OEM FAQ
What is Host-based Intrusion
Prevention Software (HIPS)?
HIPS stands for Host-based Intrusion Prevention Software. Host-based
Intrusion Prevention Software is software that resides on servers
in order to protect networked applications, information and services.
Back to top »
What
are the main differences between different HIPS products?
In general, the main difference between HIPS products is the approach
used for prevention - specifically, the use of signatures, rules
or adaptive profiles . Signature-based products look for and prevent
known characteristics or “signatures” of malicious code or attacks.
Rules-based products allow customers to define and prohibit bad
behavior that might be associated with malicious code or attacks.
Sana Security offers the only product that builds adaptive profiles
of normal application behavior. Primary Response monitors system
calls between the application and the operating system, preventing
activity outside of the norm that may have been caused by previously
known or even unknown malicious code or attacks.
Each approach offers varying levels of protection, scalability,
manageability and performance.
Back to top »
How do I select
the HIPS product that is right for my customers?
HIPS products, depending on approach and maturity, have varying
characteristics in these areas:
- Protection—for all custom, standard and legacy applications
across the organization
- Scalability—for rapid deployment across tens, hundreds
or thousands of servers providing core information, applications
and services
- Manageability—as a function of incidence of false positives,
quality of alerting and reporting, support for application maintenance/patching
and integration into existing monitoring systems–contributing
to the amount of scarce IT resources required for ongoing administration
- Performance—measured in terms of impact on uptime and
latency
Select a HIPS product that provides your customers with the characteristics
in these core areas that best fit your business and IT environment.
Back to top »
If I already
have, or partner with, a network-based intrusion detection or prevention
component, should I still consider an OEM relationship with Sana?
Yes. Network-based intrusion detection and prevention products serve
a valuable purpose in protecting against existing threats that may
pass or circumvent perimeter defenses. However, only a HIPS product,
like Primary Response from Sana Security, complements these products
with a last line of defense to effectively prevent both known and
unknown attacks on core information assets.
Back to top »
If
I provide a complementary product, do I have to enter into the OEM
program to work with Sana Security?
No. An OEM relationship is best utilized when a greater level of
technical interoperability between products is required for effective
use or an OEM relationship will provide greater differentiation
to the integrated solution.
Sana welcomes all complementary technology partners who can help
deliver greater and faster value to customers under various co-marketing
and co-selling relationships.
Back to top »
What types
of vendors are most likely to OEM products from Sana Security?
There are any number of complementary providers of advanced technology
products who can offer customers faster time to greater value by
combining Sana security products with their own. These include companies
offering:
- Security Products - including VPNs, Firewalls, Network-based
Intrusion Detection/Prevention
- Complement security of the network with protection at the
host.
- Web Enablement Products
- Offer an added level of security to match the increased
level of distributed access.
- Applications
- Especially those that attempt to lock down operating system
vulnerabilities in between patching cycles.
- Computing hardware - including servers
- Provide the latest in secure computing
How can I find out more about an OEM or other
technical relationship with Sana Security?
Sana Security offers dedicated technical alliance staff to identify,
qualify and ensure the success of vendors providing complementary
technology products.
For more information contact the at Sana Security.
Back to top » |
