FORM 20-F - Check Point

More documents

Recommendations

Info

� User Directory software blade – Enables Check Point gateways to leverage directory servers (LDAP) based user information stores, eliminating the risks associated with manually maintaining and synchronizing redundant data stores. � IPS Event Analysis software blade – Provides a complete IPS event management system providing situational visibility, easy to use forensic tools, and reporting. � SmartProvisioning software blade – Provides centralized administration and provisioning of Check Point security devices via a single management console. � SmartWorkflow software blade – Delivers a formal process of policy change management that helps administrators reduce errors and enhance compliance. � Reporting software blade – Turns vast amounts of security and network data into graphical, easy-tounderstand reports. � SmartEvent software blade – Centralized, real-time security event correlation and management for Check Point and third-party devices. In addition, we offer our SMART-1 security management appliances that combine functionality, storage and turn-key deployment into a single device. Our software blades run in a variety of deployment environments and on platforms that include standard workstations, servers and dedicated appliances. Check Point has both software and dedicated appliance solutions for gateway and management offerings. Check Point offers integrated solutions that are sold and serviced jointly with key partners including Crossbeam Systems Inc. and International Business Machines Corporation (IBM). Different client products run on different client Operating Systems (OS), such as Microsoft Windows, Mac OS, Microsoft Windows Mobile, Symbian, Linux and PalmOS. Technologies We have developed and acquired a variety of technologies that secure networks, endpoints and information. � Stateful Inspection technology – Our patented Stateful Inspection technology is a premier network security technology. In order to provide accurate and highly efficient traffic inspection, Stateful Inspection extracts and maintains extensive “state information,” i.e., data that provides context for future screening decisions, from all relevant communication layers. Stateful Inspection runs on a network gateway or an endpoint, such as a PC, and enables our products to inspect network traffic at high speed. Our Stateful Inspection technology can be adapted to new protocols, software applications, and security threats. It can be run on a wide range of operating systems. � Application Intelligence – Provides a set of advanced capabilities that prevents the exploitation of vulnerabilities in business applications, including vulnerabilities in the application code, communication protocols, and the underlying operating system. � Security Management Architecture (SMART) – A core component of our unified security architecture, SMART enables our customers to configure and manage security policies from a central administrative point. This technology enables the definition and ongoing management of security policies for enterprises of all sizes. This object-oriented architecture maps real-world entities, such as networks and users, to graphical representations that can be manipulated in a database. Integrated monitoring and reporting tools improve the manageability of the system by providing administrators with real-time information on the state of network and security systems. These tools also provide longer term trending information that is useful for periodic security management tasks, such as security audits. 24
� Security and Network Traffic Enforcement technologies – Based on our Stateful Inspection technology, the INSPECT engine scans all incoming and outgoing traffic at security enforcement points. These are typically located at the network perimeter as security gateways, on critical servers, or inside the network, dividing the network into separate segments. We have developed a broad range of technologies that can be implemented by our INSPECT engine. In addition, third party technologies can be implemented through our Open Platform for Security (OPSEC) framework. � SecurePlatform – Bundles the Check Point security solutions together with an operating system (OS) in a single package that is easy to deploy. It optimizes the performance of security and operating systems and includes a set of tools that ease setup and network configuration, thus reducing the total cost of ownership. SecurePlatform runs on a variety of open systems, i.e., systems whose key interfaces are based on widely supported standards. � ClusterXL – Provides high availability and load sharing to keep businesses running. It distributes traffic between clusters of redundant gateways so that the computing capacity of multiple machines may be combined to increase total throughput. If an individual gateway becomes unreachable, all connections are redirected to a designated backup without interruption. � CoreXL – Enables the intelligent balancing of security traffic loads between multiple cores on multi-core processors. It results in a higher level of performance for integrated intrusion prevention. � SecureXL – A framework of software and hardware technologies, including third-party technologies, SecureXL is designed to increase performance. By using SecureXL, hardware vendors can accelerate the performance of appliances on which our software is installed. With SecureXL, our products can be integrated into high-performance networks typically found in large enterprises and service providers. � TrueVector – A patented, flexible and efficient software technology for enabling high-performance, scalable and robust Internet security of PCs. TrueVector stops attempts to send confidential data to unauthorized parties by malicious software, such as keystroke loggers and Trojan horses. It monitors all applications running on protected computers, allowing trusted applications to engage in network communications, while blocking network connections by untrusted applications. � Full Disk Encryption Secure Pre-Boot Environment – Full Disk Encryption (FDE) Secure Pre-Boot Environment (PBE) is a secure, proprietary operating program. PBE, along with FDE’s access control and authentication architecture and Multi-Factor Authentication Engine (MFAE), encrypts all information stored on a PC’s hard disk, i.e., delivers full-disk encryption. The full-disk encryption technology protects every sector of the computer’s hard drive, including the operating system files. This prevents successful attacks on the OS and attacks to gain access to sensitive data on the drive. � Hybrid Detection Engine (HDE) – At the heart of the IPS software blade, the HDE utilizes multiple detection and analysis techniques to detect hostile or suspicious traffic. These techniques include the following: signature-based methods to detect known patterns of attacks targeted at the network and at vulnerabilities within the network; protocol analysis to validate that the traffic construct meets the expected standards; anomaly detection to identify instances where network traffic exhibits abnormal characteristics; OS fingerprinting to determine the OS type of the traffic destination, which ensures proper receipt and processing; multi-element correlation to detect widespread illicit activity launched from the same source address; dynamic worm mitigation whereby rapidly proliferating worms are detected and automatically blocked from spreading within the network; as well as other techniques to deliver comprehensive network protection. � Intrusion Prevention with Confidence Indexing – Based on several analysis data points for every network traffic flow, the IPS software blade determines a level of confidence that a certain traffic flow is an attack. 25
Page 1 and 2: SECURITIES AND EXCHANGE COMMISSION
Page 3 and 4: UTABLE OF CONTENTS PART I Item 1. I
Page 5 and 6: ITEM 1. IDENTITY OF DIRECTORS, SENI
Page 7 and 8: 2005 2006 December 31, 2007 (in tho
Page 9 and 10: Our future operating results will d
Page 11 and 12: equires significant time and resour
Page 13 and 14: that we pay SofaWare NIS 13 million
Page 15 and 16: Compliance with new and changing co
Page 17 and 18: Our business and operations are sub
Page 19 and 20: Also, the volatility in the foreign
Page 21 and 22: Finally, another key trend affectin
Page 23: Our endpoint security offerings pro
Page 27 and 28: Collaborative Enterprise Support (
Page 29 and 30: Check Point Software Technologies (
Page 31 and 32: Property, Plants and Equipment Our
Page 33 and 34: We derive our sales primarily throu
Page 35 and 36: Management makes estimates of fair
Page 37 and 38: Equity-based compensation expense W
Page 39 and 40: Results of operations The following
Page 41 and 42: Total revenues in 2008 grew by 11%
Page 43 and 44: General and Administrative General
Page 45 and 46: Quarterly Results of Operations The
Page 47 and 48: As a percentage of total revenues:
Page 49 and 50: Liquidity and Capital Resources Dur
Page 51 and 52: Off-Balance Sheet Arrangements We a
Page 53 and 54: Tal Payne has served as our Chief F
Page 55 and 56: Each non-employee director who is f
Page 57 and 58: Nominating committee. The nominatin
Page 59 and 60: Equity Incentive Plans The followin
Page 61 and 62: Trustee. A trustee designated by ou
Page 63 and 64: ITEM 7. MAJOR SHAREHOLDERS AND RELA
Page 65 and 66: eceived on December 27, 2007) and N
Page 67 and 68: Articles of Association and Israeli
Page 69 and 70: Election of directors. Our ordinary
Page 71 and 72: Approval of certain transactions; o
Page 73 and 74: o In a criminal action in which the
Page 75 and 76:
(as shown in the table below). The
Page 77 and 78:
converted into freely repatriable U
Page 79 and 80:
income. A shareholder who does not
Page 81 and 82:
The table below provides informatio
Page 83 and 84:
PART II ITEM 13. DEFAULTS, DIVIDEND
Page 85 and 86:
Our controller reviews all manageme
Page 87 and 88:
ITEM 16F. CHANGE IN REGISTRANT’S
Page 89 and 90:
ITEM 19. EXHIBITS 1 Articles of Ass
Page 91 and 92:
CHECK POINT SOFTWARE TECHNOLOGIES L
Page 93 and 94:
F- 3 Kost Forer Gabbay & Kasierer 3
Page 95 and 96:
F- 5 Kost Forer Gabbay & Kasierer 3
Page 97 and 98:
CONSOLIDATED BALANCE SHEETS U.S. do
Page 99 and 100:
STATEMENTS OF CHANGES IN SHAREHOLDE
Page 101 and 102:
Page 103 and 104:
Page 105 and 106:
Page 107 and 108:
Page 109 and 110:
Page 111 and 112:
Page 113 and 114:
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Page 125 and 126:
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
Page 137 and 138:
Page 139 and 140:
Page 141 and 142:
[This Page Intentionally Left Blank
Page 143 and 144:
Exhibit 12.1 I, Gil Shwed, certify
Page 145 and 146:
Exhibit 13 CERTIFICATION PURSUANT T
show all

FORM 20-F - Check Point

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?