Rohde & Schwarz's deep packet inspection engine enters next gen firewalls

January 23, 2017 // By Julien Happich
To detect JavaScript attacks and protect organizations and enterprises from JavaScript-based cyberattacks, IT security vendor Infotecs is embedding JavaScript content & metadata extraction capabilities developed by Rohde & Schwarz Cybersecurity in their next-generation firewall.

JavaScript, which is one of the main technologies for building web content, is a popular tool for cybercriminals who abuse the programming language for malicious attacks. Particularly, cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks are typical JavaScript security threats that top the list of web application vulnerabilities provided by the Open Web Application Security Project (OWASP).

Cross-site scripting enables attackers to use JavaScript to inject malicious scripts into web pages viewed by unsuspecting users. The script allows cybercriminals to steal sensitive user data, tamper with accounts, spread malware or steal financial credentials. The highly critical XSS security flaw in Yahoo’s consumer email service back in 2016 is one example of how a script-based attack can allow cybercriminals to read any user’s emails and affect millions of user accounts.

R&S PACE 2 – the Deep Packet Inspection (DPI) engine by Rohde & Schwarz Cybersecurity – now enables Infotecs’ ViPNet xFirewall to inspect web content for potential malicious or injected code and to block Javascript threats in realtime. This way, R&S PACE 2 and the ViPNet xFirewall ensure network security without compromising on performance.

Infotecs ViPNet xFirewall is a next-generation firewall that offers effective multi-level network security for business processes and protection against modern cyberattacks. The flexibility, easy management and unique intelligence of the ViPNet xFirewall not only provide comprehensive protection but also ensure major efficiency increases. In addition to application awareness (DPI mechanism), the ViPNet xFirewall includes inline configuration, stateful inspection, integrated antivirus and identity awareness.
More information at https://ipoque.com/solutions