FEDERAL SUPPLY SERVICE Federal Network Systems LLC - Verizon

More documents

Recommendations

Info

6. SOFTWARE CONVERSIONS - (132-32 AND 132-33) Full monetary credit will be allowed to the Government when conversion from one version of the software to another is made as the result of a change in operating system, or from one computer system to another. Under a perpetual license (132-33), the purchase price of the new software shall be reduced by the amount that was paid to purchase the earlier version. 7. DESCRIPTIONS AND EQUIPMENT COMPATIBILITY NETFACADE SOFTWARE PRODUCT DESCRIPTION AND PRICING NetFacade Intrusion Detection technology provides a new alerting capability for use by network security or management personnel of an unauthorized intrusion onto your network. NetFacade adds an additional perimeter of monitoring for intrusions, it complements Firewalls and Intrusion Detection Systems and reduces the possibility of intrusions occurring without alerting to the activity. In addition, it has a secondary effect of distracting intruders from probing and attacking the real hosts on the network. NetFacade simulates network hosts running seemingly vulnerable services. A scan of the range of IP addresses NetFacade is simulating will return information on the simulated services as if they were real network services running on actual hosts. Since there are no actual users of these virtual network simulated hosts, all traffic to them is considered to be suspicious. All traffic to NetFacade is logged and then an alert of the activity that is occurring on the simulated hosts is sent to the security administrator/management personnel. These alerts can be configured at various levels and with specific response actions. Because of this capability NetFacade can identify all new and unknown attacks which can be tagged as new signatures for your Intrusion Detection Systems and Firewalls. NetFacade Version 1.3 now available includes: Intrusion Detection Features: Elimination of network bandwidth limitations since NetFacade has to be concerned only with the traffic going to its simulated hosts A high level of data reduction and low rate of false-positive type incidents since the all traffic to NetFacade is suspicious No limit on the number and types of attacks that are detected, including new and unknown types attacks Distraction of attackers away from the real hosts that NetFacade is protecting IP Filtering used to only allow access from specified administration workstations Network Simulation Features: Simulation of up to a Class C IP network of virtual hosts Simulates an entire Class C network or any subnet therein Network address space can be dedicated or an existing network can be used to "interleave" simulated hosts with actual hosts Appropriate responses to operating system fingerprint IP packets Host Simulation Features: Simulation of eight different operating systems: IOS 11.1(4) for Cisco Routers IRIX 1.0 for x86 Redhat Linux 5.0 for x86 Redhat Linux 5.1 for x86 Solaris 2.5.1 for Sun Sparc Solaris 2.6 for Sun Sparc SunOS 4.1.4 for Sun Sparc Microsoft NT 4.0 for x86
Simulation of thirteen different services with versions appropriate for the different operating systems, including: FTP (wu-2.4.2-academ[BETA-12](1), System V Release 4.0, and SunOS4.1 versions) Telnet (appropriate versions for each operating system) SSH (SSH Communications Security Ltd's 1.2.26 and 2.0.9 versions) SMTP (SMI-4.1, ESMTP 8.8.7, ESMTP 8.9.1 and generic versions) HTTP (Apache 1.2.6, Netscape Enterprise 3.0, and Microsoft IIS 4.0 versions) IMAP (IMAP4rev1 v10.205, v10.223, v10.234 and v9.0(157) versions) Echo (UDP and TCP versions) Daytime (UDP and TCP versions) Finger Rlogin Portmap/tcpbind (UDP and TCP versions) Mountd (UDP and TCP versions) Rusers (UDP version) NFS Configuration/Monitoring Features: Configuration and monitoring performed through web-based interface Connections only allowed from specified workstations Session encrypted using SSL Connection authenticated using a username and password Friendly and flexible configuration of network, hosts, and simulated user accounts User-friendly configuration of alert recipients Interface for viewing logs Status report generation capability Logging Features: All activity to NetFacade is logged All logs record the source IP address Used to determine what the potential threat is to the rest of the system Activity is logged two ways All TCP/IP packets received or sent by the system are logged All service façades log the data they receive in hexadecimal and ASCII format for ease of determining the type of attack Activity logs stored in an a SQL database Web-based interface to activity reports Reporting based on user-defined parameters Alerting Features: Alerts accomplished via e-mail notification to configured list of recipients Recipients alerted periodically if any activity has been detected Frequency of alerts is configurable Alert includes a summary of the activity including the source IP addresses, the targeted service/port and the amount of traffic received Enhanced responsiveness to port sweeps Flexibility in attack recognition and forensics Automated attack recognition Multiple alerting methods Multiple alert levels Web-based configuration of alert levels and associated actions Web-based configuration of associating alert levels with specific types of activity Automated attack recognition tied to alerting Unknown attacks are identified and can be used as new attack signatures for IDSs and FWs Alerting based on the type of attack and the alert level configured for that type of attack
Page 1 and 2: FEDERAL SUPPLY SERVICE AUTHORIZED I
Page 3 and 4: INFORMATION FOR ORDERING OFFICES AP
Page 5 and 6: 8. Trade Agreements Act of 1979, as
Page 7 and 8: 13.1 FEDERAL INFORMATION PROCESSING
Page 9 and 10: the contract, based on the potentia
Page 11: c. The Contractor agrees to provide
Page 15 and 16: TERMS AND CONDITIONS APPLICABLE TO
Page 17 and 18: ceiling price for individual tasks
Page 19 and 20: 11 INVOICES The Contractor, upon co
Page 21 and 22: To facilitate the migration, Verizo
Page 23 and 24: - Enterprise Performance. High-avai
Page 25 and 26: Security Services (Antivirus progra
Page 27 and 28: - Security Awareness Training. Awar
Page 29 and 30: Please note that installation optio
Page 31 and 32: B7. Sustaining Engineer B8. Junior
Page 33 and 34: A. MANAGEMENT (A1-A3) These positio
Page 35 and 36: independently and lead large techno
Page 37 and 38: (3) Education and Other Requirement
Page 39 and 40: corporate Information Management gu
Page 41 and 42: evaluations for vendor equipment. A
Page 43 and 44: (a) Substitution. Two (2) to four (
Page 45 and 46: analyses to provide comparative dat
Page 47 and 48: (a) Substitution. Education may be
Page 49 and 50: (a) Total Experience. Five (5) year
Page 51 and 52: efinements, reducing operating time
Page 53 and 54: (1) Experience Requirements: (a) To
Page 55 and 56: Federal Network Systems LLC (FNS) C
Page 57 and 58: Federal Network Systems LLC (FNS) C

FEDERAL SUPPLY SERVICE Federal Network Systems LLC - Verizon

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?