Post on 08-Mar-2018
Advanced Secure Gateway
HYWEL MORGAN
Hywel_morgan@Symantec.com
#thinkyouknowsymantec
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
Agenda
Copyright © 2016 Symantec Corporation 2
1 The Opportunity
2 The Solution
3 Why Symantec
4 Your Opportunity
The Opportunity
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
4
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
In Network Operations, I need a
point of control over web access.I need to satisfy
policy and governance requirements for
Security Operations and for Info Risk / Compliance
PROXY
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
What is a Secure Web Gateway ?
Gartner´s market definition:
Secure web gateways (SWGs) utilize URL filtering, advanced threat
defense, legacy malware protection and application control
technologies to defend users from internet-borne threats, and to help
enterprises enforce internet policy compliance.
SWGs are implemented as on-premises appliances (hardware and virtual) or
cloud-based services, or in hybrid mode (combined on-premises
appliances and cloud-based services).
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
Proxy All Endpoints
Extract ContentEnable ATP, DLP, forensics
4Decrypt Selectively
Privacy compliance3Terminate & Emulate
Secure all endpoint types 2
Proxy
SSLAuth Windows
SSO
Radius
IWA
SAML
LDAP
RadiusKerberos
AD
NovellSSO
OracleCoreID
CASite
Minder
CertRealmAuth
LocalRealmAuth
.EXE
1
0
1
0
1
0
1
0
0
1
0
1
0
1
1
0
1
0
1
0
1
ICAP/s-ICAP
StreamProxy
Policy
SelectDecrypt
High Risk
Suspicious
Unsanctioned
Bypass
Low Risk
Healthcare
Sanctioned
A B
Authenticate UsersIntegrate identity management
1
The Solution
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
Prevent Threats & Orchestrate Content
PROXYSG
CONTENTANALYSIS
ASG
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
Advanced Secure Gateway (ASG)
Unify Access Governance
Extract & Orchestrate Files
Inspect Files to Prevent Malware & Advanced Threats
Whitelist/blacklist
Dual A/V Signatures
Static Code Analysis
Filtering Sandbox Broker
Advanced Secure Gateway (ASG)
Authentication, Enforce, & LogSee and Control Shadow IT
Block Web Threats & ATP C&C
Decrypt SSL, extract documents
ICAP documents
Prevent delivery based on verdict
Stream decrypted data to forensics
ASGProxy + Advanced
Content Analysis
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
High Performance HardwareASG-S200
ASG-S400
ASG-S500
Complete ProxySG and CAS functionality in a single appliance
Why Symantec?
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
“Remains the strongest proxy in the market in terms
of breadth of protocols and the number of advanced
features.”
“Centralizes the management of multiple products
from one console…ProxySG, ASG, the cloud-based
Web Security Service (WSS) and the new integrated
Content and Malware Analysis Appliance.”
- Gartner 2017 SWG Magic Quadrant
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
URL
Reputation
Hash
Reputation
Malware
Engines
Static
Analysis
Behavioral
Detonation
• URL Category
• URL Risk Score
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
File
UR
L
Wh
itel
ist
Bla
cklis
t
Cer
tifi
cate
Mac
hin
e Le
arn
ing
175M Consumer and Enterprise endpoints
protected
9 global threat response centers with
3,000 Researchers and Engineers
1 Billion previously unseen web requests
scanned daily
2 Billion emails scanned per day
182M web
attacks blocked last year
Discovered
430 millionnew unique piecesof malware last year
18,000+ Cloud applications discovered and protected
100Msocial engineering scams blocked last year
1Bmalicious emails stopped last year
CLOUD GLOBAL INTELLIGENCE SOURCED FROM:
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
1. SEP or Norton blocks a file/URLat the endpoint
2. Telemetrysent up to cloud
3. All ASGblock all futureinstancesof the file/URL
2. Telemetrysent up to cloud
1. ASGa file/URL atthe gateway
3. All SEP and Norton endpointsblock all futureinstances
of the file/URL
Over 500,000 additional threats blocked per day
Copyright © 2016 Symantec Corporation 16
Combined Intelligence Strengthens ASG & Endpoint Protection
Example Scenarios
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
• URL Category
• URL Risk Score
• Hash Score
URL
Reputation
Hash
Reputation
Malware
Engines
Static
Analysis
Behavioral
Detonation
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
• URL Category
• URL Risk Score
• Hash Score • Malware
Signatures
URL
Reputation
Hash
Reputation
Malware
Engines
Static
Analysis
Behavioral
Detonation
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
• URL Category
• URL Risk Score
• Hash Score • Malware
Signatures
• Machine
Learning
URL
Reputation
Hash
Reputation
Malware
Engines
Static
Analysis
Behavioral
Detonation
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
URL
Reputation
Hash
Reputation
Malware
Engines
Static
Analysis
Behavioral
Detonation
• URL Category
• URL Risk Score
• Hash Score • Malware
Signatures
• Machine
Learning
• Behavioral
Detonation
63MWeb Requests
18KSandboxed
12MScanned via
Malware Engines
Intelligent
Defense In
Depth
Your Opportunity
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
• Large Enterprise for regional data centers/branch offices
• Mid-Enterprise data centers
• Low user count/high bandwidth requirements
• Small Medium enterprise
When/where do you sell Advanced Secure Gateway?
www.thinkyouknowsymantec.com
Working Together to Secure the Cloud Generation
• Reduced Rack Space
• Reduced Power Consumption
• Single User Interface• Dashboard overview
• Lower entry cost
• Upgrade capable
Benefits of the ASG platform
Working Together to Secure the Cloud Generation
ASG Campaigns-in-a-box3 Email Series – Download from
http://info.exclusive-networks.co.uk/Think-You-Know-Symantec-Campaigns.html
Advanced Secure Gateway
HYWEL MORGAN
Hywel_morgan@Symantec.com
#thinkyouknowsymantec