TippingPoint IPS was designed from the ground up as an Intrusion Prevention System. This means that the Tipping Point IPS was designed from its inception to function in-line with network traffic. This is much different than most of the competition because they were initially designed as IDS’s which is fundamentally different. TippingPoint uses an ASIC-based architecture which allows us to run at multi-gigabit speeds with extremely low latency (microseconds.. not milliseconds) and with a very robust security profile.
Another very important capability of an IPS is filter coverage and accuracy. TippingPoint protection filters are written by industry acknowledged security experts.
They are part of the TippingPoint DVLabs team which consists of over 30 researchers.
DVLabs: TippingPoint DVLabs is a premier research organization for vulnerability analysis and discovery, ensuring TippingPoint customers have the best preemptive protection for vulnerabilities and zero day issues.
Our team consists of industry recognized security researchers that apply their cutting-edge engineering, reverse engineering and analysis talents in our daily operations. The by-product of these efforts fuels the creation of vulnerability filters that are automatically delivered to our customers' intrusion prevention systems through the Digital Vaccine® service. http://dvlabs.tippingpoint.com/
ZDI: Today, there still remains a perception by some in the information security industry that vulnerability researchers are malicious hackers looking to do harm. While there clearly are skilled malicious hackers out there, this remains a very small minority of the total number of people who actually discover new software flaws. In reality, the number of benevolent researchers with the expertise required to discover a software vulnerability is a sizeable, and fast growing group. The dissemination of publicly available vulnerability analysis and discovery tools has helped foster this group of security enthusiasts. Also, it is not uncommon for "white hat" security professionals to stumble onto a new flaw while doing their day-to-day security work. TippingPoint has its own security research organizations via DVLabs. It made perfect sense however to augment DVLabs with the additional zero day research of this growing network of "extended researchers". Our approach was the formation of the Zero Day Initiative (ZDI), launched on August 15, 2005. (You can read some more retrospective on the initial beginnings of the ZDI in this blog posting.)
The main goals of the ZDI are to:
· Extend our DVLabs research team by leveraging the methodologies, expertise, and time of others
· Encourage the reporting of zero day vulnerabilities responsibly to the affected vendors by financially rewarding researchers
· Protect our customers through the TippingPoint Intrusion Prevention Systems (IPS) while the affected vendor is working on a patch We do not resell or redistribute the vulnerabilities that are acquired through the ZDI. http://www.zerodayinitiative.com/
Scalability / Ease of Use TippingPoint supports Bandwidth from 10Mbps to 20Gbps. This allows our enterprise customers to mix and match product to support their inspection needs from the edge to the core. Additionally the easy-to-use central management system (TippingPoint SMS) makes it very easy to manage all TippingPoint devices from a single console.
Market Share and Customer Base TippingPoint has an extremely large user base with referenceable accounts in the Fortune 1000 all the way to the Fortune 10. These are not “beta” customers but are customers using TippingPoint in-line configured to block attacks in real time on production networks.
Independent Testing and Certification TippingPoint is one of the most decorated IPS’s in the industry. If TippingPoint shows up to a test we either get certified or win hands down. Additionally Gartner continues to place TippingPoint in the upper right of the IPS leader’s quadrant.
They are part of the TippingPoint DVLabs team which consists of over 30 researchers.
DVLabs: TippingPoint DVLabs is a premier research organization for vulnerability analysis and discovery, ensuring TippingPoint customers have the best preemptive protection for vulnerabilities and zero day issues.
Our team consists of industry recognized security researchers that apply their cutting-edge engineering, reverse engineering and analysis talents in our daily operations. The by-product of these efforts fuels the creation of vulnerability filters that are automatically delivered to our customers' intrusion prevention systems through the Digital Vaccine® service. http://dvlabs.tippingpoint.com/
ZDI: Today, there still remains a perception by some in the information security industry that vulnerability researchers are malicious hackers looking to do harm. While there clearly are skilled malicious hackers out there, this remains a very small minority of the total number of people who actually discover new software flaws. In reality, the number of benevolent researchers with the expertise required to discover a software vulnerability is a sizeable, and fast growing group. The dissemination of publicly available vulnerability analysis and discovery tools has helped foster this group of security enthusiasts. Also, it is not uncommon for "white hat" security professionals to stumble onto a new flaw while doing their day-to-day security work. TippingPoint has its own security research organizations via DVLabs. It made perfect sense however to augment DVLabs with the additional zero day research of this growing network of "extended researchers". Our approach was the formation of the Zero Day Initiative (ZDI), launched on August 15, 2005. (You can read some more retrospective on the initial beginnings of the ZDI in this blog posting.)
The main goals of the ZDI are to:
· Extend our DVLabs research team by leveraging the methodologies, expertise, and time of others
· Encourage the reporting of zero day vulnerabilities responsibly to the affected vendors by financially rewarding researchers
· Protect our customers through the TippingPoint Intrusion Prevention Systems (IPS) while the affected vendor is working on a patch We do not resell or redistribute the vulnerabilities that are acquired through the ZDI. http://www.zerodayinitiative.com/
Scalability / Ease of Use TippingPoint supports Bandwidth from 10Mbps to 20Gbps. This allows our enterprise customers to mix and match product to support their inspection needs from the edge to the core. Additionally the easy-to-use central management system (TippingPoint SMS) makes it very easy to manage all TippingPoint devices from a single console.
Market Share and Customer Base TippingPoint has an extremely large user base with referenceable accounts in the Fortune 1000 all the way to the Fortune 10. These are not “beta” customers but are customers using TippingPoint in-line configured to block attacks in real time on production networks.
Independent Testing and Certification TippingPoint is one of the most decorated IPS’s in the industry. If TippingPoint shows up to a test we either get certified or win hands down. Additionally Gartner continues to place TippingPoint in the upper right of the IPS leader’s quadrant.