IBM is introducing a new blade server that has intelligent technology designed to help it recognize and repel a denial-of-service attack. The IBM BladeCenter PN41 uses Deep Packet Inspection to distinguish between legitimate traffic and malicious packets.
eMarketer Whitepaper: Optimizing the E-Commerce Experience
From the Web to the Contact Center, are you prepared to proactively engage and keep your savvy customers? Read how e-commerce leaders are optimizing their sites with ratings, reviews, live help, Web analytics, mobile and more.
IBM (NYSE: IBM) is increasing its arsenal against hackers with a new beefed-up blade server. The IBM BladeCenter PN41, announced this week, combines Deep Packet Inspection technology from CloudShield with IBM's other protection platforms to create a powerhouse against attacks.
The system is designed specifically to better protect against denial-of-service attacks, one of the most difficult types to detect and prevent. It's slated to become available in October.
The BladeCenter PN41 will be sold as part of IBM's overall Telecom Integrated Solution for Security -- a robust system that aims to provide all-around protection for networks. IBM's Proventia Intrusion Prevention and Tivoli Security Operations Manager are also included in the package, which is billed as an all-purpose platform to keep malicious data away.
"You can program it to be a firewall, to do denial-of-service prevention, to do antivirus prevention, anti-spam -- the kinds of things that our customers currently buy appliances for and use in their networks," Scott Firth, director of telecommunications industry marketing 
for IBM Systems Group, told TechNewsWorld.
The BladeCenter PN41 allows administrators to set priorities for network activity. The system claims the industry's only support for CloudShield's Subscriber Services Manager and DNS Defender applications.
It also offers support for Check Point Software applications. The company keeps its BladeCenter architecture open as a member of the Blade.org initiative, inviting developers to get in on the process as well.
The ability to reliably stop denial-of-service attacks is something administrators have long sought. IBM saw the challenge.
"You need a way to quickly analyze the traffic that's all of a sudden flying at your system and then make decisions on that traffic," Firth explained. "It's so hard because you have to actually be assertive in the network and let your network traffic flow through your applications, then look at the traffic and make decisions," he said.
In essence, denial-of-service attacks involve someone trying to overwhelm a system by flooding it with data. They have become an increasingly common hacker threat.
"Ideally, the traffic -- from the hacker's perspective -- would be stuff that would cause the server to spend a lot of time working and processing on that, so it's using a lot of resources there [and] doesn't have the resources then available for legitimate requests coming from others," Clifford Neuman, director of the USC Center for Computer Systems Security, told TechNewsWorld.
The unpredictability of those attacks is what makes them particularly tricky to fight: By the time you realize what's happening, it's tough to take any significant steps.
"If you're overwhelming a network link, for example, and you detect the attacks on your end host system, there's not really much you can do. You can drop the packets there, but those packets are already utilizing resources on the link. One of the things you can do is start pushing back the defenses -- maybe get your ISP to block things," Neuman noted.
Even then, one has to be able to separate the legit traffic from the hacker traffic -- and advanced hacker methodology is making that easier said than done.
"A lot of the attack traffic is designed to look like legitimate queries," Neuman pointed out.
Trying to block just one location to keep the attacker away may not work as well as you'd think, either.
"Nowadays, you're seeing more of what are called 'distributed denial of service attacks.' You've got many machines that have been compromised across many different networks, all under the control of a single entity -- [so] now, all of a sudden, the origin and sources of all of these attacks are really scattered across networks in pretty much the same way your legitimate queries are," Neuman said.
It's those areas where IBM hopes its new BladeCenter can step in and help. Fighting advanced attacks requires advanced preparation, and engineers believe they've come up with the tool to take some of that headache away. Many system administrators, no doubt, hope they have succeeded.
Print Version
E-Mail Article
Reprints
More by JR Raphael
Next Article in Servers
|
IBM, HP, Dell See Boost in Server Sales While Sun Lags August 22, 2008 
Server sales have been robust for market leader IBM in the second quarter. HP and Dell also saw gains, with Dell claiming the "fastest-growing" title. Sun Microsystems, on the other hand, suffered a sharp decline.
|
Related Stories
|
IBM's Roadrunner Supercomputer Zooms Into Petaflop Territory June 09, 2008 
Ever wonder how the military keeps track of the United States' vast nuclear weapons stockpile? Today, the answer is "with Roadrunner" -- a supercomputer that has broken the petaflop speed barrier. The hybrid-processor giant will have time for other projects, too, such as conducting research in the areas of astronomy, energy, human genome science and climate change.
|
New IBM Server: It's No Hottie April 23, 2008 
IBM is introducing a new line of servers that it says could eliminate the need for extra air conditioning in data centers. Its new line of servers can be liquid-cooled, plus changes to its design make the system generate less heat and consume less power. It's targeting the iDataPlex at large server farms, such as those that enable cloud computing and Web 2.0 services.
|
IBM Serves Up Blade Management Tools November 20, 2007 
Open Fabric Manager, IBM's latest bid to ease blade server management, will ship in December, the company announced. Like HP's Virtual Connect, IBM's product is meant to reduce the hassle connected with virtualization and blade failure or replacement. Unlike HP's offering, however, IBM's will work with hardware from several major IT manufacturers, not just its own.
|
Related News Alerts
More by JR Raphael
|
Yang's No Longer Playing Hard to Get but Is Microsoft Playing? November 06, 2008 
Jerry Yang's comments that Microsoft should buy Yahoo have been treated by the industry as a kind of sad joke. Did Yahoo blow its chance months ago, when Microsoft was actually interested in talking about a deal? Is a deal still even possible?
|
A Blade Server Guy in an iPod World: What Gives? November 04, 2008 
Tony Fadell, the head of Apple's iPod division, is leaving his post and will be replaced by a controversial figure. Mark Papermaster is leaving IBM to join Apple, but Papermaster is a specialist in blade servers and PowerPC architecture. How is that a good fit?
|
Messenger Finds Blue Goo on Mercury October 30, 2008 
For many years, scientists believed that Mercury, the planet closest to the sun, was similar to the moon. New photos of the planet taken by NASA's Messenger probe, however, show a planet rich in volcanic activity and populated with a mysterious blue material that warrants further study.
|
Get Business and Technology News Alerts
Most Popular | Spotlight Features | Exclusives
This Week on ECT News Network | Podcasts
Online Retail Transaction Performance Indices
Inside E-Commerce Times
|
Reader Services
|
Corporate
|
Headline Feeds
Talkback: 
