Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

Forum Systems Inc.

Product Version Certified: Forum Sentry 1503 and 1504 v5.1, Forum XWall 1503 and 1504 v5.1

Certified for use with: Check Point NG AI and NGX

Product Description: Web Services Firewalls and Security Gateways are a necessity for any enterprise using the Extensible Markup Language (XML) for internal as well as external business communication. XML and it's associated Service-Oriented Architecture (SOA) create a new threat profile where by malicious users can manually and more-so automatically get unauthorized access to exposed transactions, corrupt data and inject viruses across port 80 or 443. Forum XWall and Forum Sentry products are now OPSEC certified to enhance the operational management as well as lower the costs associated with administering application oriented networking infrastructure.

Forum Sentry Web Services Security Gateway enables trusted information sharing using XML data and Web services across disparate security domains and complex business processes. Forum Sentry allows enterprises to achieve a higher return on investment by implementing secure service-oriented architectures and event-driven applications.

Forum XWall Web Services Firewall with data-level authentication, XML intrusion prevention and interoperability enforcement protects enterprises against XML viruses, denial of Web service attacks and unauthorized data access. Forum XWall ensures applications are appropriately accessible and continuously available by enforcing policies that check data integrity and control access to exposed enterprise Web services.
 
Key Features and Benefits
OPSEC Integration
Additional Information 		Clear Forum Systems, Inc.
 

Company Description: Forum Systems, Inc. is the Leader in Web Services and SOA Security with a comprehensive suite of trust management, threat protection and information assurance solutions for the automated Web. Forum Systems' flexible hardware, software and embedded products make vibrant business communications possible by actively protecting XML data and Web services across networks and business boundaries. Forum's products have been chosen by over 100 Fortune 1000 industry leaders and are winners of Network Computing Magazine's Well-Connected 2004 Award and Product of the Year 2004 Award, Network Computing Magazine's Editor's Choice 2003 Award, Network Magazine's Product of the Year 2003 Award and DEMO 2004 Invitation.

 
Key Features and Benefits
Ongoing industry examples point to lost, misplaced, or stolen data that could potentially affect millions of customers. A virus embedded in Extensible Markup Language (XML) document or malformed Simple Object Access Protocol (SOAP) message create vectors of attack that can corrupt workflows, steal data and stall enterprise productivity. The integration of Forum products with Check Point firewalls allows enterprises to arrest the movement of XML-embedded malicious software, monitor illicit XML traffic and effectively enforce access control policies to Web services.

By using security policies that centrally aggregate, correlate and respond to uncharacteristic XML-related behaviors, OPSEC Certified Forum products are able to offer both a signature based as well as anomaly detection guards that recognize Web Services Description Language Scanning, XML Schema Poisoning and XML denial of service. Alerts generated as a result of SOAP/XML intrusions are logged to a central Check Point server which can be viewed by the administrator user a centralized console. This ensures SOAP/XML is correlated with network firewall logs to determine path of irregular activity.

Key Benefits:

  • Real-time secure monitoring of XML-related network activity
  • Uniform and structured representations of logs
  • Event capture of anomalous Web Services transactions
  • Lower operational costs of Service-Oriented Architectures
  • Intelligent Application-Oriented Networking infrastructure

OPSEC Integration
The "Check Point VPN-1/Firewall-1 Event Logging Specification (ELA)" API enables Forum Systems to log XML-related network events to the Check Point SmartView Tracker. The Check Point VPN-1/Firewall-1 OPSEC API Specification allows Forum products to leverage the Check Point's Secure Internal Communications (SIC) and send XML intrusions incidents to VPN-1/Firewalls. The SmartMap application is able to read, interpret and correlate XML and Web services activity.
 

Additional Information

Anatomy of Web Services Attack
Adaptive Approach to Web Services Security
Forum Fortified/Sustainable SOA Security Poster