Information Assurance Confidentiality, Integrity, and Availability
Fortressing Authorized Applications
Bayshore provides our customers with bullet-proof Layer 7 protection of their authorized applications, as opposed to Layer 3 firewalls and Next-Generation Firewalls which only detect and block unauthorized applications (such as YouTube and Facebook). Unlike Web Application Firewalls, we secure ALL authorized applications (including internal applications and custom applications specific to each vertical). One notable example is to use our SingleKey™ multi-protocol application firewall to secure mission-critical internal applications and weapon secrets at major defense contractors. Our SingleKey™ firewall can also be used to secure trade secrets at major global corporations and investment banks.
Mitigating Advanced Persistent Threat
Since the sophisticated and targeted attack on Google and other major companies in 2010, much has been researched and discussed about Advanced Persistent Threat (APT). In order to reliably detect APT behavior as it happens, it's necessary to analyze network traffic at the stream level. APT attacks with privilege escalation operate through application accesses that, to network monitors, appear to be fully normal in terms of 1) network source addresses; 2) protocol syntax-correctness; and 3) authentication/authorization.Bayshore SingleKey™ Information Assurance Firewall combines three essential features to block APT: 1) Pervasive network presence, i.e. protocol-inspection capability present on all links in a complex application structure, including the links to secondary application tiers; 2) Deep protocol analysis. This requires Layer 7 analysis of protocol streams, not just packets. The stream inspectors must be able to isolate all elements of a data protocol, especially those containing data inputs from clients; 3) Heuristic base-lining. The application inspection system must construct a rich and multidimensional baseline of the behavioral patterns of each application, and store the baseline in a database that can be continuously added to. The database is then used to detect anomalous behavior in real time.
For technical details of Bayshore’s uniquely effective approach to fighting APTs, go to our white paper: Advanced Persistent Threat: From Detection to Remediation.
Strengthening National Cyber Defense
Our national cyber infrastructure is constantly under attack by domestic perpetrators, other sovereign states, or terrorist groups. In the cyber world, it is very difficult to draw the line between enemies and allies. In essence, we are fighting a subtle cyberwar on a daily basis. The sophistication of recent cyber attacks on our nation’s critical defense, and its civil and commercial infrastructure, has prompted the Pentagon to officially recognize cyberspace as the fifth domain in warfare.Cyber warfare will increasingly replace conventional warfare among major countries such as Russia, China and the U.S. In an economically interconnected flat world among major powers, it is in no one's interest to see a real war zone created by conventional weapons even on your enemy's land. But cyber warfare can be as effective as it is elusive. Cyberwar is actively engaged today as a way to collect intelligence, spread and stop propaganda, control and influence opinions and, very frequently, commit commercial espionage. The "If you can't beat them, hack them" mentality has been prominently displayed in a number of high profile cyber attacks recently. We believe we are in the first inning of a possibly never-ending cyber war that we will have to live with as long as the world continues to be online.
Most U.S. government defense and security agencies turn to their long-term weapon suppliers for cyber security solutions. However, defense companies' cyber security product portfolios are relatively limited. Leveraging our SingleKey™ multi-protocol application firewall platform, Bayshore Networks is working closely with our defense partners to fulfill the cyber defense program requirements of both defense and civilian agencies.
Pervasive Information Assurance in the Battlefield
Bayshore's SingleKey™ Layer 7 application firewall ensures pervasive information assurance for our troops in the battlefield by providing advanced intrusion detection capabilities for the tactical environment that is unavailable using traditional intrusion detection systems. SingleKey™’s flexible and granular policy engine allows it to provide Layer 7 protection to next-generation electronic weapon systems including unmanned aerial vehicles (UAVs).
Multi-Level Security
Bayshore Networks has taken particular note of environments requiring multi-level security, or MLS. These are common in military and advanced government installations. Commercial enterprises typically are not exposed to an MLS requirement. However, we anticipate that the next generation of commercial applications with exposure to critical infrastructure or industrial control systems will, in many cases, need to provide MLS.Such environments include smart grids, transportation, oil and gas, water systems, as well as building and factory-floor automation. Heightened MLS requirements in such systems may include both mandatory (MAC) and discretionary access controls, assured segregation of information resources, and adherence to Bell-LaPadula/Biba rules. The requirements will be imposed through sector-specific combinations of industry practices, statutes, regulations, and guidelines from national and international organizations.
Defending Against Commercial and Industrial Espionage
According to a report by Verizon, commercial espionage accounts for one-third of all illegal web activities. It is even more alarming that commercial espionage is being sponsored by very powerful sovereign states – including powerful dictator states and Western democracies. There are currently a lot of board room discussions on how to prevent any confidential or controversial communications from showing up on the next WikiLeaks cable. More importantly, major businesses are scrambling to prevent foreign competitors (sometimes sponsored by very powerful states) from hacking into their core network infrastructure to gain the most secretive and valuable intellectual property. Bayshore Networks' SingleKey™ Information Assurance firewall is an ideal solution to fight commercial and industrial espionage attempts by powerful enemies.