Intrusion Prevention Services

Combine the best elements of an intrusion prevention system, application and system firewalls, internal policy enforcer, and a vulnerability assessment engine into a single, comprehensive solution.

Datapipe utilizes Blink^® End-Point Vulnerability Prevention for Windows. Blink^® delivers maximum host-level protection via continuous, non-intrusive multi-layer vulnerability monitoring and prevention.

Intrusion Prevention Technology

Blink® performs network traffic reconstruction and protocol analysis and is able to detect and block 'zero-day' attacks that bypass standard signature checking solutions. Blink® is also able to detect and block unknown attacks using pattern matching analysis.

For the added protection of individual digital assets, Blink^® includes the following features:

• Malicious Application Control Prevention protects against Application Hijacking via DLL control hooking
• Application Policy Control prevents abusive user behavior within applications, such as downloading files via P2P or Instant Messenger applications
• Buffer Overflow Protection protects against known and unknown buffer overflow attacks against network applications
• Non-Signature Based Attack Prevention detects and blocks attacks without the need or use of attack signatures. This translates into complete protection, even when an attack is circulating, but the vendor has not yet created signatures or patches. This also removes the administrative burden associated with updating signatures files
• Inbound and Outbound Port Blocking: Blink^® controls all aspects of network traffic including all inbound and outbound connections. Blink^® also controls traffic based on protocol, port, and communicating host address
• Configurable rules: Blink^®'s policies are customizable by the administrator and can be tailored to each particular worker's access or configuration requirement
• Operating System Hardening: Blink^® acts as Windows hardening solution, preventing attacks from modifying critical OS binary files or configuration settings

System and Application Firewall Technology

Performing analysis of each packet of network traffic entering the system, Blink^® is able to allow or deny traffic based on a set of predetermined firewall rules. Blink^® also monitors the source of network traffic in real time and will only allow traffic only from authorized applications.

Non-Intrusive Protocol Analysis

Blink^®'s non-intrusive protocol analysis technology examines network traffic before it reaches the application layer, preventing malicious activity before it is allowed to execute. This allows Blink^® to remain non-intrusive and support business continuity, unlike other end-point solutions which resort to stopping services or processes as a means of protection.