Sana Security Joins Trusted Computing Group to Help Develop an Open Industry Standard Specification for Securing Endpoint Host Connections to Networks

Business Wire, Nov 11, 2004

SAN MATEO, Calif. -- Intrusion Prevention Experts Join Effort To Help Reduce Damage To Networks From Clients By Ensuring Information Integrity

Sana Security, Inc. a leader in intrusion prevention software (IPS), today announced that it has joined the Trusted Computing Group (TCG), an open industry standards organization whose specifications help vendors build products that let users protect critical data and information. Representatives from the company are working with other TCG members to develop an open specification to help secure endpoint host connections to networks.

As part of the collaboration, Sana Security will help develop the Trusted Network Connect (TNC) specification, which will assist in protecting networks from viruses, worms, denial of service attacks and host software security vulnerabilities, including operating system and application software patches. The specification effort complements TCG's efforts to provide building blocks to help secure critical data and information across a variety of platforms.

"The Trusted Computing Group is delighted to welcome Sana Security to participate in this important industry effort to ensure endpoint integrity," said Brian Berger, Trusted Computing Group marketing work group chair. "The unique strengths that Sana brings to the equation with its intrusion prevention expertise are a vital component in the development of future specifications and standards, helping to enable system security and information integrity using open standards."

The recent introduction of the Attack Shield family of innate defense modules significantly expands Sana's security portfolio to include built-in client endpoint security, while leveraging core technology components that Primary Response(R) server customers rely on today. With Attack Shield products real-time, out-of-the-box protection from targeted attacks is a reality -- no signatures are required and updates are a thing of the past. Instantly upon software installation, Attack Shield Worm Suppression (WS) protects systems from known and unknown network worm attacks that target core Windows services. Not only is the product easy to use, but it also complements existing antivirus solutions by protecting systems against worms that bypass traditional processes. Providing this additional layer of security delivers immediate value to organizations by ensuring business continuity and reduced operational costs, while enabling simple, secure computing in Internet-connected businesses and government entities worldwide.

"The IT world is undergoing a paradigm shift in how we must address network security. Open standards groups like the TCG are extremely important because they enable our customers to remain ahead of the curve with the latest technology," said John Zicker, CEO, Sana Security. "A prime example is code injection prevention at the OS. It forces a shift in how traditional end point security products like antivirus are used to protect critical information resources. At the end of day, it is all about the optimal protection of our customers' digital assets, which enable business continuity. We believe that our contributing role with the TCG will help do just that."

The Trusted Network Connect specification will complement client security enabled by Platform Module (TPM), a microchip that stores encryption keys, passwords and digital certificates in platforms. Networks with systems not using TPMs also can be protected at endpoints.

About The Trusted Computing Group (TCG)

TCG is an industry standards body formed to develop, define, and promote open standards for trusted computing and security technologies, including hardware building blocks and software interfaces, across multiple platforms, peripherals, and devices. TCG specifications are designed to enable more secure computing environments without compromising functional integrity with the primary goal of helping users to protect their information assets from compromise due to external software attack and physical theft. More information and the organization's specifications are available at the Trusted Computing Group's website, www.trustedcomputinggroup.org.

About Sana Security

Sana Security develops a complete product suite of intrusion prevention software that requires no static rules or signatures to deliver the best protection from known and unknown attacks with the lowest, most predictable operating costs.

Sana Security's Primary Response(R) and Attack Shield brand products improve security and business continuity for large enterprises and government organizations on servers, personal computers, and industrial systems, while driving the emerging standards for simple, secure computing in an Internet-connected world. Sana Security is headquartered in San Mateo, Calif. (Silicon Valley), with offices in global business and technology centers. For more information, visit www.sanasecurity.com or contact the company by phone at 650-292-7100.

(C) 2004 Sana Security, Inc. All rights reserved. Sana Security, Primary Response and the Sana Security and Primary Response logos, are trademarks and/or registered trademarks of Sana Security, Inc. All other trademarks are the property of their respective owners.