White Papers

• Achieving a Clean Bill of Health in HIPAA Compliance with Check Point Solutions
• Check Point Software Technologies, a worldwide leader in trusted network security, offers a suite of solutions that support healthcare organizations in achieving healthy compliance with HIPAA security standards. These solutions are comprehensive and integrated, providing a solid base for HIPAA compliance while also supporting requirements common to other security regulations.

• Achieving Network and Application Protection
• This white paper examines current and emerging security service trends. Explains the value of delivering attack protection capabilities for VLAN-enabled environments, the value of provisioning secure remote access - including in VLAN-enabled environments - and the increasing importance of integration within an existing infrastructure. The paper covers both Enterprise and Service Provider environments and includes brief case studies.

• Achieving Sarbanes-Oxley Act Section 404 Compliance with Check Point Solutions
• This white paper provides a brief background on Section 404 of the Sarbanes-Oxley Act of 2002 (SOX) and shows how Check Point solutions meet SOX requirements, using the process control objectives from COBIT-the accepted standard for best IT security and control practices.

• Application Intelligence
• An overview of the security landscape that necessitates, and defense strategies that comprise, Check Point Application Intelligence. Application Intelligence is a set of advanced capabilities that detect and prevent application-level attacks.
  
  Languages: English, Brazilian, Chinese, French, German, Italian, Japanese, Spanish, Spanish (Latin America)

• Attacks and Counter Measures in 2.5G and 3G Cellular IP Networks
• This white paper reviews some of the potential attacks against the GPRS Tunneling Protocol (GTP) and the possible effects this will have on cellular providers. It also reviews some of the architectural alternatives that providers can consider.

• Bridging the Gap Between Connectivity and Security
• The IT business environment today demands an integrated approach to virtual private networks (VPNs) combining the needs of connectivity and security into a single solution. Check Point VPN-1 security gateways provide secure connectivity for distributed networks by combining proven security with advanced technologies designed to simplify VPN creation, deployment and management.

• Build Your Security Infrastructure with Best-of-Breed Products from OPSEC
• Security threats have become more complex, combining various security attacks. The best security involves multiple security products. This guide helps you build a comprehensive security solution using best-of-breed applications.

• Check Point and Citrix
• Learn how Check Point and Citrix together provide secure on-demand access to enterprise applications.

• Check Point Endpoint Security
• Increasing worker mobility and criminal sophistication are exposing enterprise networks to more security threats than ever before. In response, organizations are demanding a new strategy that includes a broad set of technologies for endpoint security unified into a single agent with central control.

• Check Point InterSpect
• This paper outlines the security risks and environment associated with internal networks, and discusses how internal network security differs from perimeter security. The paper also describes how Check Point InterSpect addressed the unique security challenges of internal networks.

• Check Point IP Appliance Advantages
• This white paper explores Check Point IP Appliances and how they are capable of providing a level of design, performance and usability to set the standard on delivering high performance and highly resilient security services to demanding networks.

• Check Point IPS Engine Architecture: New Technologies Provide a Robust Integrated Intrusion Prevention System
• This white paper describes how technologies in the new Security Gateway R70 IPS engine fulfill key IPS requirements; fast performance, accurate, secure, reliable, updateable, application aware, and granular control of protections. With Check Point IPS technologies, you can have confidence that your organization’s network will get top performance and full functionality without compromising on security.

• Clustering on Check Point IP Appliances
• In today's global-economy companies it is critical that networking devices maintain availability. Clustering allows several independent appliances to join together as one virtual machine for a common security goal. Learn how through IP clustering technology, high availability can be provided without compromising performance.

• Delivering Application-Layer Security at Data Center Performance Levels, Co-written by Intel
• Application-layer threats are increasingly the vector of choice for hackers and malware. At the same time, companies are beginning to transition to 10 gigabit (Gb) Ethernet networks, which require security solutions capable of sustaining these speeds in order to maintain a positive return on investment. The Check Point® security software running on Intel® multi-core processors was designed with these two challenges in mind. Rather than make companies choose between performance and security, this solution increases throughput while simultaneously raising security levels. This white paper explains the Check Point Open Performance Architecture and reviews the Intel technologies used to secure service provider, enterprise and small and medium-sized business networks.

• Endpoint Security Considerations for Achieving GLBA Compliance
• Rebooting the global financial system may take years. The international move to new regulatory organizations will require financial institutions to change the way they do business. No one knows exactly how the system will change yet, but one thing is certain: financial institutions will be required to protect the security and confidentiality of customer information as defined in regulations such as the Gramm-Leach-Bliley Act.

• Endpoint Security Considerations for Achieving HIPAA Compliance
• In 2003, the U.S. Dept. of Health and Human Services published the HIPAA Security Rule to safeguard electronic protected health information (EPHI). These security provisions apply to all healthcare providers, payers, and information clearinghouses. In gauging threats to security of EPHI, unprotected endpoints constitute the largest source of potential breaches.

• Endpoint Security Considerations for Achieving PCI Compliance
• Electronic theft of personal and financial data is a serious and growing problem that drives up costs for credit card issuers and the merchants they serve while undermining consumer confidence and loyalty. In response, the Payment Card Industry has developed the PCI Data Security Standard, defining requirements for protection of cardholder data.

• Evolution of IPS
• IPS functionality can be deployed in two key variants: standalone and integrated. Historically, at least until recently, the most common method for deploying IPS has been on standalone appliances. While there were good reasons for this approach, a strong case is developing for deploying IPS as integrated functionality within existing security enforcement points. This white paper will discuss each approach in more detail.

• FDE Detailed Product Overview for Mac OS X
• The Mac platform has been making significant inroads into the enterprise marketplace. This paper details popular methods of securing data at rest on Macs and their short-comings when compared to full-disk encryption. The Check Point Full Disk Encryption solution for Mac OS X and its implementation are described.

• FDE Detailed Product Overview for Windows and Linux
• How secure is my data? This paper details popular methods of securing data at rest and their short-comings when compared to full-disk encryption. The Check Point Full Disk Encryption solution and its implementation are described.

• Federal Guide to the Value of Encryption
• Encryption is a cyber security technology used to protect the confidentiality, integrity, and availability of information stored on or transmitted between computers. Encryption solutions from Check Point automatically obscure digital files and make them unreadable by unauthorized users.

• Guide to the ROI of Encryption
• Encryption is a cyber security technology used to protect the confidentiality, integrity, and availability of information stored on or transmitted between computers. Check Point Full Disk Encryption can reduce recurring financial risks of security exposure by 90 Percent.

• Guide to the TCO of Encryption
• As the familiar saying goes, "There's no such thing as a free lunch." So it is with using information technology. Even so-called "free" open source applications carry unavoidable costs of installation, management and usage. Some of these costs can be controlled or even eliminated by smart use of appropriate applications, management technology and best practices. But in the end, everything of value costs something to own and use.

• Handheld Wireless Security
• As Smartphones and other handheld wireless devices become an integral part of the modern business landscape, malicious activity is increasingly being carried out by organized cybercriminals who seek to exploit vulnerabilities for financial gain. To be successful, a business must allow mobile workers to access needed resources while ensuring that confidential information and assets are not compromised.

• How to Choose a Small Business Internet Security Solution
• With a myriad of offerings on the market, selecting a security solution that's right for the small business can be a daunting task. Many companies promise solutions that provide security, but how do you know if it's the right solution or comprehensive enough? This paper examines some of the key evaluation criteria and capabilities of different security solutions.

• Internet Security Solutions for Government
• This paper covers the key security architecture elements for government and military organizations.

• Leverage IPS to Make Patch Tuesday Just Another Day
• This white paper discusses the inherent challenges of Patch Tuesdays, and the need for pre-emptive protections offered by intrusion prevention systems. By taking this comprehensive approach, which combines robust IPS functionality with a concerted patching strategy, network administrators can better equip themselves to handle Patch Tuesdays and secure the network between updates. Check Point provides IPS capabilities on dedicated appliances and full IPS capabilities integrated into comprehensive security gateways.

• Managed Security Services for Small Businesses
• Small businesses are connecting to the Internet in record numbers. The more you open your network, the more you open your business to risk. Confidential data can be exposed; customer privacy can be jeopardized; service availability affected; and your business reputation damaged. This white paper outlines the advantages that small businesses can gain by outsourcing security management services and provides advice on what to look for when choosing a managed security service provider.

• A New Approach for Detecting and Blocking Buffer Overflow Attacks
• This white paper discusses Check Point Malicious Code Protector in detail. Included is an overview of why Malicious Code Protector was created and how it delivers pre-emptive protection against an entire class of attacks.

• Opportunities in Data Center Security
• Check Point offers enterprises a fully integrated data center security solution that provides the same types of cost, control, and compliance benefits as those achieved by IT-focused data center projects. Because the tools it uses to improve data center security—centralization, consolidation, virtualization, and standardization—are the same as the tools used for many other IT projects, enterprises can magnify the effect and ROI of their data center initiatives by adding Check Point data center security to the plan.

• A Practical Guide to Web Application Security
• An overview of how to approach each of the OWASP Ten Most Critical Web Application Security Problems with Check Point Solutions.

• Preventing Data Leaks on USB Ports
• Regulating the electronic flow of information stored in digital format has never been so hard. Most organizations have attempted to reduce the risk of data leaks from servers and networks with firewall, intrusion prevention, authentication and access controls. The mobility trend driving widespread use of laptops for remote and mobile computing has recently spurred the use of encryption solutions for protecting data on devices that are lost or stolen. But now, a new risk is sidestepping these controls – one that creates the opportunity for data to slip outside the protective net without detection. The culprit is any plug-and-play storage device attached to a stationary PC or laptop USB port.

• Protecting Industrial IT Environments and Mission Critical Networks
• Extending the computing environment into industrial facilities must be done with care. Otherwise, organizations run the risk of disrupting operations and doing more harm than good. In this regard, it should be clear that at the intersection of these trends lies the need for a new type of security solution—one that meets the unique requirements associated with industrial environments. In addition, this white paper will explore the challenges of providing network security in an industrial environment and establish the requirements of a network security solution for industrial operations.

• Protecting Stored Cardholder Data for PCI Compliance
• The Payment Card Industry Data Security Standard (PCI DSS) is an industrywide standard consisting of six control objectives and 12 requirements. The scope of requirements is broad, encompassing nearly every aspect of network and information security. Requirements include a mixture of security technologies and best practices.

• Remote Access Anytime, Anywhere: Clientless entry delivered seamlessly with SSL Network Extender
• Companies today face the challenge of providing full network-level access as they continue to rely on legacy or client/server applications that by their nature are not "Web-friendly." Non Web-enabled, legacy, and client/server applications still represent an essential core of enterprise applications utilized today. As such, SSL VPNs require a solution that allows Web-based VPN client to have full access to these important productivity applications. This white paper outlines how SSL Network Extender from Check Point delivers secure network-level connectivity over the Web, extending enterprise resources to remote employees, partners, and suppliers.

• Secure IP Telephony for the Enterprise
• With the advent of Voice over IP (VoIP), new security challenges are presenting themselves for the protection of information being exchanged over this emerging protocol. Learn more about these security challenges and how to protect your VoIP infrastructure against external threats.

• Secure Remote Access for the Distributed Business
• Businesses today are defined by a wide variety of distributed work locations, and a diversity of worker types with differing information requirements. At the same time, a number of new information security and privacy regulations—such as PCI, Sarbanes-Oxley, Gramm Leach Bliley and HIPAA—are being phased in and toughened.
  
  These new realities present organizations with a new set of challenges that have begun to pose a serious dilemma.

• Securing Internal Networks
• This white paper illustrates the critical need to augment perimeter security with internal security solutions for a complete security solution that protects internal resources and systems from both external and internal attacks.

• The Seven Key Factors for Internet Security TCO
• This new white paper from Check Point defines the significant contributing factors to TCO for Internet security deployments and addresses how Check Point Software Technologies provides industry-leading capabilities across these areas.
  
  Languages: English, German

• Simplifying Compliance for Multiple Regulation Environments
• Check Point Software, a worldwide leader in security, offers a suite of solutions that support companies in any industry in achieving compliance with multiple regulations. Check Point solutions are comprehensive and integrated, serving as a solid base for compliance with all major regulatory standards. In addition, Check Point solutions deliver fundamental business value by reducing risk, supporting new business processes, and protecting and enhancing the ongoing trust of customers and business partners. Check Point simplifies compliance for organizations facing multiple regulatory requirements.

• Software Blade Architecture
• IT professionals understand that “one-size-fits-all” security solutions are making it more difficult to adjust to changing business needs. The Check Point Software Blade architecture provides a better alternative to deploying disparate, stand-alone security systems in order to keep up with evolving security threats.

• Solving the Performance Hurdle for Integrated IPS
• Rapidly changing security threats are demanding closer integration of IPS and firewall functionality to keep networks secure. In this whitepaper learn how new performance-enabling technology from Check Point allows implementing as much integrated IPS functionality as required without system degradation.

• Testing the Effect of Encryption on Disk Performance
• The effect of using a disk encryption product is usually negligible for a business user. Results reported in this white paper measure the actual performance effect of encryption for two system configurations.

• Tolly Report
• Independent report from Tolly Group that shows Check Point VPN-1 beating Cisco and Juniper by providing the right protection that businesses need in their backend and front office. Additionally, Check Point's integrated IPS functionality along with its centralized management, offers a better Total Cost of Ownership.

• USB Drives: Friend or Foe?
• This whitepaper describes how security professionals can reduce risks of vulnerabilities to portable applications and USB storage. It surveys the current state of USB storage and explains architectural background on the operation of portable applications. The paper also provides several examples of attacks using USB drives that exploit endpoints. It concludes by noting how Check Point Endpoint Security can block risks to an enterprise such as information leakage and attacks using USB and portable applications.

• Web Intelligence Technical Note
• A comprehensive explanation of the web attack protections offered by Web Intelligence.

• What Every Small Business Needs to Know About Internet Security
• Computer networks and the Internet are powerful business productivity tools. This white paper discusses good security practices for small businesses and how they can cost effectively secure their networks and broadband Internet connections.