A comprehensive information risk management strategy encompasses policies, training and technology. Pursuing a holistic approach to the collection of information and its classification, distribution and tracking yields a secure business environment that doesn't hold people or the company back.

White Papers & Research

Perforated Perimeter

Any CIO who relies on firewalls to secure his organization's IT infrastructure is deluding himself. Perimeter defenses are subject to increasingly sophisticated cyber attacks, but are compromised by ubiquitous Internet access, the requirement to open specific ports for legacy and packaged applications and the growing need for today's e-business to encompass remote workers and trading partners.

Risk analysis of information assets - their value to the organization and the impact of their loss - shows that the biggest risk to data integrity is from within. If IT assets are to be protected according to their business value, this implies distributed, pervasive security measures applied in proportion to asset value.

Learn more about perforated perimeters

Understanding and Preventing Spyware in the Enterprise

Spyware is the third greatest threat to network bandwidth and security after viruses and spam. It is estimated that spyware infects 67% to 90% of computers connected to the Internet (IDC). Spyware, also known as adware, steals bandwidth and computing resources and exposes an enterprise to liability issues, security risks and also halts productivity. Microsoft estimates that spyware causes more than half of all Windows operating system failures. The problem is so severe that it has moved the U.S. government to pass the Internet Spyware Prevention Act (I-SPY) of 2004, which incurs significant stiff jail sentences and fines but will be difficult to enforce.

Learn more about preventing spyware

Intrusion Prevention: The Future of VoIP Security

Voice-over-IP (VoIP) technology has come of age and is quickly gaining momentum on Broadband networks. VoIP packetizes phone calls through the same routes used by network and Internet traffic and is consequently prone to the same cyberthreats that plague data networks today. The challenge of VoIP security is not new. History has shown that many other advances and trends in information technology (e.g., TCP/IP, wireless 802.11, Web services, etc.) typically outpace the corresponding realistic security requirements that are often tackled only after these technologies have been widely adopted and deployed.

Read this white paper

Denial-of-Service and Distributed Denial-of-Service Protection

The degraded service and lost business from a Denial-of-Service (DoS) attack can lead to staggering costs both during and after an attack. For an e-commerce site like eBay or Buy.com, one day of downtime due to a DoS attack can cost tens of millions of dollars in lost revenue. Beyond the immediate costs, the lasting effects of a successful DoS attack include lost customers, loss of faith in the service's dependability, and damage to the corporate brand. In response to the evolving nature of DoS and DDoS attacks, TippingPoint has developed an arsenal of protection mechanisms corresponding to the methods attackers employ.

Learn more now

The Fundamentals of Intrusion Prevention System Testing

New network-based intrusion prevention systems (IPS) complement traditional security products to provide enterprises with unparalleled protection against external and internal attacks. An exponential rise in application vulnerabilities that are easily exploited through standard ports have rendered traditional firewalls ineffective against attacks. While intrusion detection systems (IDS) can often detect these attacks, these passive systems offer little more than an after-the-fact notification. In contrast, an IPS is designed to examine all traffic that passes through it to detect and filter out malicious packets. Analogous to anti virus systems, IPS's can be centrally managed and armed with additional filters whenever a new vulnerability is discovered.

Read this white paper

Meeting Compliance Goals With the 3Com(R) Enterprise Management Suite

The burden posed by an increasing number of government regulations and more widespread adoption of IT and security best practices impacts businesses. The 3Com Enterprise Management Suite helps enterprises quickly and efficiently meet compliance goals while ensuring a high level of responsiveness to ever-changing IT demands.

Learn more about meeting compliance goals

The Science of Vulnerability Filters: A Virtual Software Patch

In this paper, we explore the technical basis behind a virtual patch, also known as a virtual software patch, a function provided by high-performance intrusion prevention systems (IPS). A virtual software patch is a powerful front-line defense against compromise that can be deployed in minutes to protect an entire organization. The virtual patch capability relies on a special type of IPS filter called a "vulnerability" or "vulnerability-based" filter. Vulnerability filters precisely block attempts to exploit a particular software flaw while allowing non attack traffic to pass unhindered.

Discover the science of vulnerability filters

3Com Secure Converged Networks Glossary

An understanding of IEEE standards and other technical terms is essential for assuring a successful secure converged network implementation. The following resource information is designed to promote that understanding.

Learn more about IEEE standards and other technical terms

Case Studies


Toyota Motors Europe

At Toyota's European headquarters in Brussels, security experts continuously strategize on how to combat threats to the company's gigabit LAN and WAN. Using a TippingPoint™ Intrusion Prevention System (IPS), the automaker is safeguarding its supply chain and defending itself from denial-of-service attacks, worms, spyware, Trojans and viruses. "TippingPoint IPS systems are the smartest, most advanced security solutions available," says Richard Cross, information security officer for Toyota Europe.

Read this case study

Advertisement