Web Security Appliance includes URL filtering capabilities.
February 26, 2007 -
IronPort S650 addresses challenges posed by securing and controlling Web traffic by combining URL, reputation, and malware filtering in one integrated product. Solution uncovers and then blocks rampant malware infections in enterprises worldwide. It includes Layer 4 Traffic Monitor as well as web proxy server. Powered by Dynamic Vectoring and Streaming engine(TM), series also offers signature-based scanning and offline monitoring mode.
Original Press release
Ironport Systems Inc.
1100 Grundy Lane, Suite 100
San Bruno, CA, 94066
IronPort Systems Adds URL Filtering to World's Most Advanced Web Security Appliance
IronPort S650 Web Security Appliance Uncovers, then Blocks, Rampant Malware Infections in Enterprises Worldwide
SAN BRUNO, Calif. - Feb 6, 2007 - IronPort® Systems Inc., the leading provider of enterprise spam, virus and spware protection, today announced a major enhancement to the award winning IronPort S-Series(TM) Web security appliances. IronPort S-Series is the first appliance to combine URL filtering, reputation filtering and malware filtering in a single integrated product. By combining these technologies, the IronPort S-Series provides the industry's leading solution to address the growing challenges posed by securing and controlling Web traffic.
In late 2006, the IronPort S-Series broke new ground as the first security appliance to include both a Layer 4 (L4) Traffic Monitor, to analyze traffic on all network ports, as well as a Web proxy server to deeply analyze Web traffic. Like all IronPort appliances, the IronPort S-Series combines world-renowned reputation filtering technology with best-of-breed, signature-based scanning for a multi-layer system that catches as much as ten times more malware at speeds as much as ten times faster than any other Web security technology. This breakthrough technology is managed by an advanced reporting system and Web-based policy manager, shared with the IronPort C-Series(TM) email security appliances.
"The IronPort S-Series allowed us to quickly identify and stop malware that was bypassing our traditional URL filtering solution," said Tim Sommers of Aurora Health Care. "Since we support more than 25,000 desktops, we were very also very sensitive to performance, but the IronPort S-Series overdelivered. We support our entire enterprise with only two appliances."
Detection: The First Step Toward Prevention
The IronPort S-Series appliances are currently protecting more than half a million enterprise seats worldwide. The IronPort S-Series has seen rapid adoption from large enterprise IT mangers that are concerned about malware infections compromising their networks, but who were unable to adequately measure the problem prior to the deployment of the IronPort appliance. The results found at these deployments were remarkably similar. Even at enterprise accounts with long-standing deployments of Web proxy caches running traditional URL filtering solutions, a single IronPort S-Series appliance would typically find millions of traces of spyware -- measuring desktop infection rates of 50 percent or more. The IronPort S-Series has a unique "offline" mode, by which it can monitor network traffic without interfering with it, and generate detailed reports on the clients infected and the types of malware observed. These reports are usually so strong that they create a powerful business case for immediate action to protect the integrity of the corporate network. Administrators can view high-level reports, and then drill down to see end-user level details, without having to toggle between multiple different reports.
"Due to the insidiousness nature of malware, most companies realize they have a problem, but are unaware to what extent," said Tom Gillis, SVP of Marketing at IronPort Systems. "Once they deploy the IronPort S-Series and see the staggering amounts of malware flowing through their most sensitive data, they rush to deploy it as a solution to help them slam the door shut."
Fast and Accurate Protection
The IronPort S-Series is known for providing the industry's best anti-malware protection, powered by IronPort's Dynamic Vectoring and Streaming (DVS) engine(TM). This system reduces the latency of a content anti-malware scan by as much as a factor of ten - compared to traditional ICAP-based signature scanning systems. With this new software release, performance is enhanced even further. IronPort has worked closely with Webroot Software to integrate a new version of Webroot's anti-malware software into the IronPort DVS engine. This integration provides even faster anti-malware scanning, enhanced detection against obfuscated malware within archives and more detailed reporting on the types of malware detected and blocked.
Fully Integrated, Best-of-Breed URL Filtering
Many IT teams are looking to save administrative effort by consolidating the number of systems deployed in the network. To support this, IronPort has integrated URL filtering capability from a proven industry leading vendor. IronPort's URL filtering solution covers 52 pre-defined catagories of websites, as well as the ability for administrators to create customized categories. The database spans more than 21 million websites, 3.5 billion pages, covering more than 70 languages and 200 countries. More than 33 percent of the sites in the database are international. The database is constantly updated, with more than 100,000 new sites added every week.. Web access policies are easy to set up, using IronPort's Web Security Manager(TM). Comprehensive policies can be set, covering URL filtering, reputation filtering and malware filtering - all tied to corporate directories for simple administration.
The IronPort S-Series includes IronPort's third-generation reporting engine. This powerful system provides both real-time and historical reporting, on-box. The reports are fully interactive, allowing an administrator to start by looking at high-level summaries, such as how many users are being blocked by policy. With a single click, the administrator can drill down and see what policies are being hit - or which users are being blocked the most. With another click, the administrator can see all of the traffic for a single user that may have been hitting a given policy. This reporting system also allows administrators to quickly identify problems, and either adjust policy or take other appropriate actions.
The IronPort S-Series is the only product on the market that combines network layer and full application layer analysis. This provides a unique multi-layer approach to malware protection, stopping as much as ten times more malware that traditional Web security solutions. Combined with advanced reporting and management, and now renowned URL filtering capability for acceptable use control, the IronPort S-Series is in a class by itself.
The IronPort S-Series is available now.
About IronPort Systems
IronPort Systems Inc., headquartered in San Bruno, California, is a leading provider of anti-spam, anti-virus and anti-spyware appliances for organizations ranging from small businesses to the Global 2000. IronPort appliances utilize SenderBase®, the world's largest email and Web threat detection network and database. IronPort products are innovative and easy-to-use - providing breakthrough performance and playing a mission-critical role in a company's network infrastructure. To learn more about IronPort Systems products and services, please visit: http://www.ironport.com/.
Copyright © 2007 IronPort Systems, Inc. All rights reserved. IronPort, the IronPort logo and SenderBase are registered trademarks of IronPort Systems, Inc. All other trademarks are the property of IronPort Systems, Inc. or their respective owners. While every effort is made to ensure the information given is accurate, IronPort does not accept liability for any errors or mistakes which may arise. Specifications and other information in this document may be subject to change without notice.