Overview

Bayshore's multi-protocol application protection platform provides unparalleled confidentiality, integrity, and availability to the most sophisticated customers in defense, SCADA industrial control, government, private clouds, and other critical industry sectors.

Our product suite includes SingleKey™ Information Assurance Firewall, a multi-protocol application firewall that secures all links and applications behind the DMZ in the secure network fabric, SingleKey™ SCADA Firewall for industrial control systems, and SingleView™, a situational awareness and analytics tool for our customers in sensitive verticals. Each of our products are available either as high-performance hardware appliances (up to 10 Gbps of throughput), or virtual appliances. Bayshore Networks' award-winning products have been recognized by leading research firms including the 451 Group, IT-Harvest, Gartner/Burton, and Forrester.

• 
  
  SingleKey™ Architecture
• 
  
  SingleKey™ SCADA
  Firewall Architecture
• 
  
  SingleView™ Architecture

Bayshore Networks SingleKey™ Core Differentiators:

• • Heuristic Baselining - SingleKey™ application inspection system constructs a rich and multi-dimensional baseline of the behavioral patterns of each application, and stores the baseline data in a database that can be continuously expanded. The database is then used to detect anomalous behavior in real time. The detected anomalies are often indicative of APT attacks in progress. The predictive power of the heuristic baseline is dependent on the granularity and dimensionality of the data collection, a requirement that must be balanced against the impact on application performance.
• • SingleKey™ Policy Language (SPL) - The most powerful policy-specification language in the industry, SPL defines connection and data constraints for all major application and database protocols (including NoSQL, Cassandra and Hadoop) used in enterprises, as well as a large and growing variety of protocols used in industrial automation and control. SPL also enables advanced features such as field data validation which is a critical element in ensuring data integrity.
• • Pervasive network presence. Also dubbed "secure network fabric", this requires that a protocol inspection capability be present on all links in a complex application structure, including the links to secondary application tiers. Existing firewall approaches typically are restricted to Internet or WAN-facing links, in essence isolating servers from users but not servers from other servers.
• • Multi-protocol application support. In addition to web applications (http and https), SingleKey™ supports other non-web and internal protocols and applications including databases, email systems, identity and entitlement, Financial Information eXchange (FIX) communications, instant messaging and collaboration, LDAP, UDP, and FTP. It also supports industrial automation and control system (IACS) protocols such as Modbus TCP, BACnet, DNP3, and other SCADA protocols.

Copyright © 2002 - 2012 by Bayshore Networks LLC. All rights reserved.