider of performance intrusion prevention solutions, is shipping the latest version of its flagship IPS 5500 intrusion prevention solution - the E-Series. In addition, Top Layer's' new IPS Controller management software provides real-time "Command and Control" functionality to configure and manage multiple IPS 5500 units throughout the network.

The continued discovery of vulnerabilities in commercially-deployed software puts servers and client workstations at risk for becoming compromised by Spyware, viruses, "botnet" programs and other malicious code. In 2006 and 2007, the prevalence of vulnerabilities in file-handling software, such as various components of Microsoft operating platforms, is increasing. Top Layer has created and added "TopInspect" File Validation to its new E-Series IPS solution to address this important trend in the evolving threat landscape.

The IPS 5500 E-Series uses TopInspect Deep Packet Inspection to analyze network traffic as two distinct parts: Protocol Validation Modules (PVM's) inspect the network protocols that are used to initiate communication and carry payload data from one computer to another; Data Validation Modules (DVM's) inspect the actual files that are carried as payloads by the network protocols.

Unlike most IPS solutions that use regular expressions or compound signatures to inspect network traffic, the IPS 5500 E-Series uses file-format-awareness to identify the type of payload being carried, and then uses a Data Validation Module that was specifically created for that file format to complete the inspection. This leads to fewer "signature" updates, better coverage of multi-vector vulnerabilities, and fewer false positive indications.

"Compromised computers are the vehicle by which a significant portion of 2007 cyber attacks are delivered," said Peter Rendall, president and CEO of Top Layer Networks. "It is crucial that enterprise organizations protect their computing infrastructure from the threats which can lead to compromised systems, including remote exploits, Spyware, P2P applications and other malware."

Optimized for the enterprise, the IPS 5500 E-Series leverages an expanded implementation of Top Layer's proven Three Dimensional Protection (3DP) for both server and client desktop protection. New features include:

PROTECTION AGAINST FILE-BASED REMOTE EXPLOITS - The appearance of true zero-day exploits of commonly deployed software such as the recent spate of zero-day exploits in MS-Word and other MS-Office files, makes reliance on patching an ineffective defense. The E-Series provides immediate protection so that security patches can be tested properly before being installed.

IMPROVED PROTECTION AGAINST SPYWARE AND VIRUSES - The E-Series contains a new IPS Protection Processor that enables the TopInspect File Validation. Anti-Spyware and Anti-Virus protection is implemented on this new E-Series processor.

P2P PROTECTION - The IPS 5500 E-Series includes a P2P PVM that allows for the creation and management of policies to control popular P2P applications, such as BitTorrent, eDonkey/eMule, Gnutella, FastTrack, Skype and Winny. By establishing appropriate usage policies for these P2P applications, organizations can better control network traffic and protect against potential threats that circumvent the firewall through these applications.

VOIP SECURITY - The IPS 5500 E-Series includes protection for vulnerabilities in Session Initiation Protocol (SIP) implementations via a SIP PVM. The E-Series allows for control of how the SIP protocol is used on protected networks, including inspection of SIP control messages and inspection of SDP bodies carried by SIP.

TOP LAYER IPS CONTROLLER SOFTWARE
The IPS 5500 family of intrusion prevention products is optimized for medium to large enterprises, service providers and governments, which typically deploy numerous IPS devices in geographically-dispersed locations, installed as individual units or as high-availability ProtectionClusters. It is critical for the Security Administrator to be able to configure and manage all IPS devices from a central location.

Top Layer's centralized IPS management solution comprises management software and the TopResponse™ Advisory and Update service. IPS Controller software is the "Command and Control" part of Top Layer's central management system. The new version of IPS Controller contains a new "One-Click Aggregation" model that allows the security administrators access to real-time aggregated information from any selection of IPS units under managements, facilitating enterprise-wide real-time incident response.

ABOUT THE TOP LAYER IPS 5500
The IPS 5500 family of products offers the strongest levels of network protection, performance and reliability on the market today. By combining content-based IPS/IDS, stateful firewall and attack mitigation algorithms, the IPS 5500 is the only solution that provides Three Dimensional Protection (3DP) against malicious content, undesired access and rate-based attacks. Top Layer's architecture enables the IPS 5500 to protect enterprises and service providers from sophisticated attacks in real-time while enabling the highest throughput of legitimate traffic.

For more information, see www.toplayer.com. ENS