AES
Advanced Encryption Standard. A symmetric encryption algorithm with key lengths of 128, 192 or 256 bits
AMC - Arkoon Management Center
This is the advanced centralized management
platform for Arkoon FAST360 appliances. It optimizes the centralized management of a multiple FAST360 appliance configuration.
Antispyware
Software to detect and eliminate spyware. In FAST360 appliances, part of the Sophos antivirus feature.
Antivirus
A software package which analyses data such as email file attachments or web file transfers, to detect viruses, worms, trojan horses or other malware and to prevent the malware being activated on target PCs or other systems. Antivirus programs use signature databases to recognize viruses. Arkoon FAST360 appliances include antivirus software developed and continuously updated by Sophos, Europe’s leading antivirus developer.
Application layer analysis
In-depth analysis of network traffic at the application protocol layer, to ensure that protocol exchanges respect RFCs and/or other relevant standards, but also that they respect enterprise security policies (usage restrictions, blocking of “covert channel” attempts, etc)
Arkoon AKS
This is the software system for FAST360 appliances. It can be updated
remotely.
Arkoon Manager
The configuration tool for FAST360 appliances. Used to configure the whole security policy and functions (security, network, availability, etc.) of the appliances.
Arkoon Monitoring
The monitoring tool for FAST360 appliances. Carries out real time
monitoring (logs, alerts, status monitoring of the appliance, monitoring of the bandwidth of the flows, etc.) and updates the system (AKS). Also monitors IDPS signatures, Antivirus signatures, heuristic antispam rules and URL filtering categories.
Arkoon Reporting
The analysis tool for FAST360 appliance logs. Extracts statistics on the various monitoring parameters in the form of reports (number of alerts, viruses detected etc.).
Arkoon Tools
The suite of management tools for FAST360 appliances, comprising
Arkoon Manager, Arkoon Monitoring and Arkoon Reporting. It is supplied natively with each new version of AKS
Authentication
In information systems, the procedures by which a user’s identity (or another device’s identity) is verified before authorizing access to information systems and resources. The most basic form of authentication is the logon/password combination. More secure systems typically use “multi-factor” authentication, for example smartcard and pin code.
Certificate Authority (CA)
A Certificate Authority validates and authenticates certificate requests and certificate revocation lists. An individual certificate should only be considered valid if it is authenticated by a trusted CA.
CheckPhone
Software producer specializing in telephone security (classic or IP). CHECKPHONE is a technological partner of Arkoon in the implementation of global security solutions for VoIP. Checkphone products are compatible with FAST360 appliances via the FireConverge interface.
Common Criteria
Common Criteria for Information Technology Security Evaluation An standard international (ISO/IEC 15408) for evaluating information systems security.
Convergence
Term describing the convergence of two traditionally separate datacommunications networks, the voice (telephone) network and the data (Ethernet/IP) network.
DES
Data Encryption Standard A symmetric encryption algorithm using 56 bit keys
Digital Certificate
A data block incorporating a pair of asymmetric keys, information about the owner of the keys, and a digital signature issued by a certification authority. The most common format in use today is X.509, which standardizes the structure of the certificate and the information it contains, as well as the hierarchy of certificate authorities which ensure its validation. Digital certificates are the basis of non-repudiation, digital signatures, information confidentiality, and strong authentication of individual users.
Digital Signature
A procedure generally based on X.509 certificates, authenticating the identity of the person transmitting a document and guaranteeing the integrity of the document.
Digital Vault
A digital vault is a secure (encrypted) storage area on a device; it appears to the user as a separate disk, and is used to save sensitive confidential data.
Dynamic Routing
A set of protocols by which routers exchange information about the networks to which they are connected, allowing them to establish the optimum route between any two networks. FAST360 appliances support the RIP, BGP and OSPF routing protocols.
Encryption
The use of a key-based algorithm to transform a document or data such that it is unintelligible to anyone other than a person with the necessary key to decrypt the data.
Encryption Algorithm
Mathematical techniques used by encryption systems. Two principal classes of encryption algorithms can be identified:
- symmetric algorithms use the same key to encrypt and decrypt.
- asymmetric algorithms use a pair of keys, the public key and the private key. The public key is used to encrypt documents to be sent to the owner of the corresponding private key. The private key cannot be calculated from the public key.
The most widely used algorithms include DES, Triple DES and AES for symmetric encryption, and RSA for asymmetric encryption, also known as public key encryption.
FAST – Fast Applicative Shield Technology
This is the key technology for FAST360® appliances. It controls network and application protocols in real time. FAST interacts with the other security modules through its integration at the core of SSA.
FAST SSL
An application-layer filtering module on FAST360 appliances. FAST SSL ensures SSL connections respect the SSL standards, that key exchange and encryption algorithm negotiations conform to enterprise policies, and the X.509 certificates exchanged as part of connection establishment are valid.
FAST360
The name of the range of multifunction (UTM) security appliances from
Arkoon Network Security. They are known as FAST360 appliances.
FireConverge
Intelligent software interface which allows a FAST360 appliance to
communicate with a Checkphone probe to send information on VoIP connections being analyzed and to receive neutralization orders for these connections (in accordance with the telephony policy applied by the Checkphone software).
Firewall
A firewall is a device which analyses and filters network traffic, blocking unauthorized and illicit connections to protect the network from intrusions, dangerous content (viruses, etc), or preventing unauthorized use (P2P, web filtering, etc).
FTP
file transfer protocol, a protocol widely used on the internet to transfer files from one system to another.
IDPS – Intrusion Detection Prevention System (or FAST in line IDPS)
The intrusion detection technology for FAST360 appliances. FAST in line IDPS is an extension of the FAST technology which is able to detect and neutralize applicative attacks with or without protocol violation taking connection context into account.
Integrity
Data integrity is said to be achieved when a specified data set (eg, a file) is not altered in any way in handling, storage or transmission.
IP-PBX
PABX (Private Automatic Branch eXchange) IP, used to link internal VoIP
extensions with the external public telephone network.
IPsec VPN
A virtual private network (VPN) implementation based on the IPsec (Security Architecture for the IP Protocol, RFC2401) standard. An IPsec VPN uses strong authentication and data encryption at the IP layer to secure data exchanges over the internet.
Media Flow
Secondary flow of a VoIP communication (initiated by the signaling flow)
used to transport information (mainly voice or video). The protocols of the MEDIA flow are RTP (Real Time Protocol) and RTCP (Real Time Control Protocol).
Minarkconf
The minimal management interface, console mode, for FAST360®
appliances. Minarkconf is used in particular for the first initialization of the appliance.
Non repudiation
In cryptography, the possibility of verifying that the sender and the receiver of a given message are who they claim to be, that the sender really did send the message, and that the receiver did receive it.
PABX
Private Automatic Branch eXchange: device which manages interconnection of the enterprise telephone network and the external telecom provider’s network.
PDA
Personal Digital Assistant Small handheld computing device used typically for on-the-move email, diary, phone directory, and notepad functions; typically also allow reading/editing of documents, spreadsheets and presentations and may also include multiple communications features (GSM, WiFi, Bluetooth…)
PKI
(Public Key Infrastructure) A system that binds public keys with corresponding user identities by means of a certificate authority. In addition to the information systems components (servers, client and server software, user components such as smartcards) a PKI may also include legal contracts and assurances and documented management and maintenance procedures to ensure appropriate security levels.
QoS
(Quality of Service) In datacommunications networks, the capacity for the network (via the devices which manage the traffic) to ensure appropriate levels of bandwidth and latency for different types of traffic. For example, voice or video traffic needs minimum latency and constant bandwidth; email synchronization requires high bandwidth for short bursts of time, but latency (within limits) is not an issue.
RFC (Request For Comments)
RFCs are a collection of documents referred to by the Internet Community and which describe, specify, help in implementing, standardize and debate the majority of standards, technologies and protocols associated with the Internet and networks in general.
S/MIME
Mime (Multipurpose Internet Mail Extension) was developed as an extension of SMTP to support multimedia attachments in email. Secure MIME is a further extension integrating additional security: authentication (MD5, SHA-1 digital signatures) and encryption (RSA, RC2, DES).
Security BOX
A modular software suite developed by Arkoon, implementing strong authentication (X.509 certificates), data encryption, irreversible deletion, digital signature, etc. insuring the confidentiality and integrity of information stored on PCs, laptops, servers, mobile devices, in email exchanges and other communications.
Signaling flow
VoIP flow used to allow communication between VoIP terminals (IP
telephones or softphones) and which negotiates the secondary media flow parameters. The main signaling protocols are H.323, SIP, MGCP and SDP (which is dedicated to negotiating the media flow).
Softphone
Software which turns a computer (under Windows, Mac or Linux) into an IP
telephone.
Sophos
Software producer specializing in anti malicious code technologies. SOPHOS is the technological partner of Arkoon supplying the antivirus and antispyware engine for FAST360® appliances and the associated signatures.
SSA – Security Scalable Architecture
The integration architecture for the various security modules (firewall, IDS, antivirus, etc.). SSA has the special feature of being a kernel architecture loaded onto all FAST360 appliances.
SSL VPN
Secure Sockets Layer VPN; A VPN tunneling technique based on Secure Sockets Layer, a protocol devised by Netscape Communications Corp. to deliver secure, encrypted connectivity to web sites. SSL operates between the TCP layer and application layer protocols.
SSL360
The range of SSL VPN servers offered by Arkoon
Triple DES
(3DES) A symmetric encryption algorithm in which the DES algorithm is applied three times, with a key length of 168 bits
URL Filtering
Mechanism for restricting user access to certain websites, corresponding to enterprise web access policies. URL filtering can be used to limit web browsing to strictly professional sites, to prevent users visiting dangerous sites (viruses, “warez”), or to protect the enterprise against legal liabilities (phishing, pornography, etc).
UTM – Unified Threats Management
Generic name given by IDC to characterize security appliances which integrate a firewall, IPSEC VPN gateway and an antivirus system. Appliances which integrate multiple network, protocol and content protection functions are now known as UTM or multi-function appliances. FAST360® is the range of UTM appliances from Arkoon Network Security.
VoIP – Voice Over Internet Protocol
Set of application protocols mainly based on UDP and used to establish communication for the transport of information (essentially Voice, Instant messaging and Video) in real time.
WPM – Weighted Pattern Matching
Technology exclusive to Arkoon used in the intrusion detection module (IDPS). Each signature recognized assigns a number of points (a score) to the alert level for the active connection under attack. When the value exceeds a trigger level, the active connection is neutralized and the attack is blocked. WPM technology is used to guard against false positives.
