In-Depth

Briefs: IPv6 attacks, updated iQ.Suite

Guarding against IPv6 attacks; iQ.Suite strengthens Exchange 2003 e-mail security features

• By Mathew Schwartz
• 06/18/2003

Internet Security Systems Inc. (ISS) in Atlanta warned security administrators of increased IPv6 attacks, and also touted the ability of its Dynamic Threat Protection platform to guard against such attacks.

IPv6 is the next generation of Internet Protocol since IPv4; it’s also known as Internet Protocol version 6, and IP-NG.

“Many IPv4 network administrators are already behind when it comes to protection against IPv6 abuse,” says Chris Rouland, vice president of Internet Security System's X-Force security intelligence organization. “Hackers are already actively taking advantage of new IPv6 services, and turning this lack of understanding about IPv6 to their own advantage.”

Two parts of the Dynamic Threat Protection platform, the RealSecure Network 7.0 intrusion protection application and Proventia protection appliances, support several current IPv6 standards and tunneling mechanisms. Both can decode and inspect all supported IPv4 protocols and any associated attacks or misuse even if encapsulated in IPv6.

ISS says IPv6 is steadily growing in popularity worldwide, and IPv6-only production networks already exist in Europe and Asia. In addition, significant work has gone into developing and standardizing IPv6 transition mechanisms to ease the shift from IPv4 to IPv6. These mechanisms, coupled with well-connected tunnel brokers on every continent, mean that IPv6 is now readily available to anyone with an IPv4 address, regardless of whether IPv6 is supported.

For a PDF white paper on IPv6 and the security implications, visit: http://documents.iss.net/whitepapers/IPv6.pdf

GROUP Releases iQ.Suite for Exchange Server 2003

GROUP Technologies' iQ.Suite Version 3 supports Microsoft Exchange Server 2003 and the Simple Mail Transfer Protocol (SMTP) and strengthens existing Exchange 2003 e-mail security features by providing anti-spam and antivirus protection, and offers content filtering on both the server and e-mail messaging platforms.

“The ability to block inappropriate inbound and outbound e-mails and stop the distribution of such content within an organization helps to build and enforce a strong defense against breaches in confidentiality and provides an effective weapon for fighting spam, viruses, and offensive content,” says Jürgen Wege, CEO and founder of GROUP Technologies AG, based in Karlsruhe, Germany.

The new iQ.Suite runs under Windows 2000 Server service pack 3 (or higher) and simplifies administration and installation on Exchange. It includes a range of features to detect spam, analyze archived files, and manage approved sender lists. The securiQ.Trailer component helps companies comply with government regulations, such as the Health Insurance Portability and Accountability Act, by generating company-wide, consistent sender signatures for all outgoing e-mail. GROUP says that iQ.Suite is the only product for Exchange 2003 with that feature. iQ.Suite 3 for SMTP features the LDAP Data Interchange Format (LDIF). LDIF gives network administrators independence from Active Directory, and lets them create sender/recipient rules to better implement e-mail security policies.

For more information, see http://www.group-technologies.com/.