IPOLICY NETWORKS UNVEILS INNOVATIVE REAL-TIME VULNERABILITY CORRELATION SOLUTION

iPolicy Release 3.0 Delivers Improved IPS Accuracy and Dynamic Prevention to Optimize Overall Network Security for Enterprises, Service Providers and Other Organizations

FREMONT, Calif., November 6, 2006 –iPolicy Networks, provider of next-generation network security solutions, today established a new industry standard for securing public and private networks with Release 3.0 of the iPolicy Security Manager and Intrusion Prevention Firewalls. This latest iPolicy product release includes real-time vulnerability correlation (RVC) with support for multiple vulnerability assessment scanners, which provides dynamic Intrusion Detection/Prevention (IDS/IPS) actions and improved IDS/IPS accuracy, among several other new security capabilities. The release also introduces integrated anti-virus for enhanced protection against blended threats, and dynamic-port application support for VoIP, P2P and IM security.

“Performance and accuracy are the key metrics for network security products,” said Eric Ogren, security analyst with Enterprise Strategy Group. “The ability to correlate vulnerability scan data when inspecting traffic is important in producing precise security controls without impact on end-users. This is imperative when securing latency-sensitive applications such as VoIP and interactive Web applications.”

With the intricacy of today’s threat landscape, IT administrators face an uphill battle to ensure ongoing integrity in their networks. For example, while distributed IDS/IPS is crucial across all critical network segments, rather than just the perimeter, the high ratio of false positives and lack of accuracy have previously limited wider adoption of inline IPS.

iPolicy Release 3.0 breaks new ground in helping companies aim for a zero-threat network. iPolicy RVC uses vulnerability scan data from widely used scanners like Nessus 2 and 3 (by Tenable Network Security) and eEye Digital Security’s Retina, and industry-standard threat databases such as CVE and BugTraq. And, it allows security administrators to attach an asset value to their network-connected servers/hosts. Using the iPolicy RVC, iPolicy appliances perform automated correlation of threats detected by the IDS/IPS module with the host vulnerability data imported from the scanners. This enables real-time dynamic adjustment of IDS/IPS actions based on the degree of threat-vulnerability correlation and the asset value assigned to the host, as the threat events occur. RVC also simplifies prioritization of event analysis based on specific, individual assets/targets and eliminates manual correlation overhead to allow efficient usage of vulnerability data.

In addition to its innovative RVC capabilities, iPolicy Release 3.0 features significant enhancements including:

• Integrated Network Anti-Virus, providing enhanced protection against blended threats, worms and viruses. iPolicy now integrates the industry-standard McAfee Anti-Virus with iPolicy’s Single Pass Architecture™ for protection against over 200,000 known malware.
• Dynamic Application Decode and Control supports VoIP, IM and P2P. This function enables granular policy control for acceptable application use and detection of application-level vulnerabilities, even if they use non-standard ports or port-hopping behavior. DSCP marking is also available for traffic prioritization by upstream routers and other devices for application QoS and flow-based control.
• Downloadable Application Decode enables support for new applications and updated application versions through simple ‘application fingerprint’ download without requiring software code changes. This innovative functionality can also enable support for custom application traffic.

“This has been a great year of product innovation for iPolicy, culminating in this major product release,” said Arun Chandra, president and CEO of iPolicy Networks. “We are proud of the groundbreaking capabilities our Release 3.0 product offers our enterprise and service provider client base. This release underscores our commitment to providing technology solutions that take network security to the next-generation.”

The latest product upgrade builds upon iPolicy’s recent momentum. In the past 12 months, the company has achieved strong growth, expanded its premier channel partner program with the addition of a number of new resellers, and entered the China market. Additionally, iPolicy announced this week a patent for its dynamic application decode engine (SEE ACCOMPANYING RELEASE), which further expands upon existing patents for intrusion prevention and detection methodologies.

iPolicy’s integrated network security solutions combine intrusion prevention, firewall, URL screening and anti-virus functionality, all within a single appliance, providing a single point of control for swift response to security threats. iPolicy’s integrated security appliances enable high-speed networks to dynamically adapt to address constantly emerging threats and enable consistent security enforcement for geographically dispersed or virtualized networks.

Availability
iPolicy Release 3.0 will be available in December, 2006. For more information visit www.ipolicynetworks.com or call 1.510.687.3000.

About iPolicy Networks – Aim for a Zero-Threat Network™
iPolicy Networks provides next-generation integrated security solutions for organizations aiming for a Zero-Threat Network. iPolicy Networks’ Intrusion Prevention Firewall appliances utilize a deep-packet inspection-based Single Pass Architecture™ that enables mid-to-large size organizations to protect against a wide range of current and emerging threats while maintaining high network performance. Its scalable policy-based management solution significantly lowers TCO of managing distributed security while providing consistent security enforcement across geographically dispersed or virtualized networks. Headquartered in Fremont, California, iPolicy Networks’ customers include some of the world's largest network service providers and leading enterprises, government, financial services and educational organizations. For more information visit www.ipolicynetworks.com or call 1.510.687.3000.
 

iPolicy Networks is a registered trademark, and Single Pass Architecture, Security Domain, Aim for a Zero-Threat Network and Intrusion Prevention Firewall are trademarks of iPolicy Networks Inc. All rights reserved. All other products or brands mentioned are trademarks and/or service marks of their respective owners.