Pravail Solution Protects Against Advanced and Insider Threats

New Network Security Intelligence monitors network traffic data, uses advanced analytics to help organizations close the security gaps left by firewalls and intrusion prevention systems.

Note: ESJ’s editors carefully choose vendor-issued press releases about new or upgraded products and services. We have edited and/or condensed this release to highlight key features but make no claims as to the accuracy of the vendor's statements.

Arbor Networks, Inc., a provider of network security and management solutions for enterprise and service provider networks, has introduced a new solution in its Pravail portfolio for enterprise and government network operators. Pravail Network Security Intelligence (NSI) monitors network traffic data and uses advanced analytics to help organizations close the security gaps left by firewalls and intrusion prevention systems (IPS). It looks inside the network and delivers the situational awareness required to identify advanced threats, internal network misuse or abuse, and also infected mobile devices connected to the network.

With the release of Pravail NSI, Arbor has created a platform for delivering actionable security intelligence that is critical for identifying and stopping attacks. Arbor’s Pravail family includes the Availability Protection System (APS), which looks out from the network perimeter to detect and mitigate, in real-time, application layer DDoS attacks. These stealthy attacks are the primary threat to security infrastructure solutions today which, if compromised, can threaten the very availability of networks themselves.

“Pravail NSI leverages Arbor’s threat detection technology which has been deployed in enterprise networks since 2003. The threat landscape has changed dramatically in the past two or three years, let alone over the past decade. Pravail NSI extends those capabilities to address an acute concern for businesses today, the damage to the bottom line and brand integrity that can come from an undetected advanced or insider threat,” said Arbor Networks president Colin Doherty.

Pravail NSI offers a comprehensive view of all activities occurring in, on and around the network including “bring your own devices” (BYOD) that are accessing corporate resources, botnet communication and application misuse. Using Pravail NSI, IT teams can:

  • Identify and address misuse of corporate resources and servers
  • Detect and defend against advanced threats including malware and botnets
  • Monitor critical services and systems and alert to suspicious activities that put data at risk
  • Remove infected hosts on the network
  • Monitor network activity of trusted users and identify suspicious activity; associate user ID to all network activity
  • Identify new devices on the network
  • Leverage detailed intelligence from inside the network into users, applications, services, domains and URLs

Arbor’s Peakflow traffic management and network security platform is deployed in Tier 1 and Tier 2 service provider networks globally. In conjunction with more than 230 ISP customers, Arbor has developed the ATLAS Internet threat monitoring system. With more than 35Tbps of Internet traffic intelligence, Arbor has developed a unique, globally-scoped view of malicious traffic traversing backbone networks that form the Internet's core.

Arbor’s security research team, ASERT, uses information from ATLAS and other sources to develop “fingerprints” or profiles of attacks in the wild. Pravail NSI relies on ASERT’s Active Threat Feed (ATF) to stay up-to-date against the latest attacks. ATF is Arbor's subscription service for distributing attack fingerprints, as well as detailed information and mitigation strategies. It is a 24x7 subscription-based activity-based fingerprint service. Using ATF information, Pravail NSI inspects, analyzes, and categorizes network traffic into a composite threat, enabling security administrators to identify worms, botnets, and malware at a glance. Many IT teams are stretched thin and struggling to manage their complex network security infrastructure. ATLAS and the ATF simplify security by automatically updating the Arbor products deployed in customer networks with the latest threat signatures, saving IT teams significant time and effort by eliminating the need for manual security updates.

More information is available at