NetworkWorld: After conducting extensive testing, NSS Labs has concluded that many popular network firewalls are vulnerable to the TCP Split Handshake Attack. This type of attack tricks the firewall into believing that the hacker is coming from an internal, trusted connection. "If the firewall thinks you're inside, the security policy it applies to you is an internal one, and you can run a scan to see where machines are," explained Rick Moy, president of NSS Labs.
NSS Labs tested the Check Point Power-1 11065, the Cisco ASA 5585-40, the Fortinet Fortigate 3950, the Juniper SRX 5800, the Palo Alto Networks PA-4020, and the SonicWall NSA E8500. Of the six firewalls, only the Check Point product was able to resist the attack.
Comment and Contribute
Digg
del.icio.us
Newsvine
Facebook
Google
LinkedIn
MySpace
Reddit
Slashdot
StumbleUpon
Technorati
Twitter
Windows Live
YahooBuzz
FriendFeed
One of the ways around the issues of security and control that make some businesses wary of cloud computing is to build a private cloud -- one that remains within the corporate firewall and is wholly controlled internally. Private clouds also increase the agility of IT an organization's IT infrastructure and make it easier to roll out new technology projects. Download this eBook to get the facts behind the private cloud and learn how your organization can get started.
