New Windows Network and Host-Based Anti-Reconnaissance Solution
Misdirects Hackers for Enhanced Security

Arxceo Corporation and Port80 Software Partner to Provide Customers
with Complete Network and IIS Web Server Anonymization Protection

SAN JOSE, Calif., RSA Conference 2006 - February 14, 2006 — Arxceo™ Corporation, a provider of anti-reconnaissance and anomaly-based, attack-prevention technology, today announced an OEM licensing agreement with Port80 Software, Inc., a leading developer of HTTP solutions and tools for Microsoft Internet Information Services (IIS) Web servers. Port80 Software will license Arxceo's Ally™ family of network security appliances and resell them as the ServerMask ip100 and ServerMask IP1000 security appliances.

Port80 Software will bundle the Ally ip100™ and Ally IP1000™ appliances, which mask TCP/IP network signatures from detection, with the company's leading ServerMask software, a Microsoft IIS Web server module that obscures the identity of a Windows Web server from potential hackers at the HTTP level. Together, the anti-reconnaissance market leaders will provide a complete solution designed to prevent attackers from accurately identifying a Windows network or Microsoft IIS Web server, the first, most crucial and often overlooked step in hacking.

"By bundling Arxceo's Ally appliances with our ServerMask solution, we are offering customers the true promise of anti-reconnaissance protection and server anonymization," said Joseph Lima, COO of Port80 Software. "ServerMask has always obscured the identity of IIS Web server at the HTTP level, but TCP/IP masking at the origin Web server is impractical and not optimal for performance. By combining Arxceo's Ally appliances with ServerMask software, small and large Windows networks will be camouflaged from their cracker adversaries. Combined with already-deployed firewalls and full IDS solutions, the new ServerMask origin server software/appliance approach will add a powerful, security-depth layer to any network, IIS Web site or application."

"We believe that businesses and government organizations can truly benefit from the bundled anti-reconnaissance solution that will result from our new licensing agreement with Port80 Software," said Don Davidson, Arxceo CEO. "Today, most successful Web attacks begin with probing and enumerating network and Web server information. This is why anti-reconnaissance approaches are critical in preventing attackers from penetrating computer systems and exploiting mission-critical or sensitive information."

Arxceo's Ally ip100™ and Ally IP1000™ products leverage the company's Tagged Universal Resource Information Transmission (Tag-UR-IT™) technology that uses a unique tagging methodology to add relevant information to each transmitted packet -- such as source IP addresses, OS version and date/time stamps. This technology creates an "always-on" defense that prevents the stealthiest of attackers from using even a single packet to probe a network for vulnerabilities. Port80 Software's ServerMask software modifies a Microsoft IIS Web server's "fingerprint" by removing unnecessary HTTP response data, modifying cookie values and adjusting other response information to hide the identity of a Web site/application platform.


Both the ServerMask ip100 and the ServerMask IP1000 security appliances, as well as new bundled ServerMask IIS software packages, will be available in March, 2006 at

About Arxceo Corporation

The company provides anti-reconnaissance and anomaly-based, attack-prevention appliances that help secure networks from information gathering, vulnerability exploitation, zero-day worm attacks and other malicious network traffic. Arxceo's patent-pending Plug and Protect (PnPRO™) and Tagged Universal Resource Information Transmission (Tag-UR-IT™) technologies combine to provide a distinctive approach to anomaly-based and behavior-based intrusion prevention. Arxceo provides the Ally IP1000™ for protection of large-scale networks and the Ally ip100™, the first sub-$1000 intrusion prevention solution, is designed to protect SMB networks, as well as an Enterprise's wireless access points and branch or remote offices. For more information, visit