Trend MicroTM TippingPoint® Threat Protection System (TPS) is a powerful network security platform that offers comprehensive threat protection against known and undisclosed vulnerabilities with high accuracy. It provides industry- leading coverage across different threat vectors from advanced threats, malware, and phishing, etc., with extreme flexibility and high performance. The TPS enables enterprises to take a proactive approach to security to provide comprehensive contextual awareness and deeper analysis of network traffic.
- Real Time Detection, enforcement and remediation
Integrates the Deep Discovery Advanced Threat Protection Solution to Detect and block targeted attacks and malware through preemptive threat prevention, threat insight and prioritization, and real-time reinforcement and remediation
- Performance Scalability and flexibility for them most demanding network requirements
Delivers unprecedented security and performance for high capacity, high performance enterprise networks. It scales performance requirements to protect data, critical infrastructures, and vulnerable applications in real time without adversely affecting network performance and is designed to follow your network wherever it moves whether it’s physical or virtual.
- Comprehensive threat insight and prioritization
Gain complete visibility across network with the insight and context needed to measure and drive vulnerability threat prioritization. Deep Inspection of network traffic identifies and blocks threats undetected by traditional security solutions
- Comprehensive threat insight and prioritization
Gain complete visibility across network with the insight and context needed to measure and drive vulnerability threat prioritization. Deep Inspection of network traffic identifies and blocks threats undetected by traditional security solutions
- Deployment flexibility and investment protection
With flexible deployment options that are easy to setup and manage through a centralized management interface, it provides immediate and ongoing threat protection with out-of-the box recommended settings.
KEY FEATURES
On-box SSL Inspection: Sophisticated and targeted attacks are increasingly using encryption to evade detection. TPS reduces security blind spots created by encrypted traffic with on-box SSL inspection.
Performance Scalability: The increase in data center consolidation and proliferation of cloud environments requires security solutions that can scale as network demands increase. TPS delivers unprecedented security and performance for high-capacity networks with a scalable deployment model that includes the industry’s first 40Gbps NGIPS in a 1U form factor with the ability to scale up to 120Gbps aggregate in a 3U form factor.
Flexible Licensing Model: Easily scale performance and security requirements with pay-as-you-grow approach and flexible licenses that can be reassigned across TPS deployments without changing network infrastructure.
Real-time Machine Learning: Many security threats are short-lived and constantly evolving, at times limiting the effectiveness of traditional signature- and hash-based detection mechanisms. TPS uses statistical models developed with machine learning techniques to deliver the ability to detect and mitigate threats in real time.
Enterprise Vulnerability Remediation (eVR): Quickly remediate vulnerabilities by integrating third-party vulnerability assessments with the TippingPoint product portfolio. Customers can pull in information from various vulnerability management and incident response vendors (Rapid7, Qualys, Tenable), map Common Vulnerabilities and Exposures (CVEs) to TippingPoint Digital Vaccine® filters and take action accordingly.
Advanced Threat Analysis: Extend protection from unknown threats through integration with Deep DiscoveryTM Analyzer. TPS pre-filters known threats, forwards potential threats for automated sandbox analysis, and remediates in real time upon confirmation of malicious content.
High Availability: Ideal for in-line deployment, TPS has multiple fault-tolerant features including hot swappable power supplies, watchdog timers to continuously monitor security and management engines, built-in inspection bypass, and zero power high availability (ZPHA). In addition, TPS can be provisioned using redundant links in a transparent Active-Active or Active-Passive high availability (HA) mode.
Integrated Advanced Threat Prevention: TPS integrates with Trend MicroTM Deep DiscoveryTM advanced threat detection solutions, rated as the most effective and “recommended” breach detection system by NSS Labs.
Asymmetric Traffic Inspection: Traffic asymmetry is widespread and pervasive throughout enterprise and data center networks. Enterprises must overcome challenges from both flow and routing asymmetry to be able to fully protect their networks. TPS by default inspects all types of traffic, including asymmetric traffic, and applies security policies to ensure comprehensive protection.
Agility and Flexibility: TPS embraces software-defined network protection by deploying IPS as a service. TPS also protects virtualized applications from within your virtualized infrastructure (VMware, KVM).
Best-in-Class Threat Intelligence: Trend MicroTM TippingPoint® Digital Vaccine® Labs (DVLabs) provides cutting-edge threat analysis and security filters that cover an entire vulnerability to protect against all potential attack permutations, not just specific exploits. In addition to DVLabs, exclusive access to vulnerability information from the Zero Day Initiative (ZDI) protects customers from undisclosed and zero-day threats. ZDI is the largest vendor-agnostic bug bounty program, with 700 vulnerabilities published in 2016. In 2016, Trend Micro TippingPoint customers were protected an average of 57 days ahead of a vulnerability being patched by affected vendors.
Virtual Patching: Virtual patching provides a powerful and scalable frontline defense mechanism that protects networks from known threats and relies on vulnerability-based filters to provide an effective barrier from all attempts to exploit a particular vulnerability at the network level rather than the end- user level. This helps enterprises gain control of their patch management strategy with pre-emptive coverage between the discovery of a vulnerability and the availability of a patch, as well as added protection for legacy, out-of-support software.
Support for a broad set of traffic types: TPS platform supports a wide variety of traffic types and protocols. It provides uncompromising IPv6/v4 simultaneous payload inspection and support for related tunneling variants (4in6, 6in4, and 6in6). It also supports inspection of IPv6/v4 traffic with VLAN and MPLS tags, mobile IPv4 traffic, GRE and GTP (GPRS tunneling), and jumbo frames. This breadth of coverage gives IT and security administrators the flexibility to deploy its protection wherever it is needed.
Centralized Management: The TippingPoint Security Management System(SMS) delivers a unified policy and element management graphical user interface that provides a single mechanism for monitoring operational information, editing network security policies, configuring elements and deploying network security policy across the entire infrastructure whether its physical or virtual.