The Award-Winning ServerShield: A Unique Approach to a Growing Problem

Server Security Without Compromise

Blue Lane's ServerShield (formerly PatchPoint) is the only network security appliance designed to remedy unique server availability and security challenges. The inability of general purpose netsec appliances to protect servers has forced many organizations into high risk and high cost cycles of reactive patching and growing investments in false alarm management and tuning. The result: enterprises are forced to undermine confidence in the network (and even undermine security team productivity) in order to protect the data center from some of today's most prevalent and sophisticated attacks.

The inability of Network IDS/IPS to protect servers led to enterprise spending on HIPS (host intrusion protection systems) and automated patch management solutions. These systems are application and protocol aware (for many server and client operating systems). As a result, they offer more comprehensive protection against attacks designed to evade general purpose Network IDS/IPS. Yet these systems have their own drawbacks, including having to make regular code changes on critical servers and databases. The result: server availability is compromised in an effort to protect servers from sophisticated attacks that can evade Network IDS/IPS.

ServerShield Does More Than Traditional Network IDS/IPS and HIPS When it Comes to Server Protection

When the world of network security was focused on finding and tracking a growing population of hackers and exploits, the founders of Blue Lane took a different path and focused on studying software vulnerabilities and how vendors developed security patches to shield those vulnerabilities. After years of testing, they developed a high performance platform that could understand virtually all leading server applications, operating systems and protocols; enough to enforce corrective security measures on server traffic without tuning, blocking, code changes on the server or even false alarms. The result: the industry's first high availability server security solution that can be deployed inline with minimal impact on traffic and server availability and... security team resources.

Security professionals can now rest assured that servers are protected from network attacks against thousands of known software vulnerabilities without tuning and without reactive server patching risks that can jeopardize availability. And ServerShield does much more than emulate existing vendor security patches, it also provides proactive protection for vulnerabilities for which vendor's have not issued a patch and protects legacy systems that no longer have vender support. The result: the most accurate, powerful, easy to manage and comprehensive server security solution available.

ServerShield Took a Unique Approach

ServerShield inspects, alerts and corrects any traffic directed at known server software vulnerabilities. In the enterprise datacenter environment, ServerShield is deployed in close proximity to the server access or distribution layers allowing protection of all remotely exploitable vulnerabilities from external and internal threats. Also, the ServerShield is often placed in the DMZ or near the network perimeter for sites that face attack sources from the WAN or the Internet. ServerShield is capable of protecting all remotely exploitable vulnerabilities due to its vast coverage of protocol stack support (130+ protocols) and the ability to apply the same security checks and corrective behavior found in the primary software vendors' security patches.

This approach offers unprecedented precision, without incurring network delay, traffic disruptions and elaborate signature/pattern matching approaches which suffer from false alerts and exploit bypass scenarios. It also means enhanced protection against sophisticated polymorphic attacks, cross-site scripting, SQL injection and other attacks designed to evade older technologies.

Secure Now with ServerShield

Once deployed, ServerShield delivers protection against the most sophisticated attacks, even those designed to evade traditional NIPS, without tuning, without signatures, without downtime. Your operations team is freed up to deploy security patches on its own schedule while your security team can focus more attention on attacks against unknown vulnerabilities, insider attacks and the increasing demands of perimeter security... because your servers are more secure than ever.