FacebookTwitterLinkedIn


Support Login  |  Partner Login  |  Contact Us
solutions section
Home
» Solutions Overview

Solutions Overview

Technology and the uses of information are constantly evolving. And along with that innovation and evolution comes threats and risks—talented and persistent threat actors, black market for information, compliance mandates, proliferation of consumer-based communication channels, to name a few.

How do you ensure the integrity of a company’s brand and reputation, customer or citizen identity data, valuable intellectual property, and a government’s classified information?

Built on a patented Deep Session Inspection™ platform, the Fidelis Extrusion Prevention System®, Fidelis XPS™, is the industry's only network security solution with the power to deliver comprehensive information protection. By providing session-level visibility and control to stop data breaches—from internal or external threats—on multi-gigabit-speed networks, organizations can solve their biggest data leakage challenges and defend themselves against cyber attacks.

Fidelis XPS comprehensive information protection enables:

Learn more about Fidelis XPS industry solutions for enterprises, governments, and healthcare organizations.


Content Protection

The first step in comprehensive information protection is to protect your sensitive and classified content. Regardless of the source of the breach, from data leakage to data theft, Fidelis XPS provides protection for your most valued information.

  • Identity Information - With its patented Deep Session Inspection™ engine and Smart Identity Profiling™, Fidelis XPS delivers the visibility and control into data transfers on the network, enabling implementation of the desired controls to protect identity information.
  • Digital Assets & Intellectual Property - Fidelis XPS provides the premier control for managing the transfer of digital assets—classified information, operational security information (OPSEC), design documents, source code, planning documents, financial statements and other proprietary information—over computer networks via Fidelis XPS's patented Deep Session Inspection™ engine and robust content analysis methods—granting the visibility and control into data transfers on the network to enable implementation of the desired controls to proprietary information.

back to top


Application Activity Control

The ability to control application activity on all network-based applications, including those from the new threats such as social networking sites/applications, is unique to Fidelis XPS. With Fidelis XPS' Deep Session Inspection platform, and its native port-independent inspection covering all 65,535 ports, it provides the most robust architecture for visibility and control of the applications in use on the network.

  • Network-Based Application Control - Fidelis XPS provides bi-directional visibility of and control over the protocols and applications running on the network, enabling your organization to see how the network is used for communication. With port and protocol independence and proxy-less inspection native to its Deep Session Inspection™ platform, Fidelis XPS goes beyond packet analysis by providing deep session inspection and payload reassembly, giving organizations the ability to manage both tunneled applications and application-specific functionality, all without the hassles of desktop and server configuration changes, and without negative impact on performance.
  • Social Networking Management - Social networking has become ubiquitous in today's enterprises. As social networking has become common place in the work environment, it is typically no longer practical to blacklist the entire site, but the risks of a data breach remains high with many surveys showing social networking applications growing in risk for data leakage. As the only solution to provide specific features to manage these applications, Fidelis XPS provides comprehensive visibility into and control over social networking network traffic, and enables fine-grained controls of particular social networking activities.

back to top


Encryption Policy Enforcement

By properly managing and enforcing your organization’s encryption policy the ability to protect and manage the information in your network through its entire lifecycle can be achieved. With Fidelis XPS’ robust controls, an organization can help ensure that encryption is used to protect sensitive information, while mitigating the risks of the unauthorized use of encryption.

  • Prevent Rogue Encryption - Rogue encryption—encryption used to subvert security controls—presents a high risk of data leakage and therefore must be managed. Fidelis XPS enables an organization to create policy to enable encrypted traffic to flow per the organizations encryption policy, while alerting on or preventing network flows that violate this policy. This visibility into and control over how encryption is used on the network is unparalleled, particularly by other solutions that make the incorrect assumption that all encrypted traffic is "good".
  • Information Lifecycle Management Protection – When your end users use unauthorized encryption, a negative impact on the information lifecycle management process is created. Whether the encryption is built into local applications or additional software is installed by the end user, keys are not being managed by the IT department, thus causing a variety of other processes to fail including recovery of backups, e-discovery, and disaster recovery. Not to mention the significant compliance issues involved when information cannot be recovered when mandated. Fidelis XPS can help an organization combat end users’ self-deployed encryption by examining each network session and any attached files for the use of encryption including application, cipher type, key strength, sender, recipient, port, session length, and session duration.

back to top


Threat Mitigation

A key component to comprehensive information protection is the ability to mitigate threat, such as detecting malicious activity and traffic to rogue destinations. Fidelis XPS' robust controls enhance an organization's network security architecture to enable threat mitigation at the application level, user targeted attacks, and other non-normal traffic.

  • Malicious Activity Detection - Attacks have become more customized and moved further up the architecture to the application layer, and often take advantage of user behavior rather than technical weaknesses—making it challenging for traditional inbound threat mitigation measures to keep up. Fidelis XPS provides an important layer of defense-in-depth to your network security infrastructure by examining bi-directional traffic at the session level. Fidelis XPS creates a malicious activity safety net to provide visibility into and control over potential malicious activity including: port-independent inspection covering all 65,535 ports; content inspection for protected/sensitive information; content inspection for malicious traffic and payloads; port-hopping/tunneling detection; data flows to unexpected countries; and rogue encryption at both the network and file level.
  • Traffic to Rogue Destinations - With certain countries known for their organized data theft activities, and others with prohibited interactions per government regulations, Fidelis XPS provides an organization the ability to manage that traffic with granular control or prevent it all together. Given the ability to quickly and efficiently define rogue destinations, Fidelis XPS enables an organization to apply specific policy to inspect and/or prevent traffic to high-risk locations through network addressing (including GeoIP information) and inspecting and/or preventing traffic to high-risk countries where the organization does not have operations or customers.

back to top