Confidential Data – Leaving via an IPS near you…

One of the biggest information security news items over the past Year is the leaking of confidential or sensitive data by specific applications.  Ironically, the applications that facilitated these breaches were specifically forbidden, but because these programs masquerade as valid applications or hide within SSL encryption, traditional network security and IPS appliances are oblivious to the breaches.

With today’s dynamic applications, a next generation of network security device is required;

  • One that can identify the applications in use, even when they are trying to hide.
  • One that can identify who has these applications, either through choice or via malware infection.
  • One that will control what’s entering and leaving your network, even if it’s encrypted inside SSL.

And until recently you needed to add another point solution or applicance to protect your network.

Next Generation Firewall vendor, Palo Alto Networks, has grasped the nettle and created a Multi-Gigabit Firewall that can identify, control and report on over 1000 applications right down to a user level and even if shrouded in encryption.  Refreshingly, implementing a Palo Alto Next Generation Firewall from Varidion will reduce your appliance sprawl as this single device delivers URL control; Spam filtering; Remote Access (IPSEC and SSL) and Malware detection all for less than £1,000 per month.

Can you afford not to implement one?  Call us today..

Banning access to Social Networking from the corporate network is futile

Monday at Gartner Symposium in Florida, Carol Rozwell, of Gartner gave some wise words:

“Banning access to social media from the corporate network is futile.”

Carol is correct, we can’t stop social networking, you only have to look at the largest firewall installed, China!   They have failed to manage the flow of incoming information via Web 2.0 sites.  Today’s world we live in is digitally enabled and socially connected.  Moreover, the enterprise cannot protect its self from everything, they must learn to balance risk and performance, cloud and software as a service has great value, but they will introduce a change in how technology is managed and controlled.  Web 2.0, SaaS and Internet based social networking applications to carry real threats to corporations and must be managed effectively with today’s tools that understand these tools…

Statefull Inspection Swiss Cheese – What’s the Point of your Firewall?

swiss_cheese

Todays Firewalls

I’m sorry to tell you, its got more holes than a Swiss Cheese! Don’t be alarmed…..      most have.

Why?   They’re just simply out of date….

Basically today’s Web 2.0 applications have technology leapfrogged your security infrastructure, so while you diligently close ports and protocols these Net Generation applications choose another port, or better still masquerade as a valid protocol such as HTTPS so your firewall hasn’t a clue. Worried? You should be.

To restore the firewall as the core of your security infrastructure you need to look deeper into the traffic that’s flowing through it, something yesterday’s firewalls simply don’t and can’t do, that was until Nir Zuk one of the inventors of Statefull Inspection Technology headed back to the drawing board…. The outcome, a truly application aware security device that can accurately identify and classify over 900 of the today’s most dynamic applications irrespective of port, protocol but crucially evasion tactic. So finally the Enterprise can adopt Web 2.0 collaboration tools with the piece of mind they can actually control them.

Today, many Enterprises block applications such as Webex, LogMeIn, Yoics and P2P applications for very obvious reasons, again I have bad news, they are in use, you just can’t see them as they look just like valid http and http/s traffic. The facts are stark, in a recent application usage report of 60 large enterprises representing the behavior of 900,000 users, Peer 2 Peer applications were found in 92% of the enterprises, and web based file sharing in 72% of the companies and guess what; 100% had Firewalls and a further 82% had additional devices such as a Proxy, URL filter or an IPS.

Now that’s a great investment! Upgrade your business today speak to Varidion about an application aware network.