IBM IPS Focuses on Data, Web App Security
IBM releases an update to its intrusion prevention system appliance, pushing a vision for a unified platform for managing network security.IBM pulled the covers off an upgraded appliance July 15 that combines intrusion prevention with data and Web application security. IBM IPS 4.1 offers a unified platform for managing network security capabilities ranging from automated virtual patch technology to client-side application protection. Through integration with IBM Security AppScan, the appliance can automatically produce custom policies to protect Web applications based on specific vulnerabilities identified by AppScan. IBM has also added data leak prevention capabilities to allow customers to monitor whether any information is leaving the network.
In addition, a key part of the release being highlighted by IBM is the virtual patching technology added to the product. Emergency patching of vulnerabilities can mean unscheduled system downtime, and can leave enterprises susceptible to attacks until security fixes are completely rolled out. But vendor patches are not always forthcoming or easy to quickly deploy, as evidenced by findings in the 2009 IBM X-Force Trend and Risk Report, which revealed that 52 percent of vulnerabilities had no vendor-supplied patch by year's end.