First year security subscription for Remote/Branch office - includes AV, DI & WF on SSG520
2 183,00 €
Regular price: 2 205,00 €
Regular price: 2 205,00 €
1%
Description
Although basic network security issues have changed very little over the past decade, the network security landscape has changed dramatically. Today?s IT professionals still have the primary responsibility of protecting the confidentiality of corporate information, preventing unauthorized access, and defending the network against attacks, they also face new and increasingly tough challenges as they operate in today?s complex and dynamic network security environment.
Ubiquitous Internet access: Internet access from a myriad of devices has made every home, office, and business partner a potential entry point for an attack. This ubiquitous access leaves the corporate network open to sophisticated attacks that can be launched by deliberate attackers or unknowingly by remote users logging onto the corporate network and allowing an attack to ?piggy-back? on their communications session. The trend of working at home and using a work PC for personal use increases the possibility of dangerous and annoying attacks such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network level. A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by an external source.
Internal attacks: While stopping external attacks remain a constant challenge, equally troubling and difficult to defend against are the attacks that are perpetrated from inside the network by employees who have access and ultimately complete control over the network's resources. Internal attacks can range from unauthorized server or resource access to a disgruntled employee destroying or stealing proprietary information.
Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA are merely a few of the many different regulations with which corporations are now being asked to comply. In each one, security is either referred to as a key item such as protecting corporate data, or is called out specifically as in the case of encrypting all patient files. Either way, compliance requirements are making life for a security administrator a bit more complicated.
Changing levels of trust: An ever widening range of network access is being granted to employees and non-employees, making the network increasingly vulnerable. Remote employees, business partners, customers, and suppliers may have different levels of access to corporate resources, and appropriate measures must be taken to protect the corporate network at all of these levels. While the applications that remote users have access to through the DMZ increases, companies are simultaneously trying to reduce costs by minimizing the application instances between internal and external users, and this makes it necessary for security policies to accommodate application use by both groups.
The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:
Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.
Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.
Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.
Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.
Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.
Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently
downloading Spyware and other malicious applications from known sites.
Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult,
CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip
WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)
MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf
DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*
WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86
Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)
Help file extensions: hlp
Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi
URL database: > 5 million ? growing daily
Pages covered within database: > .9 Billion
New pages added: 50,000 list changes every day
Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons
Ubiquitous Internet access: Internet access from a myriad of devices has made every home, office, and business partner a potential entry point for an attack. This ubiquitous access leaves the corporate network open to sophisticated attacks that can be launched by deliberate attackers or unknowingly by remote users logging onto the corporate network and allowing an attack to ?piggy-back? on their communications session. The trend of working at home and using a work PC for personal use increases the possibility of dangerous and annoying attacks such as Spyware, Phishing, and SPAM, and needs to be addressed at the corporate network level. A 2005 CSI FBI survey found that 65% of corporations surveyed had been attacked by an external source.
Internal attacks: While stopping external attacks remain a constant challenge, equally troubling and difficult to defend against are the attacks that are perpetrated from inside the network by employees who have access and ultimately complete control over the network's resources. Internal attacks can range from unauthorized server or resource access to a disgruntled employee destroying or stealing proprietary information.
Regulatory compliance: Sarbanes-Oxley, GLBA, BASEL II, and HIPAA are merely a few of the many different regulations with which corporations are now being asked to comply. In each one, security is either referred to as a key item such as protecting corporate data, or is called out specifically as in the case of encrypting all patient files. Either way, compliance requirements are making life for a security administrator a bit more complicated.
Changing levels of trust: An ever widening range of network access is being granted to employees and non-employees, making the network increasingly vulnerable. Remote employees, business partners, customers, and suppliers may have different levels of access to corporate resources, and appropriate measures must be taken to protect the corporate network at all of these levels. While the applications that remote users have access to through the DMZ increases, companies are simultaneously trying to reduce costs by minimizing the application instances between internal and external users, and this makes it necessary for security policies to accommodate application use by both groups.
The Layered Security Solution
Industry analysts and security experts agree that the key to striking a balance between tight network security and the network access required by employees, business partners, and customers is a layered security solution. A layered security solution provides an IT department with a complete set of tools that they can deploy to achieve end-to-end security from the remote site to the data center. A layered security solution is designed to protect critical network resources that reside on the network. If one layer fails, the next layer will stop the attack and/or limit the damages that may occur. The table below describes the different security layers and their intended use:
Virtual Private Network
Protects communications between sites and/or users with an
(VPN) encrypted, authenticated communications session.
Network Firewall
Protects the network by controlling who and what can access to the network. Stop denial of service (DoS) type attacks.
Intrusion Prevention
Combination of network and application level protection that detects and stops application level attacks.
Deep Inspection Firewall
IPS functionality is delivered by Juniper Networks Deep Inspection firewall, which builds on the strengths of stateful inspection and integrates the most deterministic intrusion prevention technologies to determine whether to accept or deny application level traffic and attacks.
Antivirus
Protects against virus attacks at the desktop, gateway, and server levels.
Web Filtering
Stop users from visiting inappropriate Web sites or inadvertently
downloading Spyware and other malicious applications from known sites.
Archive and Extractor Formats
ACE, ARJ, Alloy, Astrum, BZIP , BestCrypt, CAB, CABSFX, CHM, Catapult,
CaveSFX, CaveSetup, ClickTeam, ClickTeamPro, Commodore, CompiledHLP, CreateInstall, DiskDupe, DiskImage, EGDial, Effect Office, Embedded, Embedded Class, Embedded EXE, Embedded MS Expand, Embedded PowerPoint, Embedded RTF, FlyStudio, GEA, GKWare Setup, GZIP, Gentee, Glue, HA, HXS, HotSoup, Inno, InstFact, Instyler, IntroAdder, LHA, MS Expand, MSO, Momma, MultiBinder, NSIS, NeoBook, OLE files, PCAcme, PCCrypt, PCInstall, PIMP, PLCreator, PaquetBuilder, Perl Exe, PerlApp, Presto, ProCarry, RARv.4 and above, SEA, SbookBuilder, SetupFactory, SetupSpecialist, SilverKey, SmartGlue, StarDust Installer, Stream C, StubbieMan, Sydex, TSE, Tar, Thinstall, ViseMan, WinBackup, WiseSFX, ZIP, 7-Zip
WIN semi-executable extensions:
pif, lnk, reg, ini (Script.Ini, etc), cla (Java Class), vbs (Visual Basic Script), vbe (Visual Basic Script Encrypted), js (Java Script), jse (Java Script Encrypted), htm, html, htt (HTTP pages), hta - HTA (HTML applications), asp (Active Server Pages), chm ? CHM (compressed HTML), pht ? PHTML, php ? PHP, wsh, wsf, the (.theme)
MS Office extensions
doc, dot, fpm, rtf, xl*, pp*, md*, shs, dwg (Acad 000), msi (MS Installer), otm (Outlook macro), pdf (AcrobatReader), swf (ShockwaveFlash), prj (MapInfo project), jpg, jpeg, emf (Enhanced Windows Metafile), elf
DOS executable extensions: com, exe, sys, prg, bin, bat, cmd, dpl(Borland?s Delphi files), ov*
WIN executable extensions: dll, scr, cpl, ocx, tsp, drv, vxd, fon 86
Email file extensions: Eml, nws, msg, plg, mbx (Eudora database)
Help file extensions: hlp
Other file extensions: sh, pl, xml, itsf, reg, wsf, mime, rar, pk, lha, arj, ace, wmf, wma, wmv, ico, efi
URL database: > 5 million ? growing daily
Pages covered within database: > .9 Billion
New pages added: 50,000 list changes every day
Number of categories covered: 40 including Phishing & Fraud, Spyware, Adult/Sexually Explicit, Alcohol & Tobacco, Criminal Activity, Gambling, Hacking, illegal Drugs, Intolerance & Hate, Tasteless & Offensive, Violence, Weapons
Installed components
Supported components
Related products
3Com
APC
Barracuda
Cisco
Citrix
DELL
Fujitsu
Hitachi
HP
IBM
Intel
Juniper Networks
Kingston
LSI
Microsoft
NetApp
Oracle
Red Hat
Seagate
Stickfish
Sun
Suse Linux
VMware
WYSE
