As a leading vendor in IDS market, iS-One fully understands users’ needs with its long time practical experiences on network security product development and engineering. Various technologies and designs were used to develop the LinkTrust® IDS products series:

1、Hardware based packet capture applied to the bottom layer greatly enhances the capacity of NIC monitoring and packet capturing. LinkTrust® IDS won’t lose any packet in any network, even the traffic flow of that network is up to 1000Mbps.

2、Adopted an overall state tracking technology and based on IP defragment and reordering as well as TCP stream assembly, LinkTrust® NIDS can records and maintains every initiate, installation and ending of the session. Simultaneously, it will write down the Sequence Number so as to ensure every detection not be affected by the IDS evasion.

3、Complete application layer protocol analysis is used. Upon the understanding of the known protocol and RFC criterion, LinkTrust® NIDS identifies each known attack accurately and efficiently. It is capable of detecting protocol anomaly and protocol misuse which completely cover the shortage of those IDS products based on pattern matching by counting the numbers of attacking signatures. Greatly improve the efficiency and scale of the detection, LinkTrust® IDS presently supports more than 30 main application protocols that keep far ahead of other IDS products.

4、Using a specialized hardware appliance platform and cooperates with the strong functionality of LinkTrust® Operation System, LinkTrust® NIDS is servicing with multiple CPU, multiple process and multiple thread. Its detection efficiency has reached to an unprecedented level. Among that, the leading model of LinkTrust® IDS, LinkTrust® ND-GIGA HA, can operate with a network traffic up to 2000Mbps in an actual network circumstances.

5、The new generation of LinkTrust® NIDS adopts multi-tier distributed infrastructure. While others are still draggled by the two-tier or just started at the beginning of the three-tier, iS-One has firstly furnished its four-tier infrastructure. The four-tier splits the middle-layer, Event Collector, into Application Server and Sensor Adaptor. This technology enables a unified and transparent management to the network-based sensor, host-based sensor, firewall, as well as other security components. Each component supports HA method to secure the flexible and reliable deployment in the large scale and distributed network.  

6、Through an unique Ncode technology, LinkTrust® NIDS provides a strong and edictal linguistic platform to the user who can self-define and edit attacking signatures. Not only easy to adjust the parameters and variables of the attacking signature, the user can also edit and write signatures themselves to analyze state tracking and application layer protocol of the specific protocol which is impossible to be done in those IDS products that merely identifying defined signature with simple scripting languages.