In a nutshell:

R75 Remote Access Clients are intended to replace the current Check Point remote access clients:
SecureClient, Endpoint Connect, and NGX SecuRemote client.
The clients offered in R75HF01 are:
1. Endpoint Security VPN – Replaces SecureClient and Endpoint Connect.
2.Check Point Mobile for Windows – New Remote Access Client.
3.R75 SecuRemote client – Replaces R75 SecuRemote client.

Good luck working out the licensing

What’s New in R75

Check Point R75 is based on the Software Blades Architecture.

Identity Awareness in the Check Point Security Gateway

• Identity based Firewall and Application Control polices including users, user-group and machines.
• Logging of User Identities makes troubleshooting simpler and allows better trend analysis.
• Multiple and flexible methods for obtaining user identity including seamless integration with Active Directory (no need to install agent on Domain Controller), captive web portal for clientless user authentication or thin client for strong authentication and impersonation prevention based on unique patent-pending technology for light signature of packet information.
• Scalable identity sharing between multiple gateways to identify users in one or many sites and share with other gateways in the same or different sites.

Application Control Software Blade

• Granular Application Control to identify, allow or block thousands of applications.
• Largest application library with AppWiki – Comprehensive application control leveraging the largest application library that scans and detects more than 100,000 applications and Social Network widgets.
• Auto-updates for applications database on the gateway (NO need to re-install policy).
• Detect rapidly changing Social Network Widgets via online service.

Integrated DLP Software Blade

Check Point’s innovative Data Loss Prevention, now available as an integrated Software Blade.

• Prevents data loss of critical business information.
  • Network-based solution prevents breach of corporate data.
  • Compliance with data protection standards (such as PCI-DSS, HIPAA, GLBA, SOX, etc).
• Cutting edge technology for DLP processes enforcement.
  • Innovative MultiSpect data classification engine combines users, content and process into accurate decisions.
  • New UserCheck technology empowers users to remediate incidents.
  • Low maintenance, self-educating system – does not require IT/security personnel in incident handling while educating the users on proper data sharing policies.
• Easy deployment for immediate data loss prevention.
  • Less than one day deployment of preventative DLP solution.
  • Over 250 pre-defined types to create your own policy.
  • Better control and auditing capabilities with centralized security management.
• New DLP features:
  • ClusterXL HA support – quarantine database is synchronized between cluster members.
  • Incident storage at Management server.

Mobile Access blade

• Remote Access – SSL VPN technology is used for secure encrypted communication from unmanaged mobile devices, PCs and Macs to your corporate IT infrastructure.
• Check Point Mobile Client – for simple and secure connectivity to corporate resources from smartphones and PCs. ** Check Point Mobile for iPhone support requires a hotfix, click here for more details.
• Mobile Access Portal – for connecting securely to corporate resources through a portal from a web browser.
• SSL Network Extender (On-demand client – SNX) – Best for secure connectivity to corporate resources using non-web-based applications via an on-demand, dissolvable client.

Endpoint Security VPN R75

Endpoint Security VPN introduces the Next Generation of SecureClient, including 64-bit support. It provides mobile users seamless and secure connectivity to corporate resources by establishing an encrypted and authenticated IPSec tunnel with Check Point Security Gateways.

Enhanced IPS signature support

• Increase scalability of the IPS engine when adding many more protections.
• Decrease memory footprint (currently some pattern based protections require large memory footprint).
• Provide a new framework for using non-regular keywords replacing complex regular expressions.
• Enhance the IPS engine to support simpler and more efficient CIFS and DCE-RPC protections.

Multi-Domain Security Management (based on proven Provider-1 technology)

• R75 supports the new licensing scheme of Multi-Domain Security Management. You can easily convert an existing Security Management deployment to a Multi-Domain Security Management deployment by adding Software Blades.

Other improvements

• Security Management Server supports Series 80 Appliances gateways for centrally managed branch offices.
• You can set a different authentication method per blade on the same gateway. For example, a user can login to Mobile Access with certificate authentication and login to DLP with username and password authentication.
  In Gateway Properties, configure the desired authentication method for IPSec VPN and Mobile Access in its respective Authentication page, and for Identity Awareness in its Authentication Settings page.
• You can now use multiple portals over port 443 and port 80. For example, the SecurePlatform Web User interface and the Mobile Access portal can both be on port 443. In the SmartDashboard Gateway properties window, set the Portal URL for the different portals on the portal configuration pages.
• The user search for remote access users works according to the user groups. If a user authenticates with an IPsec VPN client and the user is in the LDAP groups of a Remote Access VPN Community, then the user will be found in the LDAP server. If a user authenticates to the Mobile Access portal, and the user is defined in the Access to Application rules as part of the Internal Database groups, the user will be found in the Internal Database.

Facebook’s international headquarters are in Dublin, Ireland, where the company just so happens to face a regulatory probe into the handling of personal data on the social network.

According to the RTE, the Irish data protection commissioner will carry out a privacy audit of the site in November.

The company farms all the data it stores back to its spiritual homeland in the US, but a privacy audit in Ireland is significant as it’s not only Facebook’s major EMEA bolthole, but is also the nearest responsible data protection authority outside of the firm’s US head office.

It’s important to note, however, that Facebook isn’t breaching European law when it makes stealth changes to its technology that cause upset among its 800 million-strong stalkerbase.

Last week the company fielded lots of complaints from users unhappy with the latest redesign to Facebook, that included Mark Zuckerberg’s creepy concept of “frictionless sharing”, which means displaying an individual’s entire life history as chronicled on the network.

An Austria-based collective called Europe versus Facebook filed 22 complaints with the Irish data protection commissioner.

Among other things, the group griped about Facebook’s “Like” button that – it was revealed by Oz blogger Nik Cubrilovic – carried cookies that included unique information after people had logged out of the dominant social network.

Facebook said it had “quickly” fixed the issue, but insisted there was no privacy or security breach.

“Like every site on the internet that personalises content and tries to provide a secure experience for users, we place cookies on the computer of the user,” it told The Register earlier this week.

Irish deputy data protection commissioner Gary Davis told the FT that his office would investigate Facebook’s operation outside of the US and Canada.

“This audit will examine the subject matter of the complaint but also will be more extensive and will seek to examine Facebook’s compliance more generally with Irish data protection law,” he added.

According to the RTE, a report on the outcome of that probe won’t be published until the end of 2011.

Facebook’s European policy director Richard Allan has previously called on self-regulation and the development of industry standards rather than for people to get stuck on “a debate on principles about data protection law each time”.

Despite the howls of protest against the immensely popular network, Brussels has limited power over how Facebook operates in Europe while siphoning the data it gathers to the US.

Regulators hope to close the loophole with the reform of the Data Protection Directive, proposals for which are expected in early 2012.

Facebook underplayed the latest regulatory action taken against the firm:

“Facebook’s European headquarters in Ireland manages the company’s compliance with EU data protection law,” it said.

“We are in regular dialogue with the Irish data protection commissioner and we look forward to demonstrating our commitment to the appropriate handling of user data as part of this routine audit.”

Client-side SSL Proxy – BIG-IP LTM’s client-side SSL proxy feature terminates SSL connections, decrypts the request, and sends the request in clear text to its final
destination. During the process of terminating an SSL connection, the proxy performs all of the certificate verification functions normally handled by the target web server, as well as
encryption and decryption functions. BIG-IP LTM includes hardware that accelerates these operations, enabling it to offload this task for large volumes of traffic in an efficient manner.
When used in combination with clone pools, this feature extends the effectiveness of IDS devices that would otherwise not be able to process encrypted data.

Junos Pulse is a dynamic, integrated network client. A core component of Junos Platform, Pulse delivers integrated, anytime/anywhere connectivity, acceleration, and security, while drastically simplifying user experience. With Junos Pulse, users no longer need to interact with network access and security software. From any location, users simply supply their credentials and Junos Pulse takes care of the rest.

Junos Pulse coming to iPad Soon.