05/05 09:43 DIGITIVITY CAGE NOW OPSEC CERTIFIED, ENABLING CORPORATE
ENTERPRISE SECURITY SO
( BW)(DIGITIVITY)(CHKPF) Digitivity CAGE Now OPSEC Certified, Enabling Corporate Enterprise Security Solutions to Include Securely Managed Java
Business Editors/Internet Writers/Telecomm Writers
LOS ALTOS, Calif.--(BUSINESS WIRE)--May 5, 1998--
Integration of Server-based Java Management Software With Check
Point FireWall-1 Allows Corporations to Reap Benefits of Internet
Java with Maximum Security
Digitivity, Inc., developer of the Applet Management System - the only truly secure server-based products for deployment and management of Java, today announced that Check Point Software Technologies Ltd. (NASDAQ:CHKPF), the market leader in enterprise security solutions, has certified Digitivity's CAGE 2.3 as the first OPSEC-compliant Internet Java Deployment and management platform. The groundbreaking Check Point/Digitivity technology combination enables companies to include central management of Java security within their enterprise security solution.
Check Point's OPSEC(TM) (Open Platform for Secure Enterprise Connectivity) framework is a revolutionary concept in enterprise-wide security - a single platform that integrates and manages all aspects of network security through an open, extensible management framework.
Check Point FireWall-1 provides three levels of industrial-strength blocking of Java applets out of the box, including prevention of Java from entering a company's internal networks. With the integration of Digitivity's Applet Management system, FireWall-1 users can now automatically route Java applets to secure servers outside the corporate boundaries. Applets are executed in the secure servers and remotely displayed on employee desktops, often with better performance. This combination of functionality allows companies to reap the business benefits of using Java applets from the Internet with the same security they previously achieved by blocking Java entirely.
"This is an exciting alliance for us and for customers of both Digitivity and Check Point," said Scott Metcalf, Chief Executive Officer of Digitivity, Inc. "Check Point, as the market leader in enterprise security solutions, is clearly a key strategic partner in our mission to provide industrial-strength deployment and management of secure Java. From the customer's perspective, systems administrators can now securely open the door to the business benefits of using Internet Java without any of the risks of letting unknown or untrusted code into the corporate network. Our customers get the best of both worlds - protection and functionality."
Java security will be increasingly important with Sun's Java Software Division opening the sandbox security model, with JDK 1.1 (which is currently available) and JDK 1.2 (available early this summer). A central benefit of the server-side applet execution uniquely offered by Digitivity is that the applet stays outside the corporate boundaries with only its graphical user-interface components displayed remotely to the end-user. Only data is transmitted, not executable code. The end-user experiences a Java applet as if it were running on the desktop.
Digitivity will continue to work with Check Point in the evolution of Digitivity's CAGE, making further enhancements to the product using additional integration points provided by the evolving OPSEC SDK.
"Digitivity's CAGE is providing tremendous value to organizations who want to access the power of Java securely. In fact, combining forces with Digitivity is a terrific example of the way our OPSEC architecture was intended to work," said Asheem Chanda, Vice President of Business Development for Check Point Software Technologies, Inc. "Bringing together the capabilities of proven solutions like the CAGE and FireWall-1 creates exciting new possibilities for our customers. That's what OPSEC is all about. I'm pleased that the CAGE is now OPSEC certified, so our customers can leverage our mutual solution for real business benefits."
Benefits of Server-based Java Execution
Providing employees unfettered access to the Java-rich Web can create potentially serious security problems. "Rogue" or "buggy" applets can cause damage to internal networks, applications and data if allowed to run loose on a company's network.
By routing Java applets to dedicated CVP servers positioned outside the firewall, the Digitivity combination with Check Point FireWall-1, the integrated solutions provide a double layer of security against potentially malicious mobile code.
Limitations of Alternative Approaches to Mobile Code Security
Other Java security systems add another layer of security as well, but with limitations. The "content scanning" approach either blocks applets at the firewall or lets them through based on real-time analysis of the executable code. If the applet meets the particular criteria, the code passes through to the internal network; if not, it is stopped. This approach, however, is not completely effective. As applets become ever more sophisticated - and programmers, too - the possibility grows of rogue applets that can effectively disguise their "bad" code, and hence be allowed to pass through. This could potentially wreak havoc on the company's network. Digitivity's unique technology, by contrast, lets no unknown, untested applets pass through - yet it provides superior functionality.
Sandboxing - that is, executing applets in a protected area of the browser - is a partial but incomplete solution with security in the hands of the end-user. Letting applets into the internal network also invites the potential for harm. With the opening up of the sandbox with new versions of the JDK from Sun's Java Software Division, this will become an increasingly apparent problem. When a company has thousands of employees using thousands of browsers, unmanageable situations for the network administrator are created. Digitivity's server-based solution means that network administrators have a handful of servers to manage - and to administer corporate security policy through - as opposed to a vast population of widely dispersed desktops. Administrators can set policies easily in Digitivity's centralized structure, which also makes it easy to continuously audit the entire system.
About Digitivity
Founded in January 1997, Digitivity, Inc., is the product arm of Digitivity Ltd., of Cambridge, England, a leading research and consulting firm. Digitivity offers secure server-based enterprise solutions that help companies deploy and manage Intranet and Internet-based Java applications. Digitivity can be reached on the web at www.digitivity.com.
About Check Point Software Technologies Ltd.
Check Point Software Technologies Ltd. is a leading provider of policy-based management solutions for active networks. Through its Secure Enterprise Connectivity strategy, the company is dedicated to enabling secure, reliable and manageable business communications over IP networks. The company's products include the world's leading enterprise security and Virtual Private Network (VPN) suite, FireWall-1, and the industry's premier bandwidth management solution, FloodGate-1. MetaInfo, Inc., a wholly-owned subsidiary of Check Point, is a leader in network and IP address management software that simplifies the set-up, integration and administration of complex networks. The company has U.S. headquarters in Redwood City, California, and international headquarters in Ramat-Gan, Israel. For product information, please visit our Web site at checkpoint.com. -0-
Note to Editors: Digitivity and the Applet Management System are trademarks of Digitivity, Inc. Check Point, the Check Point logo, FireWall-1 and OPSEC are trademarks or registered trademarks of Check Point Software Technologies Ltd.
--30--pb/sf* ari/sf
CONTACT: Digitivity, Inc.
Andi Bruno, 650/947-1904
andi.bruno@digitivity.com
or
Hart Cooper Pittu
Kay Hart, 415/665-8855
hart@hcpp.com
|
