For Immediate Release

New Bluefire Products Offer Unprecedented Levels Of Protection For Mobile Device Data

New Orleans, LA March 14, 2005 — Bluefire Security Technologies today announced the release of two new products – Bluefire Mobile Security® Suite 3.5 and Bluefire Mobile Security® VPN 2.0 – offering wireless users, mobile devices, and wireless networks unprecedented levels of protection from attacks, as well as comprehensive protection of data stored on, and transmitted to and from, mobile devices.

Enhancements to the new release of Bluefire Mobile Security Enterprise Edition™ include: over-the-air (OTA) architecture, which eliminates dependency on cradling to keep mobile device security policies up-to-date; automated user management through integration with Microsoft® Active Directory; and automatic registration, which speeds PDA security deployment with intelligent mobile device recognition and user identity linking.

As the industry’s only complete wireless data security solution, the Bluefire Mobile SecurityTM Suite 3.5 is:

• Designed for mobile devices. Bluefire’s software occupies a small footprint on the device and has minimal impact on battery life, processor utilization, or data channel throughput.
• The most comprehensive on-device mobile security solution available, including authentication, encryption, integrity monitoring, firewall, logging and central management.
• Usable on multiple devices and operating systems (OS). Bluefire software operates uniformly across Palm®, PocketPC® and Windows Mobile® platforms, allowing for consistent enforcement of security policies throughout an organization.
• Easy to deploy. Software can be installed onto any networked or remote device. Users can download Bluefire’s software to their device via a web link, email or through 3rd party device management products such as Extended Systems’ OneBridge™ or iAnywhere’s Afaria.™
• Compatible with wired and wireless networks. Regardless of location or transmission mode (wired, Wi-Fi, CDMA, GSM, 3G), configuration commands from Bluefire’s Enterprise Manager console and log updates from mobile devices are transmitted securely, according to preset time intervals.
• Transparent to users. The Enterprise Manager console can deploy security policies to remote devices and access device activity logs without requiring any user intervention. Security Administrators have the ability to seamlessly manage device security in real time, regardless of the device’s location and without requiring any interaction with the user.

Bluefire also released the Bluefire Mobile Security® VPN 2.0, a full featured-IPSec virtual private network (VPN) client. Also designed for mobile devices – and thereby occupying a small footprint on the device with minimal impact on battery life, processor utilization, or data channel throughput – the Bluefire VPN is:

• Bundled with RSA Security’s BSAFE® encryption to meet stringent federal guidelines as established by National Institute of Standards and Technology in the Federal Information Processing Standards 140-2 (FIPS 140-2)
• Useable across various connections, including WiFi, LAN, GSM and CDMA, with no user intervention.
• Works with the two most popular VPN concentrator product lines (Cisco and Nortel).
• Interoperable with other Bluefire products, including the Bluefire Mobile Security® Suite 3.5.

“Today’s newspaper headlines are confirming what CIOs have known for some time: wireless devices and networks face ever-more severe threats which must be addressed now,” said Bluefire CEO Mark Komisky in a presentation at the CTIA Wireless 2005 conference. “The Bluefire Mobile Security® Suite 3.5 offers the most comprehensive protection available, is compatible with both wired and wireless networks, and can be deployed to remote e-devices without requiring user intervention.”

Without proper security software and IT policies in effect, unprotected mobile devices have the potential to provide a vulnerable “backdoor” a corporate network. The Bluefire Mobile Security® Suite and Mobile Security® VPN enable IT managers to implement the same security policies on mobile devices that they have employed on desktops and laptops.

Note: Other product or service names mentioned herein are the trademarks of their respective owners.