From Check Point NGX R65 Security Administration

Summary

SmartDefense not only protects against a variety of recognized attacks that vary from the dissimilar classes of Microsoft networking worms through to DDoS attacks, but it also integrates advanced security technologies that increase a site s protection from complete categories of emerging or unknown attacks.

SmartDefense is founded on Check Point s Stateful Inspection and Application Intelligence technologies, which allow an administrator to drop not only precise attacks, but also complete categories of attacks while still allowing genuine traffic to pass. Application Intelligence is a collection of technologies that detect and prevent application-level attacks by integrating a deeper inspection of application profiles into network security defenses. The core functions of Application Intelligence include:

  • Validating compliance to standards and RFCs

  • Validating expected usage of protocols

  • Blocking malicious data

  • Controlling hazardous application operations

SmartDefense blocks attacks at a Check Point enforcement point which may be either a gateway or a single installation of SecureServer on a host. It does this by implementing Check Point s Stateful Inspection and Application Intelligence technologies. A number of SmartDefense facilities are enforced as an incorporated element of the firewall security policy. These are distributed as an element of the enforcement points security policy. SmartDefense also provides further benefits from the stringent access control to network resources it provides through the deployment of Check Point enforcement points.

Copyright Elsevier Inc. 2008 under license agreement with Books24x7

Products & Services
Network Security Services
Network security services determine vulnerability of networks to outside intruders, as well as maintain anti-viral and firewall updates and usage.
Security Software
Security software programs are used to restrict access to data, files and users on a computer or server.
Network Security Software
Network security software includes everything from remote access protection to firewall and security appliance solutions to email security to web filtering, monitoring, bandwidth protection, and all elements of computer network security/computer security.
Network Firewalls
Network firewalls protect computer networks against unauthorized use or attack. They permit or deny access to private network devices and applications, and represent an important part of an organization's overall security policy. Firewalls may be software applications, hardware devices (such as routers), or a combination of both. They include turnkey products that are relatively easy to install as well as complex, multi-layer installations that require the expertise of a certified network administrator. 
Signals Intelligence Systems
Signals intelligence (SIGNT) systems intercept technical and other intelligence-rated information from foreign electronic emissions.

Topics of Interest

Solutions Fast Track Configuring SmartDefense SmartDefense is completely integrated with other Check Point products. SmartDefense provides object and rule integration across products. Ad hoc or...

Introduction SmartDefense is a compilation of technologies built into the Check Point enforcement point to add extra fortifications against attacks. The technologies include: Network Security, which...

Network Security In this section, we will discuss the best-practice network security provisions of SmartDefense. The Network Security and Application Intelligence technologies are free with...

Introduction The basic principle of any firewall is to allow access to legitimate services while denying all other network access. Although in the past this level of security may have been...

Application Intelligence Many of the most serious threats from the Internet come from attacks that attempt to exploit application vulnerabilities. Because application-driven attacks tend to be...