The Problem
In the perfect world everyone and everything would be trustworthy and everything would be as it appears. On the internet in general and particularly in the Web 2.0 world life, is not that simple. URLs are dynamic and pretty meaningless. Content may not be what it appears, even trusted sites contain malware and social networks open up all manner of data leakage opportunities. To add complications, users are no longer tied to their desks, connecting to the internet through a centralised corporate gateway, they are mobile, running different platforms and are used to high speed links at home, but still accessing corporate resources. The traditional approach has been to put secure web gateways at internet breakout points on the corporate network and force all traffic through there. The problem with this scenario includes the capital cost of the appliances and their replacements, the management overhead of patching and maintaining the appliances, the negative impact it has on the user experience, particularly for remote or mobile users whose traffic is backhauled, adding latency. Worst of all is the limited functionality such solutions offer, particularly with evolving web applications such as Web 2.0. You need more than URL filtering and anti-virus; you need a way to globally apply granular corporate policy, to any user on any platform at any location. You need a feature rich, true cloud secure web gateway security solution. That is what Zscaler's cloud secure web gateway offers.
Overview
Secure Users - Organisations are able to effectively secure their users against today's dynamic web threats with Zscaler's cloud secure web gateway services. Web access control and dynamic inspection of content is necessary to protect against more complex threats. Centralise Policy and Reporting - Traditional log consolidation from multiple locations and correlation of data is cumbersome. Zscaler's cloud secure web gateway centralised policy and reporting simplifies administration and reduces IT operational costs for organisations. Manage the Web - The Web has become the platform of choice for businesses and granular access to web resources is critical. Zscaler's cloud secure web gateway offers the ability to granularly control access to websites and applications as required by corporate policy. Protect Data - Users may accidentally or maliciously leak sensitive corporate data using a number of methods including webmail, social networks, blogs, or instant messaging. Zscaler's cloud secure web gateway can prevent organisations from incurring liabilities due to data loss by scanning all outbound traffic against predefined engines.
Anti-virus and Anti-spyware
Zscaler's cloud secure web gateway provides an inline, ultralow latency anti-virus and anti-spyware solution that dynamically protects users from threats embedded in web pages and files. Blocking malware in the cloud is instantaneous and universal, saves bandwidth costs, and obviates the need to patch endpoints or multiple appliances to effectively protect users. Known threats - Protects against known viruses and worms using signature and heuristic engines that identify viruses within HTTP and HTTPS transactions. Anti-spyware engine detects and stops a wide range of spyware, including Trojans, backdoor proxies, key loggers and adware. Zero-day Advanced Threats - Zscaler's cloud secure web gateway advanced security uses ByteScan technology to scan every byte of every request and the responses. This data is correlated with other factors such as web page reputation and location information in order to produce a PageRisk index. Zscaler's cloud secure web gateway dynamic classification of content enables detection of hidden iframes, cross site scripts, phishing attempts, cookie stealing and botnet command and control activity. PCs infected by Botnets usually hide their infections and disable any installed antivirus/malware scanners, which is why estimates say that between 3% and 6% of corporate machines are already botted (infected), such infected computers can be identified by their outbound traffic. Advanced threat detection also protects users from malicious active content contained in ActiveX, Ajax, Flash, or JavaScript, which can easily be used to transport malicious code. Advanced threats can also detect and block peer-to-peer applications (P2P), which can consume Internet bandwidth and create security and liability risks for an organisation.Browser Security
Zscaler's cloud secure web gateway enables administrators to safeguard their users against old browsers and plug-ins with known vulnerabilities. This is becoming increasingly critical as Advanced Persistent Threats (APT) target end users through such attack vectors. Simply define a policy to specify which web browsers and versions can be used. This provides granular control over the use of outdated browsers in the enterprise, effectively reducing the risk of vulnerable browsers being exploited by preventing the outdated browsers from accessing the Internet.URL Filtering
Known Risks - Zscaler's cloud secure web gateway has a traditional URL database (domain database) providing 80 pre-defined categories that are grouped into 30 super-categories. Super-categories are further grouped into 5 URL classes: security, legal liability, productivity loss, bandwidth loss and business use. Unknown Risks - With thousands of new sites being added every day and dynamic content of existing sites, a static URL database cannot handle the modern internet. Zscaler's cloud secure web gateway has pioneered a new dynamic content classification technology. Every page downloaded from a website is scanned in real-time, categorised and handled based on company policy.Web 2.0 Control
Organisations can configure policies by users or groups to leverage the latest Web 2.0 platforms, such as Webmail, Instant Messaging products, Social Networks, Blogs and Streaming Media without compromising productivity or security of critical data. Zscaler's cloud secure web gateway provides granular control over applications, providing the right access to the right employee, so that organisations can effectively take advantage of Web 2.0 benefits in a controlled manner. Perhaps you want one set of Facebook users to have no access, while others have read only access and a third group to have read/write access, no problem just define the policy. Maybe you want to allow one group access to webmail, but not to send attachments? No problem.Bandwidth Control
Zscaler's cloud secure web gateway enables organisations to efficiently allocate bandwidth to promote web applications used for business purposes rather than recreation by providing policy-based bandwidth control for Internet applications. Transactions are assigned to bandwidth classes and policies are enforced without dropping any packets due to Zscaler's patented technology. For one location say, you may define a policy to allocate at least 20% of the bandwidth for Salesforce.com and 15% of the bandwidth for online meeting applications such as WebEx. Your business may need to use Skype or other voice chat applications-you can allocate certain bandwidth for those applications, so that they can be used without hogging the entire bandwidth for a given location.
Data Loss Prevention
Zscaler's cloud secure web gateway enforces a Data Loss Prevention (DLP) Compliance Policy through full inspection of all HTTP and HTTPS traffic leaving the organisation, including scans of Microsoft Word documents, PDFs, and zipped files. Data templates consisting of specific numbers, content, or custom phrases are leveraged to predefine engines including Credit Card numbers, Social Security numbers, Financial Statements, Medical Information and Source Code. A patent-pending engine provides intuitive but powerful policy design, and offers granular control over specific users, locations and applications (Webmail, social networks, etc). Organisations can define custom dictionaries and engines in addition to the pre-defined lexicons and categories.Centralised Policy for Web
Zscaler's cloud secure web gateway easy to use, web-based interface reduces policy management burden for IT departments. All aspects of web access – security, management, and data loss – can be granularly administered via a single interface for all users, regardless of their physical locations.Consolidated Real-time Reporting
Real-time consolidation and correlation of log data of user activity around the globe provides a clear indication of the state of web security within an organisation at any given time. A flexible and powerful reporting system can be used to view the broad trends and traffic patterns of Internet activity, as well as drilling down to specific events. The technology reduces the cost of web log retention and offers high-speed web log retrieval. In addition to helping organisations meet their regulatory obligations, Zscaler's cloud secure web gateway provides organisations with a complete picture of their Internet activity that can be used for managing new policies and forecasting Internet bandwidth requirements....Advanced Security Whitepaper
Other Products in this category:
|
Top
