Enterasys - Secure Networks

There is nothing more important than our customers.
Skip to content
Security-Enabled
   Infrastructure
Switching
Routing
Wireless
Centralized
   Command and
   Control
Management
Advanced Security
   Applications
Security Applications

spacer

Dynamic Intrusion Response Solution

View Solution Brief PDF

Protecting Against Known—And Unidentifiable—Risks

Many organizations have deployed perimeter firewalls, enterprise anti-virus software and many server hardening patches to protect their IT infrastructures, yet these defenses have failed to stop recurring waves of Internet-borne worms and rogue users. What is required today is a security infrastructure that detects and protects against Day Zero attacks.

Dynamic Intrusion Response (DIR) is a Secure Networks Solution that detects abnormal behavior on the enterprise network, then intervenes to quarantine the offending user or deviant device. Dynamic Intrusion Response isolates and categorizes each security vulnerability, identifies the source and automatically reconfigures the network to mitigate the threat. The enterprise network can be protected against both known and undocumented security risks.

By deploying a Dynamic Intrusion Response Solution, you reduce the exposure of your IT resources to internal and external threats due to targeted business disruptions and opportunistic predators. You more effectively leverage your network infrastructure investment, knowing that the embedded security features proactively address security exposures. And Dynamic Intrusion Response complements already deployed security appliances, without major reconfigurations or disruption to networked users.

Benefits

Secure Networks Benefits

  • Reduces complexity and risk by embedding active, automated security into the network fabric
  • Maps business policy to network implementation
  • Improves visibility into thenetwork as a single entity forfaster trouble resolution
  • Provides secure/reliable access to internal and external users based on their roles within the organization
  • Delivers automation and system-level control to lower the cost of administration, implementation and troubleshooting
  • Enables application growth and expansion
  • Increases productivity through improved access to data/applications
Implementation

Implementing Dynamic Intrusion Response
Dynamic Intrusion Response is an easy-to-implement solution. First, the network administrator defines policies that determine the infrastructure’s response to each class of security event. Then, when aberrant behavior is detected, the offending user or device is immediately identified, and the predefined remedial actions are taken.

Enterasys has a long heritage of developing secure LAN infrastructure, and no other network infrastructure vendor can offer this level of threat isolation and remediation. Enterasys Matrix™ switches and NetSight™ Atlas management applications have been built with the embedded intelligent network features that enable sophisticated threat isolation and mitigation. Enterasys’ proactive Dynamic Intrusion Response Solution is designed to perfectly complement the reactive firewalling and patch management protections you have already deployed.

Key Components

The Foundation of Dynamic Intrusion Response
The network or security administrator creates customized policies that determine the network’s response to each class of security event. NetSight™ Atlas Policy Manager, a graphical, easy-to-use, policymanagment tool, is used to classify both network users and available infrastructure services, and define the rules that determine how services are made available to each user. Enterasys provides default configurations, but all Rules, Services and Roles are fully customizable via our policy configuration wizard.

Security threats are detected by Enterasys’ Dragon™ Intrusion Defense. Dragon diagnoses and categorizes each security incident, and reports them to the NetSight Atlas Console Automated Security Manager. Using sophisticated algorithms and intelligent network mapping, NetSight Atlas Automated Security Manager determines the precise network location of the deviant user or device, and initiates the predefined remedial action. This demonstrates the power and unique capabilities of the DIR solution. By implementing an automated configuration change, the rogue user or deviant device is removed from the network, quarantined, or otherwise controlled.

Secure Networks, Enterasys’ next-generation security architecture, delivers holistic security to the enterprise network. Secure Networks solutions embed security technologies directly into the network fabric itself, to respond to threats proactively, increase operational efficiency, reduce deployment complexity and scale as the network expands. Security is no longer just bolted on, but pervasively integrated throughout the infrastructure.

Why Enterasys

What Sets Enterasys Intrusion Response Apart
Enterasys Matrix™ multilayer switches, Dragon Intrusion Defense and NetSight Atlas network management applications have been built with the embedded Secure Networks features that enable sophisticated threat isolation and resolution. Dynamic Intrusion Response is the perfect complement to the firewalling, packet inspection and patch management protections already deployed in most enterprise networks.