Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

CHECK POINT FIREWALL-1 EMERGES AS PLATFORM OF CHOICE FOR INTERNET SERVICE PROVIDERS WORLDWIDE

Multi-Firewall Management Capabilities And Security Policy Flexibility Allows ISPs To Effectively Manage Security AND Create Additional Value For Customer Base

REDWOOD CITY, Calif. -- February 18, 1997 - Check Point Software Technologies Ltd. (NASDAQ: CHKPF), the market leader in enterprise security software and inventor of Stateful Inspection, today announced its position as enterprise security vendor of choice for the Internet Service Provider (ISP) marketplace worldwide. Check Point FireWall-1 delivers significant value-add and profit opportunities to ensure an ISP's competitive future in an increasingly aggressive marketplace.

The ISPs and telecommunications (telco) providers announcing their commitment to FireWall-1 today are using the product for one or more of the following three applications: 1) internal deployment within their networks; 2) a value-added firewall solution to offer their end-user customers; and 3) subscription-based managed security and Extranet offerings, including VPNs.

The following companies worldwide have chosen Check Point FireWall-1 as their preferred enterprise security solution for the above applications: CompuServe Network Services (Columbus, OH); Digex (Washington, D.C.); EUnet Deutschland GmbH (Germany); Genuity (San Francisco, CA); Hitachi Information Network Ltd. (Tokyo, Japan); Netrex (Detroit, MI); NTT PC Communications, Inc. (Tokyo, Japan); Quza (Great Britain); Telenor (Norway); US West (Denver, CO); UUNET Pipex (Great Britain); and WilTel (Atlanta, GA).

Additionally, the company has partnered with leading ISP and telco equipment providers Bay Networks, TimeStep Corporation, and U.S. Robotics to deliver FireWall-1 on their respective hardware platforms, further solidifying Check Point Software's position in these important growth markets.

According to International Data Corporation, there were nearly 2.4 million corporate connections to the Internet at the end of 1996, up from 1995's 1.7 million. IDC expects this market will reach over 4.7 million connections by 2000, and one of the fastest growth segments will depend upon enhanced security solutions offered by ISPs.

"As an important player in the enterprise security market, Check Point Software is well-positioned to offer the level of security and performance needed in this burgeoning marketplace," said IDC industry analyst Caroline Robertson. "There will be a dramatic increase in demand for enhanced security services as more corporations begin to bring Internet operations closer to their strategic center, and Check Point has signed up with key Internet service providers to be an integrated component of these offerings."

Open Platform Provides Flexibility to Accommodate Changing Market

Check Point FireWall-1 has become the preferred enterprise security solution for ISPs' managed service offerings as well as internal deployment within their networks due to the flexible, comprehensive OPSEC (Open Platform for Secure Enterprise Connectivity) architecture, its industry-leading enterprise management capabilities, and its fast and secure Stateful Inspection architecture. In addition, Check Point's SYNDefender add-on module for FireWall-1 safeguards ISP networks against SYN flooding attacks which have crippled several ISPs' operations over the past year.

The OPSEC architecture is a single platform that manages and integrates all aspects of enterprise security through an open, extensible management framework. As a result of the OPSEC architecture, ISPs and telecommunications providers can easily and seamlessly integrate a full spectrum of security applications to manage functions such as access control, address translation, authentication, auditing, accounting, encryption and content security such as anti-virus software, Java security and URL filtering.

ISPs can add functionality through optional OPSEC plug-ins, both from Check Point and third-parties, as required, enabling them to offer a variety of productized security services. For example, Check Point's optional ConnectControl module enables ISPs to provide automatic load balancing across multiple replicated servers (e.g., Web servers).

"Check Point FireWall-1 is a perfect fit for the sprawling networks with multiple points-of-presence and ever-changing requirements that characterize the ISP and telecommunications markets," said Deborah Triant, president and CEO of Check Point Software Technologies, Inc. "FireWall-1 and the OPSEC architecture enables ISPs to charge a premium for various levels of security, and allows them to standardize on a single, enterprise-wide security platform that can grow and change as the market changes."

A Single, Enterprise Security Policy for Heterogeneous Networks

As ISP network infrastructure continues to grow, the ability to manage increasing complexity is a crucial differentiator for today's ISPs. FireWall-1 offers the unique capability of managing multiple firewall nodes from a single console, simplifying this daunting task. With FireWall-1, an ISP can define and manage all facets of enterprise security with a single, central enterprise-wide security policy for their entire network, no matter how many points-of-presence (POPs) they may have.

Another area of complexity for ISPs and telcos is in the multitude of platforms that exist throughout their networks, and the management nightmare that exists when the security products are not centrally manageable nor interoperable across platforms. FireWall-1 enables ISPs to centrally manage their enterprise security across all the internetworking and computing platforms deployed within the network, including UNIX and Windows NT-based workstations and servers, Bay Networks routers, Xylan switches, and U.S. Robotics remote access servers.

FireWall-1's management GUI allows ISPs and carriers to quickly and easily configure different levels of security for individual customers, eliminating costly downtime and reconfiguration efforts. As a result, a multitude of security policies can be created and maintained for different clients, providing a significant value-add revenue opportunity for both wholesale managed Internet services and retail Internet and intranet accounts. In addition, multiple FireWall-1 console clients with varying levels of access can be deployed across the network, providing the ISP and its customer with the flexibility to divide management tasks according to the customer's requirements.

Application Support and Quality of Service through Stateful Inspection

Of utmost importance to ISP retail customers is application support. Retail customers utilize both dedicated and dial-up facilities that interconnect either businesses or individuals to Internet resources for intranet or Internet applications. Common application support from ISPs includes e-mail, World Wide Web access, audio, video, File Transfer Protocol and telnet. Specialized application support like groupware service or transaction-based electronic commerce are critical to the future viability of ISPs.

Check Point's Stateful Inspection technology allows new applications to be supported virtually the same day an application is released. As a result, ISPs can add further value to service offerings by providing specialized application support, allowing their customers to utilize cutting-edge technology. Check Point's FireWall-1 has consistently led the industry in application support, securing over 120 applications and services.

A key measurement for an ISP's future success is its ability to accommodate bandwidth demand with no service disruption, often called "Quality of Service." As ISPs focus on intelligent capacity planning, Stateful Inspection is a vital technology for high-performance security services as well. FireWall-1's INSPECT Engine provides the speed to make quick, bullet-proof security decisions based on the security policy and application-state information at the network level. Other firewall technologies have to stop, copy the intended transmission, inspect it through the application level, and then re-copy the transmission again to allow access. As ISP's upgrade to faster backbone technologies such as ISDN, high-speed xDSL technologies and dedicated access services that range from private-line connections to ATM, Stateful Inspection provides the speed needed to enhance high performance corporate connectivity.

About Check Point Software Technologies Ltd.

Check Point Software Technologies Ltd. is the leader in global enterprise security software and inventor of the "Stateful Inspection" architecture. The company commanded a 40 percent share of the worldwide firewall market in 1995 according to an IDC study issued in February 1996. Its products are sold worldwide through OEM partners, distributors, VARs, systems and network integrators and Internet Service Providers. The company has a U.S. headquarters in Redwood City, California and international headquarters in Ramat-Gan, Israel. For product information please call (650) 482-4900, email info@checkpoint.com or visit Check Point at http://www.checkpoint.com.

 

See also: Check Point Software Technologies ISP Market Initiative Partner Quote Sheet

###

1997 Check Point Software Technologies Ltd. Check Point, the Check Point logo, and Check Point FireWall-1 are trademarks of Check Point Software Technologies Ltd. All other product names mentioned herein are trademarks of their respective owners.