JULY 21, 2010

ATI Update 66898 Released: New Applications, Strikes and Features

Today, we have released the first Application & Threat Intelligence (ATI) Update for our 2.0 operating system, number 66898. This update not only provides several new features, but also adds thirty new security strikes and three new application protocols. Additionally we have provided some overall enhancements to both our security and application protocol coverage. This ATI Update is available automatically for all BreakingPoint Storm CTM customers under maintenance. Let me provide some more information on some of these new features, applications and security strikes.

Application, Attack and New Feature Updates

The first feature I want to point out in this ATI Update is the newly-available protocol, TR-069. This protocol is used by service providers to remotely manage equipment located on their customer sites. Service providers use this to supply device configurations, manage device firmwares and monitor and configure performance. Look for a future post from Application Protocol Engineer Chris Adams, the developer of BreakingPoint's TR-069 simulation, wo will go into more detail on this new protocol.

We also added a great new feature for users of our Custom Application Toolkit. You now have the ability to intermix any of our more than 130 protocols directly with the Custom Application Toolkit. This provides greater flexibility in application flow designs by letting you use existing BreakingPoint protocols and then switching to the Custom Application Toolkit to edit those simulations for your unique simulation needs.  I have personally wanted this enhancement for quite some time, and I am happy to finally release this to users of the toolkit.

We added two other new protocols: H.248/Megaco and STUNv2. H.248 is a VoIP gateway signaling protocol, and STUNv2 is used to traverse NAT gateways. We also made updates and improvements to DCERPC, DNS, HTTP, MAPI, MSN, POP, RADIUS, and SMTP.

The BreakingPoint Storm CTM 2.0 operating system, released on July 7, features a new Security engine. This ATI Update addresses some known issues with the new engine, particularly around the handling of IP fragments and improved support for certain application proxies.

Finally, our security strikes for this ATI Update includes more 2010 Microsoft coverage, attacks targeting a variety of recent browser vulnerabilities, a recent libpng bug that affects multiple browsers, and several attacks against D-Link routers. Please see the full release notes for specifics on all the new and updated strikes.

ATI Update 66898 is available from the StrikeCenter portal.

Posted by Todd Manning
Bookmark and Share Printer Friendly Create PDF
0 comments
Tags: Tech Talk //
Post a Comment
  7. Leave this field empty

Required Field

Videos

More >


Interact







Google+		 LinkedIn

YouTube

Newsletter


Subscribe to BreakingPoint Labs blog by email:

Type in your email, hit submit and quickly verify your address.