Webinar Websense Web Security Gateway Anywhere.pdf

8/13/2019 Webinar Websense Web Security Gateway Anywhere.pdf

1/36

Web Security Gateway Anywhere


2/36

The Web Security Challenge


3/36

Web Technology Trends

2.0, , .

, ,

.

Dynamic, interactive Web 2.0 technologies have transformedthe Web into a core business application platform

2010 Websense, Inc. All rights reserved.

.


4/36

The Web Security Challenge

Dynamic malware protection

Web is THE primary malware distribution platform

AV cant keep pace

Dynamic acceptable use policy

Traditional URL filtering cant handle dynamicnature of todays Web

Force IT into monolithic ON/OFF policies

Outbound data loss and compliance

Interactive destinations multiply data loss risk

58% of data stealing malware is Web based

Rising Web security TCO

Managing multiple vendors and products

Supporting the distributed enterprise

Enable secure business use of dynamic, interactive Web resources

Outbound

PII, CC#,SSN, health,

financial

Inboundmixed content,malicious scripts

AV, Filter, DLP


5/36

Static URL Filtering is Dead

Gambling

Social

Networking

Inappropriate

Content

Video or Audio

Streaming

Auctions

Understanding the URL is not enough. You must understandand control the content on the page.

,


6/36

Complexity Driving Higher TCO

Manage multiple products and vendors Web, AV, DLP Multiple boxes, policies, reporting

systems, and relationships

Securing the distributed enterprise

Remote offices lack technicalexpertise May add yet another separately

managed SaaS solution

HQ / LargeBranch

DLP

Manager

Web

DLPSniffer

Web/AV

Manager AV

Branch Offices

Web

AV

DLPSniffer

SaaS

RemoteUsers

SaaS

RemoteClient

SaaSConsole

,


7/36

The Web Security GatewayAnywhere Solution


8/36

The TRITON Architecture

ApplianceSaaS Software

WebSecurity

DataSecurity

EmailSecurity

Unified Content Security

Unified

Management

2010 Websense, Inc. All rights reserved.

UnifiedPlatform

UnifiedSolution


9/36

The Web Security Gateway Solution

9

, 2.0


10/36

Web Security Gateway Overview

TRITON Console

TruHybrid Deployment

Enterprise Proxy Architecture

Advanced Classification Engine1

2

3

4

5


11/36

V-Series Appliances

Enterprise-class performance andreliability for on-premise deployments

Scale to 7,500 users per appliance

Support for load balanced, highavailability clusters

Global 24 x 7 phone support

Global 4 hour on-site service

Proven in Fortune 100 environments

Lowest total cost of ownership

Preconfigured, hardened, simple todeploy

Consolidated Web security: filtering,

AV, real-time scanning, DLP,management

Investment protection - future supportfor Web, DLP, email security

10000 /

5000 /

10000 /


12/36

V-Series AppliancesV-Series Appliances

V-Series Deployment Options

V10000 Appliance

Enterprise HQ / largebranch

Up to 7,500usersComponent redundancy

Investment protection Scale for consolidated

Web AND email (v7.6)

Headroom to growbeyond 2000 users

V5000 Appliance

Enterprise branch andmedium business

Up to 2,000users

Web OR emailappliance (v7.6)

V10000 V5000

Email

DLP

Web

DLP

V5000

Web

DLP

Email

DLP


13/36

Websense TRITON

Advanced Classification Engine (ACE)

01010101010101011010110111010101


14/36

Real-time Content Classification

Extends acceptable use policy to dynamic content not accurately classifiedby traditional URL filtering

Password protected, mixed-content, uncategorized, personalized sites

iGoogle, Facebook, LindedIn, Twitter, MyYahoo, etc.

Dynamically classifies content within each Web page on the fly Allow appropriate content, block unwanted or malicious content

Accurate across all 95 Websense categories

14

2.0


15/36

Without Websense

15


16/36

With Websense

16


17/36

Without Websense

Decisions based on pasthistory not actual content

Simplistic policies lead to

over-blocking or poor security Facebook = BAD, block

all pages

Wikipedia = GOOD, allow unrestricted access

AV and other signature-based technologies protect

against known threats only

No practical data loss prevention

Manually configured regular expressions guaranteefalse positives, extensive tuning, and wasted time

No best practice compliance policies or reporting Enterprise-class compliance solution requires

complex and costly third-party integration


18/36

With Websense

Real-time classification for granular controlof content elements within page

Across 95 categories

Actual content versus past reputation

Real-time security scanning for dynamiczero day and scripted malware protection

Native integration of market leading DLP for

easy to deploy data compliance controlsEnables organizations to enable Web 2.0without inbound threats and outbound risks


19/36

Real-time Security Scanning

Modern threats designed to evade antivirus (AV) AV blocks known threats > attacks change or target zero-day vulnerabilities

AV focuses on executables > attacks are scripted

Leverage complex evasion methods obfuscation, hybrid Web/email, spear-

phishing

Real-time security scanning protects against dynamic zero day andscripted attacks that evade antivirus Analyzes scripts, executables, URL, reputation, and content on-the-fly

Multi-point analytics combine to identify malicious intentAugments integrated antivirus and malicious URL filtering forcomplete protection against known and unknown threats

19


20/36

The ThreatSeeker Network

Threat Detection/Probes

Real-Time Security Updates

Shared Analytics/Feedback

URL andSecurityDatabase

WebsenseSecurity Labs

Websense

Hosted Security

1 billion pieces ofcontent per day

10+ millionemails per hour

200+ millionsites per day

2+ millionposts per day

Defensio

Websense

Hosted Customers

Websense

Web Security Gateway

ThreatSeeker

Technology

ThreatSeekerTechnology


21/36

Granular web policycreation 95 URL categories

Control to block, allow,confirm and use quota

Implement policy forgroups and individuals Integration with

authentication services

Allows detailed policy andactionable reporting

Flexible policy controls


22/36

Advanced Protocol Control

Growth in development and use ofnetwork protocols for applications

IM, P2P etc can be implemented usingSSL to create invisibility

Growing security concern for inboundand outbound communications

Web Security Gateway controls 130+protocols and applications

Prevent threats from entering networkvia non-business channels (e.g. P2P,IM)

Prevent confidential data from leaving

Preserve bandwidth for business

applications Control SSL encrypted (e.g.

GoogleWave) and tunneled enterpriseapplications (e.g. Webified Oracle)

22


23/36

TruHybrid Deployment

TRITONConsole

SSL

V-SeriesAppliances

HQ/Branch

SaaS WebSecurity

RemoteUsers

Branch

/

Flexibility to deploy where and how you need it

Secure HQ with on premise applianceSecure branch and mobile users in the cloud

No need to manage separate policies and reports

2X lower operating cost than competition


24/36

TruHybrid in Action

Register branch IP addresses with on-premise Web management

User, group, policy, reporting dataautomatically synchronized between on-premise manager and SaaS data centers

No remote equipment or client software tosupport

V-Series Appliance orDedicated Management

Server

SaaS Web Security

RemoteUser

Branch

, ,

/

HQ / LargeBranch


25/36

SaaS Service Delivery

Hosted from 8 globally distributed data centers San Jose and Ashburn, United States Heathrow and Feltham, UK Dusseldorf, Germany Paris, France

Hong Kong Sydney, Australia

Resilient processing clusters

Automatic data center allocation and fail-over Directs travelling users to nearest geographical data

center Redirects to nearest alternate in case of failure

PerformanceService Level Agreements:

100% protection against known viruses 99.99% service availabilityNo noticeable latency: < 60ms average processing time

Accredited to ISO27001


26/36

TruWeb DLP

Native integration of marketleading DLP for Web traffic Predefined compliance data

classifiers, policies, and reporting Patented precise ID fingerprinting

Simplified DLP and compliance Single-box Web/DLP enforcement Unified TRITON interface

Single vendor

Automated compliance best-practices and accuracy

Web DLP


27/36

Simple, Single-Box Enforcement

On-premise deployment (appliance or software)

Lower latency

No unencrypted sensitive data sent over network

Lower TCO for complete inbound/outbound Web security 3X fewer enforcement boxes PER LOCATION! 2X fewer management systems 2X fewer vendors Lower software license cost Simple license key upgrade to full DLP

WebSecurity

V-SeriesAppliance

DLPSniffer

DLPWebAntivirus

Vendor A

Vendor B

ICAP


28/36

Best Practice Compliance Wizards

Best practice compliance policies automatically enabled in minutes No need to translate vague or complex regulation into technical DLP policies Derived from years of experience meeting worldwide compliance requirements


29/36

Web User and Destination Awareness

DLP policies and reports include user and Web category information

Accelerate decision making and compliance

Compliance reports immediately reveal sources of outbound risk what, who, andwhere

Separate legitimate business process from compliance violations


30/36

Enterprise Web Proxy, SSL Proxy and Cache

Decrease latency for Internet downloads

Consolidate existing proxy deployments

Reduce rack space, power, latency, and support costEnable visibility and control of encrypted SSLtraffic Eliminates blind spot used to circumvent outbound

control policy (firewall, DLP, Web)

Often used by proxy avoidance sites

Integration with Web DLP enables

inbound and outbound control SSL bypass supports privacy

exceptions (e.g. banking)


31/36

TRITON Console

Role based control for Web and data loss prevention

Simplifies administration for lowest TCO

Expandable to full TRITON unified content security solution Full enterprise wide DLP (discovery, endpoint, email, etc.) on existing hardware with

simple license upgrade

Preserve investment in existing policies, reports, training, hardware

Future support for integrated email (also running on V10000 appliance)

, , ,


32/36

Fully customizableclick-through reports

Security AlertMonitoring

Task-based

Management

System Health

Monitoring

Comprehensive Security Dashboard


33/36

Task-based Management

Common administration tasks

available on all interface pages

Reduce learning curve to manageproduct

Reduce time to carrying out

common tasks Simplify troubleshooting without

user involvement


34/36

World Class Reporting

Drill-down reportingdirect from dashboard

Numerous output options:pie chart, bar charts,pdf, html

Integrated policyand reporting interface


35/36

Unparalleled Visibility


36/36

Questions?

Webinar Websense Web Security Gateway Anywhere.pdf

Documents

Transcript of Webinar Websense Web Security Gateway Anywhere.pdf