Two powerful Cloud Intrusion Detection and Prevention engines delivering duel packet analyses and interrogation at wire speed. SafeMedia's Cloud network and application layer intrusion detection and prevention System (CIDPS) is the only kernel engineer delivering unmatched performance as well as accurately prescribing Cloud security converge throughout a private, hybrid, or public Cloud fabric. With eleven target-based processors SafeMedia's Network and Application security system offers robust inspection and integration with the accuracy and granularity of target based inspection.



HALO NS Cloud Security offers over 45,000+ rules providing coverage to your Cloud infrastructure and application layers, allowing end-to-end protection for all the incoming and out-going traffic. Coverage include application control, signature control, anomaly controls, and target based control, expanding the scope of threat mitigation to include viruses, malware, botnets, dangerous URLs, protocol behavior and a variety of attacks, such as those vulnerabilities originated through tunneled applications, encrypted traffic compressed traffic and files, preventing the unauthorized use of proxies and encrypted tunnels.

Protocol Behavioral Analysis

Minimal False Positives through Protocol Behavioral Analysis: False positives distract valuable network security personnel from concentrating on what matters most-the continuity of your network's operations. More than a simple 'packet sniffer', that only checks and monitors incoming packets, or simple signature detection, SafeMedia drills deeper and maximizes the capture of intruding and hostile traffic through the deployment of Protocol Behavioral Analysis as well as adaptive network patterns, machine learning through intelligent libraries, protocol anomaly, rate-based detection, out-of-sequence packets, nonsensical headers and other malicious intruding hostile traffic.

Wire Speed Detection and Prevention

SafeMedia's visionaries created a new Cloud Security technology platform embedded in easy to use distributed network appliances, capable of protecting public and private Cloud deployments, safeguarding the network perimeter, critical internal and external assets, data, remote users, customers, and partners.

The current and eminent security risks associated with Cloud Fabrics is the unrestricted and massive use of botnets, Trojans, key-loggers, circumventing proxies, P2P applications, encryption, obfuscation, and DHT routed applications, created a massive security threats which current mainstream security technologies (e.g. firewalls, intrusion detection and prevention) are incapable of addressing with the Hybrid and Public Cloud fabrics, as those technologies depend mainly on the crude agent based methods and the archaic use blocking IPs and ports. SafeMedia's system goes beyond IPs and ports, checking packets and patterns of suspicious behavior as they enter and exit internal, external, networks, and Cloud Fabrics.

Our product is the embodiment of several new technologies developed by SafeMedia representing a new era of Cloud Internet Security and paves the way for a new and elegant approach to firewall and intrusion detection and prevention technologies, beyond the current agent based solutions currently offered in the marketplace.

Basic Setup of HaloNS Cloud Intrusion Detection and Protection System

Customize the Deployment and Configuration:

Fine-tune all 45,000+ rules in the system, or let us do it for you.

All detection engines are configurable to operate in alert mode or blocking mode with all 45,000+ rules on tap, right out of the box.

Combined with an intuitive drill-down graphical interface, SafeMedia's Intrusion detection and Prevention system allows your network security professionals to surpass the highest standards in a Network Security system.

A scalable solution through SafeMedia's Cloud Network and Application Security Sensors, Software, and hardware as well as its modular product architecture, additional protection modules can be introduced as new threats emerges.

System management platform that is intuitive and pushes down policy to managed sensors and systems. Centralized management of SafeMedia's Network Security nodes and policies is implemented through the Network Security Manager system, integrated with a rules database and alerts database.

Accelerate troubleshooting and threat resolution with real-time, packet-level forensics with SafeMedia's Intuitive 'Single Pane of Glass' Drill-Down Graphical Interface.

Cloud System Management Platform that is intuitive and pushes down policy to managed sensors and systems.

Centralized management of SafeMedia's Network Security nodes and policies is implemented through the SafeMedia's Network Security Graphical Interface System, integrated with a rules database and alerts database.

Rules are organized in functional groups in an INNODB database, updated every 3 hours or as required by the user with ultimate and complete user control on every new rule or updated rule and the activation or deactivation of a rule groups or individual rule.

Rules updates granular controls:

Unique rule update methodology allows the user to select what groups of rules to use, what rules to update and what rules to disable.

Unique rule performance reporting identifying the worst performing rules and allowing for real-time rule edits and modification.

SafeMedia's security team and our relationship with an many independent researchers is complemented by the open source community such as Emerging Threats, VRT, Dsheild, shadow server, Military, and Intelligence Agencies provide and maintain the most accurate and updated rule groups in the industry.