eEye Digital Security Releases SecureIIS, the Application Firewall For Microsoft IIS Web Server

SecureIIS(TM) – An Application Firewall That Wraps Around Microsoft Internet Information Services (IIS) Web Server Providing Protection Against Known and Unknown Hacker Attacks

ALISO VIEJO, Calif. and GENEVA, May 9 /PRNewswire/ — SecureIIS(TM) is the latest in proactive network security tools from eEye Digital Security. SecureIIS protects Microsoft Internet Information Services (IIS) Web servers from known and unknown hacker attacks. SecureIIS wraps around IIS and works within it, verifying and analyzing incoming and outgoing Web server data for any possible security breaches. It prevents these breach attempts from penetrating the server, and alerts the network administrator when such attacks occur. SecureIIS combines the best features of Intrusion Detection Systems (IDS) and Network Firewalls all into one, and it is custom tailored to your Web server.

Cybercrime, Web site defacement and other network security breaches have been rising with an alarming rate over the last few years. According to the FBI, 90% of companies surveyed in a study have detected cyber attacks recently. Disgruntled employees, industrial espionage, and data theft are responsible for 70-80% of security breaches. Increases in external threats from hackers, ex-employees, competitors and cyber terrorists are also alarmingly evident.

SecureIIS can bring never before seen protection to Extranet and Intranet Web servers. This high level of protection comes from SecureIIS’s ability to understand the HTTP (Web server) protocol and the classes of attacks that Web servers are vulnerable to. SecureIIS also has the ability to capture HTTPS sessions before and after SSL (Secure Socket Layer) encryption. Unlike any Intrusion Detection System or firewall currently on the market, SecureIIS has the ability to stop attacks on both encrypted and unencrypted sessions. SecureIIS protects against buffer overflow attacks, parser evasion attacks, directory traversal attacks, and other general exploitation hacker attacks.

“There are more and more tools being released that make the task of breaking into and defacing Web sites rather trivial, especially in the case of Microsoft IIS Web servers. That fact, coupled with the increasing number of new-school hackers using so-called ‘cyber wars’ as scapegoats for mass Web site defacements, has made Web servers the number one targets for hackers,” said Marc Maiffret, Chief Hacking Officer of eEye. “We realized that what the market really needed was security software smart enough to stop the attacks of tomorrow before such vulnerabilities are discovered and patches disseminated.”

The actual part of SecureIIS that provides protection from attacks is a module that gets loaded within IIS. The ability for the code to be running in the same space as IIS allows SecureIIS to perform all of its protection without slowing down the Web server and also allows SecureIIS to follow a user session as the user’s request is processed by IIS. This internal view of how IIS is handling user supplied data allows SecureIIS to provide never before seen protection that is unmatched by any other security product.

All of these additional protection features make SecureIIS the product of today that protects you from the attacks of tomorrow, making it the ultimate proactive security tool.

To read more about this revolutionary new product from eEye Digital Security please visit http://www.eEye.com/SecureIIs.

About eEye Digital Security

eEye Digital Security (http://www.eEye.com) is a leading developer of high-end network security products and a contributor to the furthering of network security research and education. eEye products include Retina(TM) the network security scanner, SecureIIS(TM), the application firewall for IIS Web Server, and Iris(TM) the network traffic analyzer. The company was founded in 1998 and is currently staffed by some of world’s leading systems engineers, software engineers, and security consultants dedicated to uncovering network security vulnerabilities. eEye is based in Southern California at One Columbia, Aliso Viejo CA 92656. The company has sales and support offices in Geneva, London and Madrid. http://www.eEye.com.