An organization's critical data have never been more at risk. Today's IT professionals face unending challenges in the area of proactive risk management. Today's attacks are more frequent, more lethal, and spread faster than ever. Patching has become impossible to keep current, leaving critical systems and infrastructure dangerously exposed during vulnerability windows. Regulatory requirements for protecting data privacy, integrity, and confidentiality are now in force. Despite heavy investments, security gaps still exist. The effects and results of an intrusion can be devastating to companies; these attacks may result in loss of data, reputation, time as well as business availability! Any of which would result in financial implications for your business. Companies depend on information to maintain daily operations and to control their supply chain. An Intrusion Prevention System is a system that protects the following:

Confidentiality — Protecting the confidentiality of information stored in electronic format on a computer system and preventing any form of unauthorized viewing or copying. Threats involve the introduction of backdoor programs, keyboard-logging programs, and other programs designed to allow unauthorized personnel access to information.

Integrity — Protecting the integrity of the information stored in electronic format on a computer system and preventing any form of unauthorized alteration or modification. Threats involve backdoor programs, network worms, and other programs that are designed to alter or erase information.

Availability — Protecting the availability of a computing resource, network, system, or information stored in electronic format on such a system or network and preventing any use or access by unauthorized personnel. Threats include Denial of Service (DoS) attacks and backdoor programs that allow the use of resources by unauthorized personnel for unauthorized purposes.

Due to the dynamic nature of network intrusions and threats, deploying a combination of both network and host IPS technologies provides the greatest level of protection for critical data and critical applications. Network IPS solutions are deployed inline at the network perimeter, core, or remote office. They are designed to protect your critical infrastructure by blocking internal and external attacks on the wire and are considered the first line of defense. Host IPS solutions are deployed on servers, desktops, and laptops. They are designed to protect critical systems and applications by blocking attacks at the host and are considered the last line of defense.

Combining best-of-breed network and host IPS technology results in the most comprehensive and robust defensive posture. Implementing and deploying proactive IPS technologies will result in fewer successful attacks, more efficient use of scarce security resources, and lower operating costs than simply deploying a single, limited technology and praying you avoid an attack. Integrating the strengths of each of the architectures provides a solution whose sum is greater than its parts. By deploying the complementary and integrated Protection-in-Depth technologies of McAfee Network and Host IPS Solutions, organizations can achieve superior protection and a proven ROI, all at a reasonable cost.