home  |  about Secik  |  our solutions  |  the team  |  future projects  |  contact Secik

Our Solutions

Secik uses lots of solutions to work in an effective way and to prevent possible attacks or malicious intentions.

We always use Intrusion-detection systems(IDS) as a starting point in our research, because this could stop from the beggining illegal attempts during our operations. These intrusion detection systems always scan the computers to catch those so-called users that are logged in and shouldn't be logged in or to see those people who try to log in by using many password combinations and cracking software. Usually the problem in a network can come from hereand it should be stopped from the first time. Secik's rate to stop these attacks was 85% in 2004 growing to 98% in 2006, which it is a great rate which also can be improved.

IDS usually detect all the unwanted operations which are done illegal in an a network and cannot be detected by a normal firewall, which we always recommend our clients to use them. Secik solves the IDS problems related with forbidden log-in-s, access to important directories and files, worms, all kind of viruses, trojans, privilege escalations, the attacks made against certain applications which are data driven and general network attacks against vulnerable components. The IDS use by us are having the following parts:

  • Console which keeps track of all what happens and which also controls the sensors
  • Sensors are those which are building the security events
  • Main Engine which are storing the events in a database; this uses the pre-defined rules to signal the alerts

We gather all there three structures into a single device which we use on all the projects we have and which it is customized also for client's needs. when we deal with large companies or corporations which have really big and complicated computers networks we always use a network intrusion detection system, a platform which it is independent and which discovers the intruders by examining the traffic of the network and also multiple hosts if it is the case. We usually do this operation by connecting to a switch or hub. Our main tool regarding the network intrusion detection system it is Snort developed by Sourcefire, Inc.

Why do we use Snort? Because it is easy to use, very powerful and very configurable as we have written some implementations for it which can improve the results and minimize the time in which all the operations are taken.

In the same field, to bring the best security for large computer networks, we also use the hybrid intrusion detection system which mixes two or more methods of working. To obtain a very good view about the situation of the network, the network information it is combined with the information of the host, resulting a more complex report. Secik uses as Hybrid IDS framework, a tool we also customized for our needs called Prelude.

Secik uses also the application protocol-based intrusion detection system, particularly when we want to monitorize the servers of a network by comparing the activity in a certain group of servers and the transfers through different protocols. Our team is very experienced with these operations and the installation of such systems can be a matter of a few hours, including the testing and the generating of the initial reports.

 
 
 
 
 
 
 
 
 
home | about Secik | our solutions | the team | future projects | contact Secik | computer security audit | testimonials | partners | disclaimer
 
© Copyright 2004-2007 Secik Enterprise International. All the rights are reserved to Secik E.I.