opswat, inc....endpoint security sdk that enables customers to build security features: oesis...
TRANSCRIPT
OPSWAT, Inc.
Corporate update
SF & DC
USA
Veszprém
Hungary
Tokyo
Japan
Timisoara
Romania
London
UK
Ho Chi Minh City
Vietnam
Global Offices
Company highlights
OPSWAT named one of top 500 World’s Hottest Security Companies
• Founded in 2002
• Headquartered in San Francisco
• Offices in Hungary, Japan, Romania, UK, and Vietnam
• Global 24/7 support
• More than 1,000 customers worldwide
• 300 technical partners
• 3 patents
• 14 years of growth
• 130 FTE’s
• 80 engineers
OPSWAT Products and technologies
3 synergetic products
Metadefender Cloud
Released2008
Metadefender On PremReleased
2006
OESISReleased
2004
Over 1,000 Customers including Email security customers
Government Defense Energy Finance Manufacturing Technology
Israel customers
What is new
• Open OPSWAT Japan and OPSWAT UK
• Enhanced technical partnership program
• Enhance channel program
• Free tools
Marketing and sales
• Enhanced support for cloud applications
• Released Vulnerability engine
• Improved data sanitization options
• Released peripheral and vulnerability modules for
OESIS
Technology
Enhanced support for cloud applications
Internet Metadefender Email Security Cloud & hosted email solution
Hosting options:
• AWS
• Your Data Center• Hosting Service Provider
Users
Users
Users
Users
Users
MX Record
Released Vulnerability engine
Released Vulnerability engine
Released Vulnerability engine
Released Vulnerability engine
Enhanced Data Sanitization
OPSWAT Products and technologies
3 synergetic products
Metadefender Cloud
Released2008
Metadefender On PremReleased
2006
OESISReleased
2004
Endpoint security SDK that enables customers to build security features:
OESIS Modules
Vulnerability Assessment Report 1,000,000+ vulnerable binaries from 15,000+ application versions
Infection DetectionQuickly report indication of compromise using 3 techniques unique to OPSWAT
Peripheral ManagementMonitor and manage (e.g. block system access) portable media such as USB devices
Application CleanUpSilently remove 1,600+ applications including toolbars, ransomware and etc.
Device ComplianceDetect, classify and manage 5,000+ endpoint security applications
OESIS Framework customers
and many more….
Powering endpoint security products
Prevent threats based in data
Signature and heuristic scanning with
30+ embedded anti-malware engines
Removal of potentially harmful macros and
scripts with 90+ data sanitization engines
The Vulnerability Engine supports over
1,000,000 binaries and 15,000
applications with support for version
checks and reported known vulnerabilities
and many more….
SIGNATURES & HEURISTICS DATA SANITIZATION VULNERABILITY ENGINE
3 Distinct Technologies
Metadefender - Core Technology
Over 1,000 Metadefender Customers
Government Defense Energy Finance Manufacturing Technology
Metadefender Cloud Offering
Use cases
• File scans
• Data sanitization
• Infection module
• Hash lookups
• Vulnerability
• Application information
• File scans
• Data sanitization
• File scans
• Hash lookups
CASB File Management
• Data sanitization
• File scans
Email Endpoint Protection
• Hash lookups
• File scans
Incident Response
• Hash lookups
• Application information
• File scans
Mobile Security
• File scans
• Hash lookups
Malware Research
Free Commercial
Available for demo purposes only Available for commercial use
Over 40 anti-malware engines Over 10 anti-malware engines
Fixed scans hourly limits Flexible daily scans limits
Up to 5 vulnerability requests Flexible vulnerability limits
Up to 5 network connections requestsFlexible network connections requests limits
Up to 5 loaded components requests Flexible loaded components requests limits
140MB file size limit 256MB file size limit
Extracts archives with 50 files Extracts archives with 500 files
No SLA 99.98% SLA
No Support Up to Platinum Support
Files not considered private Private scanning available
Low priority for scanning queues High priority queues
Cloud Integration Cloud Integration
Technology Partners
Ove
r 3
00
en
dp
oin
t se
curi
ty p
art
ne
rs
Technical partnership with f5 proxy
Endpoint with RSA, EDR RSA NetWitness, EDR Server METADEFENDER CORE
EDR Solution with RSA
Help Incident response teams with Ayehu and VMRAY
OPSWAT Technical Support
• True 24/7 support with average response times < 2 hours
• 3 global support centers in San Francisco, Romania, and Vietnam
• 97% renewal rate in Q2 2016
• 98% support satisfaction
Standard
Gold
Platinum
8:00 to 17:00Mon-FriEmail Support
7:00 to 19:00Mon-FriEmail & Phone Support
24 HoursEverydayEmail & Phone Support
Support Centers
Sales Centers
R&D Centers
San FranciscoRomaniaVietnam
San FranciscoJapanUnited KingdomWashington DC
San FranciscoHungaryRomania
Support-level information: https://www.opswat.com/support#support-levels
Back-up channel support system
Roadmap and Beyond
Add engines and technologies to Metadefender
Improve partnership programs
Enhance channel programs
OPSWAT Research
• What is the antimalware market share?
• What is the detection coverage of each antimalware engine?
• What is the detection coverage of each Metadefender package?
• How Metadefender engine packages detect 0 days ?
• How many more false positives can we expect by adding so many engines?
• Does data sanitization work?
• Who are the data diode players and what is their capability
OPSWAT ResearchQuestions we are trying to answer
Data collection
and many more….
OPSWAT ResearchHow did we collect the data? OESIS Customers
OPSWAT Research
Government Defense Energy Finance Manufacturing Technology
How did we collect the data? Metadefender Customers
OPSWAT research
How do we get the data?
Metadefender Client https://www.opswat.com/products/metadefender/free-tools
OPSWAT research
How do we get the data?
Android and iOS
OPSWAT researchHow did we collect the data?
Free Windows and Mac clients
Malware sharing program
OPSWAT research
How do we get the data?
Over a billion of file submissions
Time period - Data collected in the past 12 months and refreshed monthly
OPSWAT research Antimalware Market Share Report
Antimalware detection coverage
What is the value that each antimalware engine brings to Metadefender?
Disclaimers
Static analysis, heuristics on
OPSWAT sample set
Malware definition includes PUA, malware detection relies on engines detection over time
OPSWAT research The value of individual antimalware engines
OPSWAT research
The value of Metadefender antimalware package
https://www.metadefender.com/stats
OPSWAT outbreak-research
OPSWAT research
Average time reduced to detect outbreaks with each Metadefender package
Metadefender package Average outbreak detection time
Metadefender 4
Metadefender 8
Metadefender 12
Metadefender 30
Metadefender 20
Metadefender 16
4 days, 1 hour, 58 minutes
3 days, 9 hours, 42 minutes
1 day, 10 hours, 34 minutes
0 days, 17 hours, 11 minutes
0 days, 8 hours, 52 minutes
0 days, 0 hours, 10 minutes
The more engines, the faster the detection times
OPSWAT research Average time reduced to detect outbreaks with each Metadefender package
False Alarm
False positive detection rate for Metadefender Core packages
1.80%
2.50% 2.50%
2.80% 2.90%3.10% 3.10% 3.20%
3.70%
m1 m4 m5 m8 m10 m12 m16 m20 m30
Effectiveness of antimalware to detect malware @documents
39.05%
92.48% 94.58% 96.53% 98.48% 99.20% 99.86%95.30%
m1 m4 m8 m12 m16 m20 m30 mcl
Data diode
opswat.com > Resources > Data Diode Buying Guide
Thank You!
Benny CzarnyCEO and Founder
398 Kansas St.
San Francisco, CA 94103
www.opswat.com