cisco email security - cisco

1C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Cisco Email SecurityProtect Your Network and Your Business

2C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Agenda

Email Is Important for Business

The Threat Landscape

Cisco® Email Security Benefits

Inbound Protection

Outbound Control

Customizable Offerings


Businesses Consider Email One of Their Most Important Systems

89.0101.0

114.3

128.6

143.8

0

20

40

60

80

100

120

140

160

2012 2013 2014 2015 2016

Busin

ess E

mails

per

Day

(Bill

ions)

Source: The Radicati Group, Inc., Email Statistics Report, 2012-2016


As the Way You Use Email Changes…

Mobile Coffee shop Corporate Home Airport


…The Threats Change Too

IPv6 Spam

Blended Threats

Targeted Attacks

APTsBotnets

Rootkits

Worms

Trojan Horse


Tackle the Most Advanced Threats with Cisco Email Security Solutions

Best performance Lowest TCO Future focus

Threat Defense Data SecuritySolutions

Strengths


Cisco Email Security Benefits

Best performance

• Very few false-positive email classifications

• Capability to quickly block new email-sent

viruses

• Best-in-class capability to stop or encrypt

sensitive outbound email

• Exceptional threat identification infrastructure

using Cisco’s global presence

• Proactive protection of email with Cisco

SensorBase™ filtering



Lowest TCO

“With Cisco, a substantial

reduction in total cost of

ownership and the new

features to battle viruses

and spam [are] a reality.”

Kenichi Tabata

Komatsu. Ltd., Japan• World’s leading email security support

• No ongoing administration

• Low impact on network performance

• Built-in compliance capabilities

• Easy installation and management

• Few appliances required

• Reduced CapEx with virtual appliances



• Demonstrated commitment to email security

investment and innovation

• Extremely flexible email security: on-premises, in

the cloud, hybrid, and virtual

• Smarter and better anticipation of threats

• Outstanding capability to scale threat analysis as

the amount global data continues to grow

Future focused

“Cisco innovation and insight

has led email security for ten

years. We have been using

their solution campus wide with

great success for a long time. It

gives us confidence for the

future.”

Dr. Damian Bucher

Zentrum für Informationsverarbeitung

Westfälische Wilhelms-Universität

Münster, Germany


Control

Cisco

AnyConnect®Cisco

IPS

Cisco

ScanSafe

WWW

Cisco WSACisco ASACisco ESA

Visibility

WWW

Web

Endpoints

Devices

Networks

Email

IPS

Cisco Security Intelligence OperationsOutstanding Cloud-based Global Threat Intelligence

1.6 millionglobal sensors

100 TBof data received per day

150 million+ deployed endpoints

35%worldwide email traffic

13 billionweb requests

24x7x365operations

40+languages

600+engineers, technicians, and researchers

80+PH.D., CCIE, CISSP, AND MSCE users

More than US$100 millionspent on dynamic research and development

3- to 5-minute updates

5,500+IPS signatures produced

8 million+rules per day

200+parameters tracked

70+publications produced

Actio

ns

Cisco® SIO

Info

rmation


Cisco SIO Is Intelligence Defense Delivered at Scale

100 TBsecurity

intelligence

93 billiondaily email

messages

13 billionweb

requests

4.5

billiondaily email

blocks

1000applications

35%enterprise

email

5500IPS

signatures

150

milliondeployed

endpoints

3- to 5-

minuteupdates

5 billiondaily email

connections

1.6

milliondeployed

devices

150,000micro-

applications

Cisco® Security Intelligence Operations:

Broad visibility

Global footprint

Defense in depth


Cisco SensorBase: Email Reputation Database

Complaint

Reports

IP Blacklists

and Whitelists

Domain

Blacklist and

Safelists

Compromised

Host Lists

Website

Composition

Data

Other DataGlobal Volume

Data

Message

Composition

Data

Spam Traps

+100-10

IP Reputation Score

Breadth and quality

of data make the

difference


Cisco Email Security Architecture

Threat Defense

Antispam

Antivirus and Virus Outbreak Filter

Data Security

Data Loss Prevention

Encryption

Management

http://www.google.com/url?sa=i&rct=j&q=&esrc=s&frm=1&source=images&cd=&cad=rja&docid=sOYtlybfBU6_4M&tbnid=47D4vJHleAPz6M:&ved=0CAUQjRw&url=http://aws.amazon.com/disaster-recovery/&ei=GYt0UbGFL43riQLahYHoAw&bvm=bv.45512109,d.cGE&psig=AFQjCNEUb0tSs-xKIJqrBkniEz0bwoJHdw&ust=1366678669217832


Cisco Email Security: Threat Defense

Management


Threat Defense

Antispam

Data Security

Encryption



Antispam Defense in Depth

Known good mail is delivered

Suspicious mail is rate

limited and spam filtered

• > 99% catch rate

• < 1 in 1 million

false positives

Known bad mail is blocked

before it enters the network

Incoming mail

good, bad, and

unknown email

What

Cisco

Anti-Spam

WhenWho

HowWhere

Cisco® SIO


Cisco Anti-SpamDefense-in-Depth Spam Protection

What

WhenWho

HowWhere

Cisco®

Anti-Spam

• Spam botnets

• Spammer networks

Email Reputation

• SMS Spam

• Attachment-based spam

Message Content

• Malware and phishes

• Short-texted spam with URLs

Web Reputation

• Image spam

• Spam created using

automation tools

Message Construction


Cisco Email Security: Threat Defense


Threat Defense

Antispam

Data Security

Encryption


Management


Antivirus Defense in Depth

Virus Outbreak Filters Antivirus Engines

Zero-Hour Virus

and Malware Detection

Choice of

Antivirus Engines


Cisco Data Security Virus Outbreak FiltersZero-Hour Malware Prevention

Virus Outbreak Filters in Action

Virus Outbreak Filters Advantage

• Average lead time*: Over 13 hours

• Outbreaks blocked*: 291 outbreaks

• Total incremental protection*: Over 157 days

Virus

Filter

Dynamic

QuarantineCisco® SIO

Zero-Hour Virus

and Malware Detection

Choice of

Antivirus Engines

Antivirus Engines


Outbreak filters defend against blended attacksIntegrated email and web security

Website is

cleanLink is clicked

Website is

blockedCisco Security

The requested web page

has been blocked

http://www.threatlink.com

Cisco Email and Web Security protects your

organization’s network from malicious software.

Malware is designed to look like a legitimate email

or website which accesses your computer, hides

itself in your system, and damages files.

Dynamic, real-time inspection via HTTP

Cisco SIO


Cisco Email Security: Data Security


Threat Defense

Antispam

Data Security

Encryption


Management


DLP and ComplianceBuilt-in Comprehensive DLP Solution with RSA: Accurate, Easy, and Extensible


Incidents Policies

• Fast setup

• Low administrative overhead

• Comprehensive policy creation

and modification

• Exceptional accuracy

• Direct integration for

enterprisewide DLP deployments


One click activation of

pre-loaded policies

DLP Is Easy to Set Up Stop Sensitive Content in Minutes

Integrated into

policy manager


Providing Comprehensive Policy Coverage100+ Predefined Policies for Comprehensive Coverage


Accuracy with In-Depth Analysis…

Unique rule matches are met

Proper name detection

Rule is matched multiple

times to increase score

SSN detection

Matches are found

in close proximity


Detailed message trackingDrill-down reporting

…And Easy Reporting and Monitoring


Cisco Email Security: Data Security


Threat Defense

Antispam

Data Security

Encryption


Management



Anyonecan read message

No guaranteedmessage recall

No controlover forwarding

TO

CC

SUBJECT

Traditional Email Has Limitations

ConfidentialEmail

ReadReceipt

GuaranteedRecall

SecureReply and forward

TO

CC

SUBJECT

Cisco Encrypted Email Is Integrated into the Network


Simplified Messaging Security Through a Cloud-Based Encryption Service

Cisco® Registered Envelope Service Turnkey Email Encryption

Flexible cloud-based

encryption key server

Hosted key service

Federated identity gateway

Push technology with

intuitive policy

management

Support for SAML for

federated identity

Technology independence:

use your inbox or mail

server of choice

Integrated MTA-to-MTA TLS enforced security with advanced end-to-end encryption to meet evolving customer requirements

Email sender prepares an

encrypted message for the recipient

Recipient gets encrypted message

Encryption key is requested by

recipient to decrypt message

Decrypted message is displayed to

recipient

Encryption key is stored in the cloud


Easy for the Sender

• Automated key management

• No desktop software requirements

• Send to any email address transparently

• Encryption triggered by keywords, policies, senders, recipients, etc.

Sender Controls


And Easy for the Recipient

Open attachment1 Enter password2 View message3


Offering Enhanced Visibility and ControlWith Multidevice Support for Encrypted Email Anytime and Anywhere

LaptopsTabletsSmartphones


Cisco Email Security: Management


Threat Defense

Antispam

Data Security

Encryption


Management


• Archive all mail

• Virus-outbreak filters disabled for .doc files

• Mark and deliver spam

• Delete executable files

• Allow all media files

• Quarantine executable files

Cisco Email Security ManagerSingle View of Policies for the Entire Organization

Categories by: active directory, domain, username, or LDAP

IT

Sales

Legal

A single, versatile dashboard to manage all the services on the appliance


• Email volumes

• Spam counters

• Policy violations

• Virus reports

• Outgoing email data

• Reputation service

• System health view

• Single view across the organization

• Real-time insight into email traffic and security threats

• Actionable drill-down reports

Consolidated and custom reports

Comprehensive InsightUnified Business Reporting

Multiple data points


Visibility into Email MessagesMessage Tracking

What happened to the email I sent 2 hours

ago?

Track individual email messages

Who else received similar emails?

Forensics to help ensure compliance


Customizable Service OfferingsBroad Protection and Control


Threat Defense

Antispam

Data Security

Encryption


Appliance Virtual CloudFlexible Deployment Options

Inbound Protection Outbound Control


cisco email security - cisco

Documents