Check Point Announces Secure, Reduced Sign-On Solutions for Citrix Enterprise Customers

Interoperability Enables Secure, Reduced Sign-On Access to Business Critical Applications

REDWOOD CITY, Calif. - Dec. 2, 2002 - Check Point Software Technologies Ltd. (Nasdaq: CHKP), the worldwide leader in securing the Internet, today announced it is enabling secure, reduced sign-on access to business critical applications for enterprise customers of Citrix Systems, Inc. (Nasdaq: CTXS). Check Point UserAuthority™ will seamlessly interoperate with Citrix® MetaFrame XP™e and Citrix NFuse® Classic software to benefit customers by streamlining access to network applications, improving user productivity and reducing overall costs of managing an enterprise security deployment.

The Citrix server will query Check Point's UserAuthority, an authentication management solution for enterprise applications, to report Check Point VPN-1®/FireWall-1® authentication information, providing end users the convenience of reduced sign-on to the network without authenticating multiple times or sacrificing security. Network administrators are able to provide enhanced security through streamlined management of users and their access to network resources and business critical applications.

"With Check Point UserAuthority, our end users can securely move between Citrix applications without having to authenticate multiple times," said Sam Porcasi, director of information systems for KIK Corporation, North America's largest producer of private label household cleaning products and a Check Point, Citrix customer. "In addition to providing our employees with secure access to network resources, this integration will increase security administration efficiencies for business applications, streamline password and user name management."

"As a leading Canadian Citrix and Check Point solutions provider, this integrated solution allows our customers to deliver business applications to users with enhanced authentication and security -- without the inconvenience of redundant log-ons," said Peter Cresswell, National Practice Security Manager for Charon Systems, a Citrix Solutions Network™ Platinum reseller.

Stateful Inspection of Business Applications
Check Point is also working towards the interoperability of Check Point FireWall-1® and Citrix Independent Computing Architecture (ICA®) technology to enable greater security by providing granular inspection and control. Through Check Point's patented Stateful Inspection technology, Check Point will capture and identify Citrix application packets to make intelligent decisions on the authenticity and validation of the information. Check Point's Stateful Inspection technology inherently recognizes and controls business applications by enabling granular inspection of applications traveling through the firewall.

"This is all about simplifying access to applications and information regardless of the network, device or location," said Barry Davis, Citrix vice president of business development. "Reduced sign-on capabilities, like those from Check Point, facilitate access by reducing or eliminating the need to authenticate multiple times. Check Point is providing the components of a comprehensive reduced sign-on solution that leverages trusted security information from Check Point's UserAuthority for making business-critical authorization decisions."

"We are pleased to extend our relationship with Citrix to make it faster and easier for customers to securely access information," said Asheem Chandna, vice president of business development and product management for Check Point Software Technologies. "Our joint customers can leverage their existing authentication frameworks that are deployed with VPN-1/FireWall-1 to provide secure seamless access to Citrix applications."

Availability
The reduced sign-on integration of Citrix MetaFrame XPe and Citrix NFuse Classic software with Check Point UserAuthority is available immediately through Check Point distribution channels worldwide.

About Check Point Software Technologies
Check Point Software Technologies is the worldwide leader in securing the Internet. It is the confirmed market leader of both the worldwide VPN and firewall markets. The company's Secure Virtual Network (SVN) architecture provides the VPN and security infrastructure that uniquely enables secure and reliable Internet communications. SVN solutions, as delivered in the company's Next Generation product family, secure business communications and resources for corporate networks, remote employees, branch offices and partner extranets. Extending the power of SVN is Check Point's Open Platform for Security (OPSEC), the industry's framework and alliance for integration and interoperability with "best-of-breed" solutions from over 325 leading companies. Check Point solutions are sold, integrated and serviced by a network of 2,500 certified partners in 149 countries. For more information, please call us at (800) 429-4391 or (650) 628-2000 or visit us on the Web at http://www.checkpoint.com or at http://www.opsec.com.

###

©2002 Check Point Software Technologies Ltd.
All rights reserved. Check Point, the Check Point logo, SmartLSM, ClusterXL, ConnectControl, FireWall-1, FireWall-1 SecureServer, FireWall-1 SmallOffice, FireWall-1 XL, FloodGate-1, INSPECT, INSPECT XL, IQ Engine, Meta IP, Open Security Extension, OPSEC, Provider-1, SecureKnowledge, SecureUpdate, SiteManager-1, SmartDefense, SVN, UAM, User-to-Address Mapping, UserAuthority, Visual Policy Editor, VPN-1, VPN-1 Accelerator Card, VPN-1 Net, VPN-1 Pro, VPN SecureClient, VPN-1 SecuRemote, VPN-1 SecureServer, VPN-1 SmallOffice, and are trademarks or registered trademarks of Check Point Software Technologies Ltd. or its affiliates. All other product names mentioned herein are trademarks or registered trademarks of their respective owners. The products described in this document are protected by U.S. Patent No. 5,606,668 and 5,835,726 and may be protected by other U.S. Patents, foreign patents, or pending applications.