a l a d d i n. c o m esafe ® esafe – content security proactive simone fratus technical presales...
TRANSCRIPT
a l a d d i n . c o m
eSafe®
eSafe – Content security proactive
Simone FratusTechnical PreSales Manager
a l a d d i n . c o m 2
© Copyright 2008 Aladdin Knowledge Systems Ltd. All rights reserved.
Aladdin, Aladdin Knowledge Systems, HASP®, eTokenTM and eSafe® are only a few of Aladdin Knowledge Systems
Ltd.’s (“Aladdin”) proprietary trademarks. The Aladdin Knowledge Systems logo is also proprietary to Aladdin.
The information contained in this presentation is protected by international copyright laws. The copyrights are
owned by Aladdin or the original creator of the material. The information contained herein is provided to you for
informational purposes only, and except and to the extent specifically permitted, no portion of this presentation
may be copied, reproduced (or the like), distributed or used in any way whatsoever whether directly or indirectly.
In addition to Aladdin’s trademarks, logos, content and information, this presentation may contain references to
trademarks and/or logos owned by other entities. Aladdin expressly disclaims any proprietary interest in trademarks
and/or logos owned by other entities and makes no representation of any association, sponsorship, affiliation, or
endorsement with or by the owners of such trademarks and/or logos.
This presentation may contain references and use of third party web sites for purposes of providing examples relevant
to this course. Aladdin assumes no responsibility and/or liability for any content and/or information contained in such
third party web sites. Aladdin further does not endorse the companies or contents of any referenced sites.
Aladdin does not assume any responsibility or liability for the accuracy of the information contained in this presentation.
The information contained in this presentation is provided "as is" and does not constitute a warranty of any kind, either
express or implied. Aladdin disclaims all warranties, expressed or implied, including but not limited to implied
warranties of merchantability, fitness for a particular purpose, and non-infringement.
a l a d d i n . c o m
Legal Notice
a l a d d i n . c o m 3
Intelligent, real-time web and messaging security solutions that help organizations:
• Enforce Acceptable Use Policy• Protect Information Assets• Improve Productivity
Aladdin Content Security
a l a d d i n . c o m 4
The Business Drivers of The Secure Gateway
Enforcing Acceptable Use Policy:• Maximize employee productivity• Maximize utilization of network resources• Comply with regulations
Protecting Information Assets:• Prevent malicious code from reaching the
end points• Prevent malicious/potentially malicious
applications from running• Prevent information loss
Maximize Network Uptime & Productivity:
• Minimize end point remediation over head• Minimize system down time
EnforcingAcceptable Use
Policy
ProtectingInformation
Assets
MaximizingNetwork Uptimeand Productivity
SecureGateway
a l a d d i n . c o m 5
Internet Evolution Challenges Traditional SGW Technologies
• 7M unique web sites• Static HTML web access• Basic web application (IM)• Limited BW availability
• 60M unique web sites• Dynamic HTML web access• Application Evolution
(PTP, remote control)• BW increase
• 120M+ unique web sites • Botnets drive SPAM growth• “In–Browser” Applications
(Ajax, JS, Flash), Mashups / CS• Evasive applications • SSL emergence• BW commoditization
BW=Bandwidth
Internet Evolution
ThreatEvolution
SolutionEvolution
Web/Mail AV Intelligent, Scalable Secure GW
URL Filter
Professional Spammers, Fraudsters
Organized eCrimeAmateurfame driven
Web 1.01995-2001
Web 1.02002-2006
Web 2.02007-2010
a l a d d i n . c o m 6
eSafe – Content Security Solutions
Reporting Management
eSafe WebFor Enterprise
Appli-Filter
Web SSL
URL Filter
eSafe Reporter
Secure SurfWeb Security Service Delivery
Platform for ISPs
Clean Pipe
Parental Control
Neutralizer Toolbar
eSafe MailFor Enterprise
Advanced Antispam
eSafe Reporter
a l a d d i n . c o m 7
eSafe WebReal time. Intelligent. Secure Web Gateway eSafe Web
For Enterprise
Appli-Filter
Web SSL
URL Filter
eSafe Reporter
a l a d d i n . c o m 8
“A secure Web gateway must bring together URL filtering, malicious code filtering and Web application control without compromising
performance for end users, which has been a challenge for traditional Antivirus and Web filtering.”
– Gartner 2008
Solution Evolution
a l a d d i n . c o m 9
What about….
We’re trying our best to stay on top, but unfortunately I must confess that the detection level is slowly going down. We develop new technology to stop them and they develop new technology to
bypass. We still have the highest detection rate, but we cannot stop some malicious code. This makes us scared if we will be able to stop them in the future. There was a time when we thought that antivirus technology was enough, but that time has gone. It’s not enough, obviously.
Natalya Kaspersky,CEO, Kaspersky Labs
“
”
a l a d d i n . c o m 10
Protect Information Assets• Source independent inspection of all Web content• Real-time protection against Web 2.0 threats• Identifies & controls dangerous applications• Optimizes user experience and minimize false
positives
Enforce Acceptable Use Policy• Granular policy setting with 60m global URL
categorization DB• Control of 500+ Web applications• Enforcement of policy over encrypted
connections• Prevents use of anonymizers and security
circumvention tools • Allows a clean, “access all” policy
eSafe Web – Security for the New Web
a l a d d i n . c o m 11
eSafe Web Solution Portfolio
Solution Benefit
eSafe Web
AppliFilter™
URL Filter
Web SSL
Real time, source independent deep inspection and control of ALL web browsing content
Detect, track and control Internet traffic and application protocols in over 500 categories, including P2P, IM, and Skype
60m strong URL rating database supporting global coverage and granular user control policies, support for multiple authentication modes
SSL termination proxy enabling the intermediate scanning of incoming and outgoing SSL encrypted traffic
Ensure policy enforcement and protection on SSL encrypted traffic
Effectively enforce acceptable web use policy
Enforce application usage policies & control malicious communications
Information and resource protection with zero impact on user experience
©9/2008 Aladdin Knowledge Systems, Ltd. All rights reserved. Aladdin and eSafe are registered trademarks of Aladdin Knowledge Systems, Ltd. All other company and product names are trademarks or registered trademarks of their respective owners.
a l a d d i n . c o m 12
eSafe Web – Key Benefits
BroadProtection
DeepInspection
FastPerformance
ScalablePlatforms
FlexibleDeployment
AdvancedManagement
Enterprise-ready, unified management interface with rule-creation tools for easy monitoring, management and reporting
More deployment options than any other solution - inline bridge/router, proxy, ICAP and SMTP relay
Widest choice of platforms, including virtual appliance, VMware and purpose-built appliances
Performs at wire speed with no latency, for full transparency to end users & scalable to ISP-level
Patented Attack Intelligence™ technologies analyze, detect and defend in real-time without overblocking
Leaves no gaps by inspecting all Web traffic, including legitimate Web sites, encrypted traffic and Web-enabled applications
©9/2008 Aladdin Knowledge Systems, Ltd. All rights reserved. Aladdin and eSafe are registered trademarks of Aladdin Knowledge Systems, Ltd. All other company and product names are trademarks or registered trademarks of their respective owners.
a l a d d i n . c o m 13
eSafe Web – Advanced URL Filtering
CRAWLING
Data Center Security
500+ Crawlers worldwide
3.8 Billion Indexed Webpages / Images
120 Million Pages per Month
800 Spam Collectors
Smart Search Engine
•
•
•
•
•
ANALYZING
Content Analyzing Technology
OCR
Full Text Classification
Object Detection
Logo Detection
Face Recognition
Porn Detection
Digital Fingerprints
•
•
•
•
•
•
•
PROCESSING
Data Center Hardware
> 1,000 Servers
45 Mbit / Sec Internet Access
20 Terabyte Cache
12 Worldwide Remote Servers
Processing Four Million Webpages / Emails per Day
•
•
•
•
•
60 million URLs
8 Updates per Day
98% Sites Known 60 Categories
150,000 URL Updated per Day
•
•
•
•
•
a l a d d i n . c o m 14
eSafe Web – Advanced Application Filtering
• AppliFilter™ controls and monitors:• Over 500 Internet application protocols• 20 application families• 4 major categories:
– Malicious applications: Spyware, Trojans, Worms, Key-loggers
– Unwanted applications: Adware and add-supported software, anonymizing tools
– Exploits and vulnerabilities: TCP Exploits, drive-by attacks, browser hijackers
– Controlled applications: Instant Messengers, IP Phone, P2P, streaming, tunnelling
a l a d d i n . c o m 15
eSafe Web - SSL
• Identify malware hiding behind encrypted traffic (HTTPS)• Blocks self-signed SSL sites• Validates certificate policies, issuers, revocations, etc.• Enforces web policy on SSL encrypted sites• Proactively identifies and blocks unknown anonymizers
a l a d d i n . c o m 16
eSafe Web – Circumvention Prevention
Unbeatable “Anonymous Web Proxy” filter catches requests for anonymous proxies on the fly, providing organizations zero-day protection against circumvention and anonymity techniques.
a l a d d i n . c o m 17
eSafe Mail.Real time. Intelligent. Secure Messaging Gateway
eSafe MailFor Enterprise
Advanced Antispam
eSafe Reporter
a l a d d i n . c o m 18
eSafe Mail – Key Benefits
• Dual-Engine Email Security:– First to combine Real-time Reputation and deep Content Analysis technologies– Blocks virtually all spam and malware, without blocking legitimate emails
• Zero-hour malware, outbreak prevention:– Unique technology which identifies and proactively blocks malicious worm and
other malware outbreak characteristics at zero-hour using a Real-time Reputation and Distribution Patterns Engine
• Comprehensive Anti Phishing :– Blocks Phishing attacks at the gateway– Phishing elements are stripped from all suspicious
email blocking targeted attacks on organizations
• Self Management SPAM Quarantine– Dramatically reduce administration overhead– Remove need for “special spam mailbox”– Learning system – not prone to user error
a l a d d i n . c o m 19
Flexible & Scalable Deployment
• Flexible Deployment Options– Inline Bridge/Router– Native Proxy– Forwarding Proxy– ICAP– SMTP Relay
• Multiple Form Factors– Virtual appliance– VMWare– Purpose-built HG and XG appliances
eSafe
a l a d d i n . c o m 20
eSafe SecurityResearch
a l a d d i n . c o m 21
Attack Intelligence™ Research Center (AIRC)
The AIRC MissionDeliver security research and intelligence that educates, supports and strengthens the security community, and drives innovation in eSafe solutions.
• 24x7 research• Monthly threat forecast reports• Technical blogs• Regular security updates• Email / SMS notifications• Emergency support
Security Services
a l a d d i n . c o m 22
What Others Are Saying.
Proud of our endorsements.
a l a d d i n . c o m 23
Hackers resurrect notorious attack tool kitNeosploit, thought dead three months ago, behind PDF attacks, researcher says
a l a d d i n . c o m 24
NA Sales Success Stories in Education
a l a d d i n . c o m 25
• Early visionary entrant in the SWG MQ• Very high marks for malware detection
across all ports and protocols• Extensive list (1,000+) of pre-developed
application filter policies
Analyst Praise
- Secure Web Gateway Gartner Magic Quadrant 2007
SC Magazine 2008
Judged on features, ease of use, performance, documentation, support and value for money, Aladdin eSafe was awarded the highest ranking in each SC Magazine category, leading to a perfect overall rating.
a l a d d i n . c o m 26
Canada Department of National Defense
eSafe Customer Snapshot
a l a d d i n . c o m 27
Worldwide Customers