Intrusion Detection & Prevention
AT&T Managed Intrusion Detection Service protects your networking infrastructure by detecting and responding to unauthorized attempts to access your network. The hardware/software application is installed on your premises and connected to the AT&T Security Operations Center, where AT&T Service Technicians provide round-the-clock surveillance. The service monitors network traffic for potential misuse from internal and external sources, by capturing IP packets and performing real-time "signature" analysis, comparing the packets to a continually-updated database of over 1000 existing attack signatures. When a pattern of misuse is detected, the system quickly and automatically responds according to your predefined policies to send an alert and take immediate action.
AT&T, the recognized leader in network security, provides maintenance procedures, installation and day-to-day management. In addition, the full-managed service includes maintenance of hardware and software components and installation of required upgrades.
The service monitors your network via an unaddressed monitor port on a switch at your premises. Cisco Secure Intrusion Detection Sensors located at your site use a signature-based approach to perform real-time intrusion detection at the network level. This involves the capture and real-time analysis of IP packet "signatures" by performing both context and content monitoring. Context monitoring entails the examination of the IP packet header data. Content monitoring evaluates the assembly and examines the data content of a single or series of IP packets.
- AT&T Security Network Operations Center (S/NOC) - provides 24x7 monitoring and technical support and is located in a highly secure, fully redundant facility, equipped with emergency backup power
- Customer-defined Signature Creation - allows you to customize the service to meet your business needs by including specific signatures in the database
- Customer-defined Security Posture - lets you set the security to a Cisco-defined posture (Relaxed, Moderate, or Strong) or customize it depending on your security needs
- Incident Response - allows the intrusion detection system to automatically respond in a customer-defined manner upon recognizing patterns of misuse
- Dynamic Access Control List (ACL) creation - is done in the screening router to shun attacks
- Onsite installation and maintenance - all the required hardware components are installed by AT&T and maintained by the AT&T S/NOC
- Out-of-band management - is performed via secure modem and code actuated switch
- LAN Support - supports both 100 and 10 Mbps Ethernet LANs
- Online reports - are based on data collected from each individual Intrusion Detection Sensor managed by the AT&T S/NOC and are available on AT&T's BusinessDirectSM portal
- Enables you to leverage AT&T's technical expertise and world-class customer service and support
- Allows you to focus on core business functions by saving time, money and effort required to design, monitor and upgrade network security
- Detects possible malicious activities and responds quickly with actions based on your pre-defined security posture
- Provides a critical defensive layer of security for your network
Contact Us
Contact us online about Intrusion Detection & Prevention or call us at 800-248-3632.
Related Resources
Protecting Your Business: Respond and Restore
Detecting and Mitigating Security Risks
