The concept behind Yoggie is to provide traveling laptops and small workgroups with the same level of security as within the corporate network. But how can one make a server room full of security appliances available in a small package?

	Yoggie Gatekeeper Pico Pro™ Yoggie Pico Pro extends the same level of security enforced within the corporate network to traveling laptops. All the security appliances that can be found in the corporate server room are packed into a tiny USB key-size security appliance with 13 security applications.
	Yoggie Gatekeeper Pico Personal™ Yoggie Pico Personal stops security threats before they reach your laptop. As a dedicated security hardware appliance with no PC-related vulnerabilities, Yoggie Pico provides unmatched security by physically keeping threats away from your PC.
	Yoggie Gatekeeper SOHO™ Yoggie Gatekeeper SOHO provides corporate-grade security for your home or small office network, Protecting up to five computers with technology used by the world's most highly guarded organisations.
	Yoggie Management Server ™ Yoggie Management Server™ extends the IT manager’s ability to manage and enforce security to traveling laptops and remote computers. It is as if these users never left the safe environment of the corporate network. Finally users can enjoy the peace of mind of the robust first line of defense, managed by professionals.

To make this possible Yoggie has invested two years in the development of a miniature security processor. The concept of specialised processors is not new. During the 80’s the mathematical processor was introduced. According to this concept when complex calculations were needed, a specialised mathematical processor would perform these tasks, effectively offloading these specialised tasks from the main processor. During the last 5 years, the same revolution took place with the introduction of a specialised network processor that would free the main processor from networking tasks.

Yoggie Pico’s miniaturised security processor is a powerful 520 MHz Intel Processor. It continues the trend of offloading specialised tasks from the main processor, for performance. But one of the main advantages of the specialised security processor relates to security.

Unlike security software installed on the laptop, the Yoggie Pico uses the same approach that is used to protect the corporate network – physical separation of the first line of defense. A robust security appliance, with a hardened Linux-based OS, Yoggie Pico physically isolates the laptop from incoming Internet threats. The fact that Yoggie Pico is in the front-line instead of the laptop itself means it can protect from unknown attacks. If for any reason, the attack is successful, Yoggie Pico is hit first and will not allow further damage to the laptop.

Yoggie Pico’s low level driver redirects all network traffic to the Pico before Windows and the laptop’s TCP/IP stack are even aware of its existence. Pico scans the content and the safe content is released to the higher layers of the TCP/IP stack. This method effectively creates a NAT

Yoggie Pico’s hardware was designed specifically for security purposes only. It includes a robust computing platform with a powerful CPU, with the sole purpose of protecting the laptop. Yoggie Pico features a USB 2.0 high-speed connection. The device also includes two separate Flash memory units. One of the units stores a secured copy of the Linux OS. During pre boot, Yoggie Pico copies the OS onto the second unit, and uses it during runtime. The original copy of the OS, stored on the first unit, does not include any “Write Access” permissions. This double-step process, guarantees that in the event of a successful attack, upon rebooting the device a clean and safe version of the OS is uploaded, making the OS and security applications completely safe.

Yoggie Pico combines best-of-breed enterprise-class software with proprietary patent pending developments to provide a comprehensive security solution. With its stateful inspection firewall and NAT, Yoggie hides the laptop’s IP address from the outside world and closes any unnecessary network connection. In addition, the hardware design and hardened OS prevents any tampering on the Firewall (a common Spyware, Viruses behavior). Deep packet inspection is performed by a robust intrusion detection/prevention solution to detect attacks as they begin their operation.

The application layer includes four transparent proxies, two for web traffic (HTTP, FTP) and two for email traffic (SMTP and POP3). Using a powerful true-type detection engine, the proxies can deal with any content type, including decompiled elements such as compressed class and file attachments. These elements are analysed by seven security agents:

• Adaptive Security Policy™
• Multi-Layer Security Agent™
• Layer-8 Security Engine™
• URL Categorisation & Filtering
• Anti-Spam
• Anti-Phishing
• Antispyware
• Antivirus
• Transparent Email Proxies (POP3; SMTP)
• Transparent Web Proxies (HTTP; FTP)
• Intrusion Detection System / Intrusion Prevention System
• VPN Client
• Stateful Inspection Firewall