Intrusion Detection Intrusion Detection
TrustShield is a multi-threaded intrusion detection system (IDS) that provides enterprise ready real-time threat management. Designed by security professionals that understand the pressures that network and security administrators face every day; TrustShield is adept at recognizing which assets are most at risk and when to act.
Network Intrusion Detection
TrustShield works in tandem with the iTrust security management platform providing integrated network vulnerability and event correlation. Designed from the ground up to be easy to use, TrustShield is accessible via an easy to understand, unified graphical management dashboard.
Intelligent Event Correlation
TrustShield's intelligent correlation technology analyzes attack data in real time, quickly identifying tangible network threats, and filters events that are innocuous to the network. The net effect is elimination of "background noise" and significant reduction in the number of false positives. This approach to enterprise threat management allows valuable resources to focus on legitimate critical vulnerabilities, providing tangible time and cost savings benefits for your organization.
Management Dashboard
The TrustShield management dashboard is highly graphical and intuitive, combining detailed vulnerability information of network assets with real-time threat data such as spyware, port scans, and Trojans. Network and security managers are provided real-time alerts to clear and present danger enabling them to deploy counter measures; avoiding escalation of an event into a critical incident.
The IDS Solution That Works
TrustShield addresses the fundamental pain points felt by network and security managers who are faced with the challenge of maintaining security defense at the highest level within a finite budget and limited resources. New threats and vulnerabilities appear on a daily basis and create a daunting task to maintain complex network topology that typically includes numerous individual "at risk" devices. TrustShield automates and streamlines this process, reducing the risk of human error, and maximizes your return-on-investment.
TrustShield Intrusion Detection System Features
Security Event Management: Includes a single dashboard view of all alerts. Alert detail includes color-coded severity ratings, attack sources, attack targets, time, and date stamp. Users can specify actions such as Dismiss and Escalation to another iTrust user or external email address. Alerts can also be dismissed en masse.
Dashboard Management: Easy to use single-view dashboard with data filtering by date, location, and device. Also includes graphics with alerts by volume, target, and attack sources.
Role Based Permissions: Enterprise-grade role-based security that controls user access rights across all iTrust applications. Create unlimited number of hierarchical roles enabling delegation of responsibilities to reflect your unique organizational structure. Specify specific actions for each role (for example Schedule Scans, Add/Remove False Positives, Location Management) and authorized functional profile (for example Full Vulnerability Assessment, SANS Top 20, PCI Compliance Check).
Event Correlation: The TrustShield performs sophisticated event correlation between the IDS and the vulnerability scanners.
Drill Down: The dashboard reports include drill-down capability providing source IP address, type of intrusion, aggregated number of alerts, and the potential attack vectors.
Reporting: Easy to understand graphical formats in HTML, PDF, and XML formats. Choose from a selection of standardized reports or create your own using the dynamic report generator. Reports include details on matched and unmatched events, traffic types, attack sources, attack targets, and threat signatures.
