Endeavor Powers Secure Computing

Endeavor will provide prevention signatures to Secure Computing

Dark Reading Staff, Dark Reading

April 13, 2007

2 Min Read

MCLEAN, Va. -- Endeavor Security Inc., a security Knowledgebase company, announced today that it will provide prevention signatures to Secure Computing (NASDAQ: SCUR), the global leader in enterprise gateway security, under a multi-year agreement. The new prevention signatures will be included in the SidewinderR 7.0 network gateway appliance and are based on Endeavor's FirstLight component-based signatures.

Customers of Secure Computing's Sidewinder appliance line will receive constant signature updates from a Global Attack Grid of sensors. This Early Warning capability will enable customers to receive updates to their Sidewinder signature databases from attacks that are seen in Europe or Asia, before they reach North America. The FirstLight Signature Service offers over 8,000 signatures with the BOT library and malware additions, increasing at approximately 400 signatures per month.

"When we decided to add signature-based IDS/IPS to our Sidewinder 7.0 Network Gateway Security appliance, we looked for a partner who shares our commitment to balancing cutting-edge technology with time-tested security principles. Endeavor's broad detection grid and unique component-based approach combine to take advantage of habits and trends in the attacker community. By basing their signature development on the behavior of the black hat community, as well as the research of the white hat community, Endeavor helps us provide our Sidewinder customers with highly relevant signature updates much faster than other services," said David Diehl, senior principal engineer, Secure Computing.

"We deliver an independent source knowledgebase in a format that is tuned for our customer's engine and we couple that with the tools and user interfaces to make it simple and robust. We are excited to be partnered with Secure Computing and to witness the robust combination of a true application layer firewall with our IPS signatures," said Chris Jordan, CEO of Endeavor Security.

The key differentiators in the FirstLight Signature offering include:

  • Accuracy - FirstLight Component Based signatures cover the attack Exploit/Vulnerability, but also cover the Infection vector, Payload and Frame;

  • Completeness - FirstLight signatures reference the entire signature set and are constantly reviewing, updating and testing all of the signatures on a global intelligence sensor grid. FirstLight technical analysts "Collect & Run" process produces signatures not captured by the attack grid.

  • Relevancy - FirstLight provides a rating indication as to whether or not a given attack is likely to hit your network, using a global honeynet which tracks occurrences.

  • Timing - FirstLight Early Warning grid detects new events and quickly generates a signature for deployment in seconds. This capability provides our technical analysts more time to validate and test our signatures before distribution.

Endeavor Security

Secure Computing Corp. (Nasdaq: SCUR)

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights