|
What
is the G-Server?
The G-Server is a multi-function Port 80 and Port 443 protection appliance,
designed to protect organizations from the dire consequences of Web site
content and application attacks in real time. In addition to protecting
Web servers from publishing unauthorized, altered or damaged information,
the G-Server also efficiently authenticates incoming HTTP requests. Why do I need the G-Server?
Relying solely on trusted network security products still leaves your
organization’s
Web site open to sabotage. That means anything from profanity to corrupt
pricing to terrorist demands can suddenly appear on your Web site—creating
financial risk exposure as well as lasting damage to your organization’s
reputation. Gilian’s G-Server verifies that all content exiting your
Web server, as well as every functioning Web application, is authentic
and unaltered. This protection, which extends even to dynamic content,
automatically stops faulty information and corrupted transactions from
ever reaching customers, prospects, investors, and business partners. What
is ExitControl™?
The G-Server is based on ExitControl, breakthrough technology that enables
you to verify every piece of static or dynamic content leaving your Web
server, as well as every Web application, is authentic and unaltered. ExitControl
automatically detects any unauthorized changes to your pages and applications
and replaces distorted content and transactions with the correct information.
ExitControl also provides immediate notification of the problem and tells
you exactly where the problem occurred.
How does ExitControl work?
Your Web site’s legitimate producers of Web content create
digital signatures for all new or revised Web objects—such as
HTML pages, GIF files, or JPEG files. Located at the exit point to
your network, ExitControl
uses those digital signatures to verify the authenticity of each page
leaving your Web server and intercepts any fraudulent content from
exiting. As
a result, only approved content is allowed to be published. Click here
for more detailed technical information about ExitControl.
What is G-AppPROTECT?
Few corporate Web sites have devices to monitor port 80
and 443 traffic . G-Server fills this void with AppPROTECT technology
which halts bogus
HTTP and HTTPS requests to the Web server, such as attempts to attack
or exploit Web server vulnerabilities. What is G-AppWATCH?
Our G-AppWATCH feature uses the ExitControl approach to
automatically ensure all dynamic processes are authentic. That means G-AppWATCH
will
not allow
Web applications to execute if it is determined that there has been an
unauthorized change to the application. As a result, G-AppWATCH prevents
you from publishing erroneous dynamic content as well as keeps these applications
from causing further damage to your
internal
corporate network.
What about dynamic content?
G-Server protects both static and dynamic content. With dynamic
content, the Web server’s output—that is, price totals,
stock prices, and so on—depend on multiple, external programs
and resources, such as ASP or CGI scripts and databases that contain
the information to be built. To verify the integrity of the dynamic
output, digital signatures of all processes, scripts and applications
are created and compared in real-time. If any change to the application
or script is detected, the application is simply not allowed to execute.
As a result, not only is the display of corrupted dynamic content prevented,
but all related computing resources to which the applications and scripts
have access to are protected as well.
What can hackers do if they gain access to your scripts and applications?
Since your Web applications contain gaps that allow hackers easy entry,
they can quickly hack your databases, corporate servers, and create backdoors
into your network. If my site goes down, I can restore it within 30 minutes. So, why do
I need the G-Server to keep me available?
Downtime costs organizations enormous amounts of money per hour in terms
of repairs costs, lost revenues, and damaged goodwill. The bottom line
is few companies can afford shutdowns while administrators try to find
and fix a corruption. Regardless of the type of attack, the G-Server
keeps the Web site available with authentic content. In fact, visitors
will not
even be aware of a security breach. Does the G-Server have vulnerability scanning capabilities?
The G-Server now incorporates the eEye Retina scanner,
rated #1 by Network World’s review (December 2002). The Retina
scanner automatically runs when new content is deployed and when an alert
is triggered. As
a result, forensics are produced to enable you to not only fix the
content issue, but to close up the vulnerability that allowed it to
occur in
the first place.
What is so special about the Gilian Guarantee?
A lot of security products come with disclaimers that offer no warranty
if a Web site attack is successful. Gilian is making an industry-first
offer by being the first and only software product company to guarantee
the performance of its product. Just purchase the Gilian G-Server product,
operate it in accordance with your software license agreement and Gilian
guarantees that altered, corrupt, or unauthorized information will never
appear on your Web site. If altered content does appear, Gilian will
recoup your documented damages up to $25,000. Who are Gilian’s customers?
Gilian’s customers range from Fortune 1000 financial institutions
and insurance organizations, leading healthcare providers, media corporate
and manufacturers to technology companies, government agencies, airlines,
and others. Customer references are available from Gilian’s sales
representatives on request.
|
