Network Security Product Summary
2003-12-10 ■ TANKER ■ Aerial hardware channel
At present, domestic network security products are mainly hardware, including firewall, intrusion detection system, antiviral gateway, VPN, physical isolation card and other products, including firewall, intrusion detection system, VPN application is the most widely used. For most users, their current needs is no longer a single product, but analyzed from the system requirements to the professional overall solution.
First, network security system
In 2003, the company's investment in network security continued to increase, and the company has transformed from a single network security product to the network security. The network security field has entered a full range, specialized development path. The network security market began diversified, and China's network security system was gradually formed. Below, I will first introduce several major network security technologies that are recognized in China.
Logic isolation: According to the working principle of the OSI model, detect, filter the data of the data on the application layer, the session layer and the network layer, and to achieve a logical isolation effect of the external network and the intranet, usually this device It is installed on the boundary network of the interior network. Typical security products are firewalls. Usually the firewall has three areas: Internet area, DMZ district (quarantine) and office area.
Physical isolation: Physical isolation is different from logical isolation we often say (a type of firewall). Physical Isolation Thinking from two unconnected independent computers. Typical security products are isolation cards and isolation hubs. To absolutely guarantee safety, disconnect the network. Network attacks are not generated because there is no network connection.
Virus protection: Traditional detection and killing of network viruses are achieved through the terminal computer, the maximum disadvantage of this approach is to achieve overall anti-killing viruses in the network, resulting in repeated viral infections. Typical security products are online version of anti-virus software and antivirus hardware gateways. Install the anti-virus hardware products at the gateway to kill the Internet from the Internet, which saves the bandwidth and performance of the network. Install a network version of anti-virus software on each terminal computer, the overall detection and killing of the intact virus.
Identity: AAA system, AAA is proposed for an AAA system, AAA as an abbreviation, an Accounting, an authentication provides a specific user identification, authorization to provide specific Access permissions, accounting functions make records for users' network access behavior.
Encrypted communication and virtual private network: Through remote user authentication and tunnel data encryption, the security of private data transmitted through public networks has been well guaranteed. Typical security products are VPN. Take advantage of existing network resources and improve traffic.
Intrusion test: Usually the firewall can only block 80% of the network attack, there will still be a small number of intrusion bypass the firewall directly into the intranet, at this time, it has to be found, the suspicious behavior is reported, and corresponding measures will be reported. Typical security products are IDS. IDS has an essential part of the network security overall solution and has received more and more attention.
Audit and forensics: As the network settings are more and more complex, multiple security devices in the management network are more troublesome, need to use a platform to focus all security equipment such as firewall, IDS, anti-virus, and VPN to manage, network audit The system was born. The apparatus system records and analyzes the attack procedures and attack behaviors that occur in the network or system, and ensure that the real and integrity of the record information (to meet the requirements of electronic evidence), find out that the intruder or intrusion machine is found, and explained The process of intrusion, thus identifying responsible people, and take legal means to maintain their own interests when necessary.
Through years of development, the network security system is increasingly perfect, firewall, IDS, anti-virus system, VPN and other security products have become the mainstream of the security market. It reflects the gradual enhancement of enterprise network security awareness, and the network security market will enter the road to steadily develop. At the same time as companies go mature, many network security vendors have gradually put forward their own security concepts, including Cisco's SAFE security concept and Huawei I3 security system for typical representatives. Cisco SAFE security concept
Cisco company has integrated a safety solution for the design "integration" from the perspective of optimizing the entire network system, and proposes "Safety Blueprint for Business Network". Cisco deploys a safety mechanism to equipment, routers, switches, wireless, IPTs, and professional security products, and uses Safe concept to help customers use network applications. Network security and network investment find a balance point, providing customers with the needs of the needs, secure network systems.
In Cisco's security concept, the division of the enterprise network security system and some security vendors are roughly the same, and it is divided into five parts: online security connections for VPNs as solutions; the firewall is safe; Safety monitoring of the resolution by invasive detection; identification of the solution is identified as the solution and the security management of the solution is based on policy planning. According to current speech, video, and data three network integration, Cisco's security concept is a very important thing to implement the modularization of deployment in phases, and the safety framework has scalability. This is now useful or guide, and the investment conservative economic environment is undoubtedly very popular, Cisco believes that SAFE is suitable for companies in all sizes.
Huawei i3 security system
Huawei has made major changes to traditional narrow network security concepts, based on research on current network development needs, and pioneering "I3 Security" solutions. "I" -intelligence (integration), Individuality; "3" - Time, space and network hierarchical end-to-end (end to end); "Security" - All IP The security architecture of the network.
Time, space, network hierarchy end-to-end integrated security architecture, a complete and clear network security navigation map for industry and users, fully meet the needs of operators, governments, industries and enterprises. The network layer guarantees the security of the basic network of network routing, network addresses, etc.; at the user access layer to ensure legal user access, access legitimate network range, and ensure isolation of user information and other users to access network security; Guaranteed the legality and security of the user access content. Through the record of the user's Internet port, time, access, fully provide the traceability of the user's Internet access, thereby providing the first-hand information for later analysis. In the external network, via VPN, encryption, etc. guarantee information security, through network firewall, viral firewall, etc., to prevent network attacks;
Second, the current domestic market main network security product manufacturer
The following is a professional network security company introduction
NetScreen Network Security Technology
NetScreen is headquartered in Santaclara, USA, is a high-performance firewall providing Internet data center, e-commerce website, broadband access service provider and application service provider, VPN. And traffic management functions, based on ASIC-based security technology makes the processing of packets faster, effectively suppressed flow bottlenecks caused by other old-fashioned safety products, and fully utilize all bandwidth potential. NetScreen's products include a series of applications, from high-end Gigabit security systems prepared for Internet data centers and service providers to low-end solutions for homers. Beijing Tianren Letter Network Security Technology Co., Ltd.
Beijing Tianren Letter Network Security Technology Co., Ltd. is a leading company in China's network security industry. Founded in 1995, Beijing Tianjin is a high-tech enterprise specializing in network security technology research, product development and security services. Tianren Letter Company launched the first self-owned copyright firewall product that fills the domestic blank China's first self-owned copyright. In the next few years, Tianren Letter Company has launched five NGFW series for technical leading firewall products that are suitable for different customer needs. At the same time, Tianren Letter Company launched and internationally synchronized VPN solutions, advanced audit products, safety management classes and more. Tianren Letter Co., Ltd. combines the needs of safety systems, integrated "linkage, management" technology, launched TopSecmanager integrated security management system at the end of 2002, and better expands the scalability and managementability of TOPSEC solutions; in early 2003; The SAS integrated security audit system has been introduced to achieve centralized comprehensive audits for security equipment in the network, and better improve the availability of safety systems, making the TOPSEC solution further improved; in early 2003, Tianren Letter Company is "linkage" Under the guidance of the core security concept, on the basis of TOPSEC core technology, it is launched a multi-class security product, centralized management, centralized auditing as an integrated TOPSEC network security overall solution to ensure customer network from the boundary to the desktop, from the LAN to WAN high security.
Dongsoft Group Co., Ltd.
Eastoft Group Co., Ltd. was founded in 1991. Headquartered in Shenyang, it is a comprehensive solution to social and corporate information, integrating fundamental software technology research, product development, software risk enterprise investment, consultant consulting and service. Technology Enterprise Group. Dongsoft is currently a domestic leading network security product (NETEYE series safety product) supplier, and has made a prominent contribution in the network security. Dongping Group continues to architecture around the customer's value has a direct relationship, and now has launched a range of network security products: NETEYE firewall, SJW20 network cryptography, NetEye intrusion detection system, NETEYE personal safety platform. These products have won the user's universal recognition with advanced core technologies and stable and reliable quality. Not only provides a higher reliability for users, but also enables enterprises to improve efficiency in security management. In particular, its first "flow filter" technology characterized by transparent application layer defense is becoming a new trend in the development of firewall products.
Beijing Zhonglian Green Alliance Information Technology Co., Ltd.
Founded in March 2000, Beijing Zhonglian Green Alliance Information Technology Co., Ltd. is a high-tech enterprise specializing in network security services. It is committed to network security technology research, network security product development, providing network system intrusion detection, operating system security , Network service security, program security is the overall network security program, and assists in establishing a strict network security system to improve domestic network security levels, providing customers with powerful security. After the establishment of the Green Alliance, its safety technology research department conducted the most timely and close track of the latest network system security vulnerabilities at home and abroad. It has established a special research team for major security issues to conduct technical research, so far completed distributed refusal service. Attack (DDoS), Sun RPC Remote Overflow, Windows NetBIOS Security Questions, Windows IIS Security Questions, Buffer Overflow Protection, Network Intrusion Active Monitoring and other security technology research, a series of excellent results in domestic, and even foreign leading levels . The security product development department has the technical strength and experience of developing network security assessment systems, network / system firewalls, intrusion monitoring systems, content filtration systems, etc., has launched an internationally leading safety product line. Beijing Qixing Chenchen Information Technology Co., Ltd.
Founded in 1996, Beijing Queen Chenchen Information Technology Co., Ltd. is a professional network security company that is founded by Chinese students, registered in China, with network security independent intellectual property products, providing overall security solutions and services. With the largest network security R & D team in China, the first set of domestic first Gigabit intrusion detection systems has been developed, and the intrusion detection serialization products have been introduced. Queen Star Company took the lead in proposing and implemented custom security services in network security industry - CSAS (Customized Security Assurance Service) created the first river of domestic network security services. Network security products with independent intellectual property rights include: Tianyi hacker intrusion detection and early warning system series products, geoscience network vulnerability scanning system, Tianheng security network anti-virus system series products, Webkeeper website monitoring and repair system, Andxing individual Host protection system, Tianyi illegal outloor monitoring system, network security resource management platform.
Jinnuo Network Security Technology Development Co., Ltd.
Jinnuo Network Security Technology Development Co., Ltd. was established in Shanghai in 2000, which is the first batch of high-tech enterprises identified by software companies. Jinnuo Neijin Net Security adhering to the goal of continuously improving customer value, in line with the purpose of growing with customers, providing high standards of information security, overall solutions, information security services and information security products to enterprises and institutions. In response to a wide range of network intrusion events, based on multi-year research on network security technology and hacker intrusion technology. Some products with intellectual property rights of independently developed: Jinnuo Net An Intrusion Detection System KNCS, Jinnuo Net An Outline Monitoring System.
Suitable for other fields of network security products
Cisco System Company
Cisco Systems is a global leading Internet equipment supplier. Cisco's headquarters is located in San Jose, California, USA, in Massachusetts CHELMSFORD and North Carolina, studying the RESEARCH TRIANGLE PARK. Since the production of the first router in 1986, Cisco has accounted for the first or second market share in each of its enrolled, and has become a market leader. Its main safety products are integrated hardware / software Cisco Secure PIX series firewalls.
Lenovo Group Co., Ltd.
Founded in 1984, Lenovo Group has developed into a large enterprise group in the information industry. Lenovo Information Security Service Division is a well-created IT service team carefully created by Lenovo Group, specializing in the development, production and sales of information security products, providing user network systems with overall security solutions and security consulting services. At present, the Lenovo Information Security Service Division has five series of information security products and professional security consulting services such as firewall, VPN, intrusion detection, security isolation, unified security management platform, and provides users with a holistic security solution to users. Program. In addition, many famous IT manufacturers such as Huawei, Nokia, and Dawn have their own security field products.
Third, network security market situation
In 2003, the importance of domestic network security has greatly improved, and the procurement of network security products will continue to grow. The overall situation of the market is more optimistic, and the overall development trend: the continuous development of firewall products, other products have breakthrough, and the overall solution is more popular. User actively safe prevention awareness, making encrypted products, IDS, etc. will have a larger development space. Integrated network security overall solutions are more extensive and will be more and more popular. The proportion of channel commercial sales will increase, safe manufacturers strengthen support functions and weaken sales functions.
Firewall products still occupy an absolute market share in network security products, and the domestic market firewall brand is basically flat, the domestic firewall is basically flat, and the three major brands of Tiandong, Lenovo, Dongwei are mainly Netscreen, Checkpoint And Cisco has gradually swallowed 55% of domestic market share.
The popularity and cognitive level of IDS products in the domestic network security market is second only to firewall products. At present, there are mainly in the domestic market share, mainly with Queen, Jinnuo Net Android.
my country's VPN market has a fast development, and some vendors have introduced separate VPN products, and some manufacturers integrate VPN modules in the firewall to implement the part of the VPN. Independent organizers that have higher market share in China have mainly have Tianron, East Soft, etc.
Security services have become an important part of the network security overall solution. All network security vendors are developing to the direction of "product service" integrated providers. Security services run through the entire security system from the beginning, from the safety consultation, security risk assessment, the implementation of safety product projects, have continued to sell after-sales safety training, technical support, system maintenance, product update and other project cycles The whole process. The domestic financial industry, telecommunications industry and government departments have begun to gradually become a service object of network security services, and continuing to provide security for enterprises and institutions.
?
?
