In providing the vulnerability analysis for SANS every week, the TippingPoint DVLabs security team simultaneously develops new attack filters to address the vulnerabilities and incorporates these filters into Digital Vaccines. Vaccines are created not only to address specific exploits, but also potential attack permutations, protecting customers from Zero-Day threats.
For maximum security coverage, TippingPoint deploys a variety of security filters, including traffic anomaly filters and vulnerability-based filters. In the case of a virus, where there is no underlying vulnerability, TippingPoint delivers attack signatures. Digital Vaccines are delivered to customers twice a week, or immediately when critical vulnerabilities and threats emerge, and can be deployed automatically with no user interaction required.
New filters are continuously fed to the IPS to keep it up-to-date against the latest vulnerabilities. Each filter can be thought of as a Virtual Software Patch that is created within the network to protect downstream hosts from attack. Any malicious traffic intended to exploit a particular vulnerability is immediately detected and blocked. The solution is highly scalable in that the intrusion prevention system can protect thousands of unpatched systems with a single virtual patch.
TippingPoint's expertise is recognized worldwide: 130,000 administrators, executives, and security professionals subscribe to the SANS @RISK report, which is authored by TippingPoint security analysts. The same analysis feeds our Digital Vaccine filter developers to prioritize how best to protect our customers. New Digital Vaccines are typically released on a bi-weekly basis, but are turned in a matter of hours in emergency situations. The speed with which we deliver new filters makes this a powerful weapon in the patch race.