The web is a dangerous place – we can no longer clearly distinguish between good and bad websites, and build our defenses based on blacklist approaches that may have (partially) worked in the past.
Web sites considered trusted by users are often compromised by attackers, who in turn compromise visiting users’ systems without their knowledge. The global PKI and certificate-based authentication is far from perfect. And the ever-increasing encryption of web traffic makes traditional network defenses blind to most threats.
As web-based compromises typically result in the attacker gaining full control over a user’s environment, subsequent identity theft and possible lateral infection of other critical systems, it is imperative that these risks are very effectively mitigated to protect our most sensitive information.
Conscia approaches the problem of web security using a multi-layered solution that comprises of specialized network-based web security functions, as well as endpoint security, and user awareness controls.
In the area of network-based web security, we provide the following classes of security solutions to protect real-time users’ interaction with Internet resources:
- Protocol control, verification, and normalization using NGFW and secure web proxy technology.
- Access restrictons based on web site reputation and current state, based on threat intelligence, DNS filtering, reputation, and URL filtering databases.
- Client exploitation prevention based on NGIPS and virtual patching technologies.
- Malware protection through content control, using anti-malware scanning, heuristic, and cloud/on-premises sandbox execution technologies.
- Trusted decryption of web traffic for the purposes of content inspection, either using NGFW tehnologies, or dedicated decryption systems.
- Network data leakage prevention using content scanning.
Web security controls should be provided both to relatively static environments behind enterprise firewalls, as well as mobile users, who do not enjoy persistent protection of traditional network defenses at their home sites. For that reason, Conscia offers a full suite of controls that protect users regardless of their location, device, and application.
Safer financial systems with Cisco
Cinnober is one of the world’s leading developers and providers of mission critical trading and clearing systems for stock exchanges, banks and clearing houses. Cinnober’s network is based on Cisco switches and a software defined architecture.
to SIEM or not to SIEM
One of the best tools in our detection catalogue is the SIEM. I believe that the SIEM industry has matured quite a lot during the last decade and so have the partners working with SIEM.
First line of defense with DNS Security
Wouldn’t it be great if you could protect the equipment in your network before connecting to the Internet! You have already taken the necessary measures. Still, it feels like something is still missing when it comes to the protection of your equipment …
For organisations aiming to stay ahead, choosing the right Data Center and Multicloud solutions is crucial.
Cyber Security is not only about avoiding risk. If done right, a security setup also helps the business stay ahead.
The network touches basically everything in any company. This makes it an ideal platform for improving security as well as business efficiency.
In the age of mobile and cloud, information should be available to employees on any device and in any place.