Enterasys Networks, the
Secure Networks Company, introduced Dragon 7.1, the latest
version of its award-winning Dragon Intrusion Defense. Dragon now
includes powerful intrusion prevention capabilities along with
unmatched intrusion detection.

Dragon Intrusion Defense provides comprehensive protection for the
enterprise IT infrastructure by detecting and mitigating network-borne
threats, monitoring and controlling network use, and helping enforce
regulatory compliance. Dragon Intrusion Defense is a key component of
Enterasys’ industry-leading Secure NetworksTM approach to network
security, which embeds granular policy-based security capabilities
directly into the network infrastructure.

Dragon is built on Enterasys’ advanced suite of unique threat
detection technologies that monitor both networks and hosts. It not
only mitigates worms and denial-of-service attacks, but also defeats
spyware and a wide array of other malicious activities, and helps
enterprises comply with stringent data-privacy regulations.

The Dragon family of intrusion defense products seamlessly combines
the capabilities of network and host-based intrusion detection,
network and Web server-based intrusion prevention and enterprise-wide
intrusion response to deliver the industry’s highest available level
of network threat protection. It leverages multiple security
intelligence sources to ensure maximum visibility by gathering
intelligence from the network itself, third party security systems,
network communications and hosts attaching to the network. Dragon uses
this data to respond quickly and effectively to a wide range of
threats that can disrupt business continuity.

Enterasys architected Dragon’s Network IPS technology for 100 percent
stealth operation. Although a Dragon Network IPS sits in-line between
switches and routers, it is completely invisible to attackers and
immune to attacks from malicious traffic. They cannot attack what they
cannot see. The Dragon network IPS is built on the award-winning
Dragon intrusion detection engine. Intrusion prevention systems can
only defend against attacks they can detect, and the key is to
leverage a highly accurate threat detection system that minimizes
false positives.

Dragon features a high performance stateful firewall engine, providing
enterprise security managers with greater levels of network traffic
control then traditional IPS systems. The integrated Dragon firewall
technology will be a foundation for new advanced services and features
in future releases. Dragon is configurable right out of the box to
defend against more than 700 types of high-severity threats and it can
be configured to defend against an additional several thousand
exploits and vulnerabilities.

“Dragon 7.1 represents a breakthrough in network intrusion defense by
taking a cohesive, layered approach to network security,” says John
Roese, chief technology officer of Enterasys Networks. “Dragon
detects, prevents and responds to the business-crippling effects of
internal and external network threats. No other intrusion prevention
system available today can match Dragon’s comprehensive protection
capabilities for helping enterprises maintain business continuity.”

Dragon’s multifaceted threat detection engine uses multiple techniques
including protocol analysis, anomaly detection and signature analysis.
Dragon core applications contain more than 250 different analysis
functions and its signature analysis engine supports more than 4000
signatures.

In addition to blocking an attacker on the first attempt to compromise
the network, Dragon’s IPS can communicate with Enterasys’ Dynamic
Intrusion Response solution, enabling policies that will prevent
attackers from accessing any point of entry to the enterprise network.

With the Introduction of Dragon 7.1, Enterasys has released a new
family of intrusion prevention appliances that scale from 100 Mbps to
1.2 Gbps. The Dragon IPS architecture was designed to enable extremely
high performance levels and Enterasys plans to release multi-gigabit
class platforms in the near future.