Anti-evasion readiness test tool and service

Stonesoft today announced its anti-evasion readiness test service. This service tests how well an organization’s critical digital assets are being protected against advanced evasion techniques (AETs). The service will be provided by selected, independent IT service organizations around the world.

Stonesoft’s anti-evasion readiness test service leverages the StoneGate evasion testing software developed by Stonesoft Labs to test, assess and report security devices’ capabilities to protect against AETs.

AETs are a means to disguise and/or to modify network attacks to avoid detection and blocking by the network security systems. In practice, evasions enable advanced cyber criminals to deliver any malicious content, exploits or attacks to a vulnerable system without leaving a trace. Based on latest knowledge and research, AETs can bypass the majority of the existing security devices.

Stonesoft’s anti-evasion readiness test service has been developed to meet the needs of organizations relying on network security devices like next generation firewalls, intrusion detection and intrusion prevention systems with deep packet inspection.

These devices protect mission critical computer networks, sensitive data assets, critical systems such as CRM and ERP, and SCADA networks.

These systems are attractive targets for cyber criminals and AETs offer an effective way of executing successful attacks. For many organizations, securing these areas is crucial for meeting compliance and audit requirements.

What distinguishes the service from the existing lab and vendor device testing methods is that the tests are conducted using the organizations’ own security devices and configurations as they are running in production and by using real exploits disguised by real evasion techniques.