Software Security Testing Successes

Software Security Test Successes with beSTORM

beSTORM Finds eSafe 4 Mail Thwarts 55 Security Attacks. Award-winning email content security solution passes rigorous testing with perfect score

CHICAGO, June 26, 2003 - Aladdin Knowledge Systems Ltd. (NASDAQ: ALDN) today announced the results of leading consulting and testing firm Beyond Security's audit of the eSafe 4 SMTP module and the availability of their report confirming the product is free from vulnerabilities or security weaknesses.

According to the summary in Beyond Security's Aladdin eSafe Black Box Vulnerability Audit Report SMTP Server: "We have checked the eSafe gateway for direct attacks on the SMTP server component. We have used 55 different attack vectors that reflect the known 'buffer overflow' and 'format string' attacks, and these attacks were performed on all SMTP commands supported by the eSafe gateway. During this rigorous testing phase we have found no signs that would indicate any possible vulnerability or weakness in the product."

All tests were conducted in a real-time environment using eSafe 4 as an SMTP mail relay server. Beyond Security monitored eSafe 4 behavior with a standard debugging tool to verify the results of any system crashes or poor performance.

"Beyond Security's vulnerability audit confirms what we already know - eSafe 4 offers our customers a virtually impregnable defense against email-based security threats," said Aladdin's Shimon Gruper, executive VP, Internet Technologies. "eSafe's unparalleled security shields companies' main mail servers against hacking attacks and other Internet-borne hazards."

Case studies

During the development of beSTORM, Beyond Security has made sure that the product met its expected goals by constantly taking vendor provided products, and running beSTORM against them. To date we have tested over 13 products, each of which had at least one security vulnerability that prompted the vendor to release a patch to prevent their customers from being vulnerable to the discovered problem.

More Information and Free Trial

Mehr Informationen

Beyond Security

ist ein zugelassener Scanning-Anbieter für die Payment Card Industry (PCI).

Testen von Webanwendungen

Entdecken Sie Sicherheitsprobleme im Zusammenhang mit Webanwendungen, Websites und den zugehörigen Anlagen und Datenbanken.