Icon Labs, a leading provider of embedded networking and security technology, announced the availability of Icon Labs’ Floodgate Firewall with Stateful Packet Inspection (SPI). With the addition of Stateful Packet Inspection, Floodgate is the only embedded firewall providing complete protection against Internet-based attacks.
Researchers from Columbia University’s Intrusion Detection Systems Lab have concluded that embedded devices are over 20 times more vulnerable to Internet-based threats than Enterprise Networks. As network connectivity in embedded devices becomes commonplace and our reliance on these devices grows, so has the importance of protecting these devices from Internet-based threats.
“Compared to industry standard firewalls, Floodgate is a lot smaller and can be integrated at the lowest layers in the network stacks,” said Alan Grau, CEO of Icon Labs. “The small size enables this firewall to be packaged into a wide range of Internet connected devices such as medical devices, utility monitoring systems, web cams, cable modems, routers and mobile devices including phones. Because it works at the lowest layer of the network stack, Floodgate provides the most comprehensive protection possible.”
Floodgate’s threshold-based filtering protects against denial of service attacks, broadcast storms, and other conditions that result in a flood of unwanted packets. Rules-based filtering allows white-listing and black-listing based on criteria such as port number, protocol, or source IP address. Stateful Packet Inspection (SPI) provides dynamic packet filtering based on the state of a connection.
Icon Labs’ Floodgate Firewall is provided as a portable source code library and is easily integrated with any embedded operating system and TCP/IP stack and has been ported to Green Hills Software’s INTEGRITY and VelOSity, Wind River’s VxWorks and LynuxWorks’ LynxOS. Floodgate makes it easy to add complete, configurable firewall protection to your product regardless of the embedded platform.