SonicWall Security 2.0 Erhöhung des IT-Security Levels durch Aufbau einer individuellen, ganzheitlichen Verteidigungstrategie, bei gleichzeitiger Kosteneinsparung Jan Patrick Schlögell Silvan Noll Regional Director, Central Europe SE Manager, Central Europe
2
SonicWall Leadership… 1 million+ 215+ 18,000+ networks protected countries & territories global channel partners ~500,000 290+ 3 million+ organizations patents firewalls shipped 3
SonicWall Corporate Background… Sonic Systems Established SecureFirst & SonicWall Acquired University Launched 1 st Divested Firewall by Launched Acquired Acquired Acquired Enkoo Changed Went by name to Public Taken Private 1991 1998 1999 2005 2006 2007 2010 2012 2016 2017 4
SonicWall WW Locations Offices Presence 5
Business Update “Bill, just to let you know that Anonymous Italy declared an attack to various public administrations including Pisa University until Nov 5 2018. We resisted the attacks mainly on our mail thanks to the email security solution we recently deployed. We had peaks of 600,000 connections/day with only 100,000 legitimate and the system resisted under • Had the highest government quarter in our history pressure. We are impressed by the system performance, in the month of October we received 12million connections and • New records across the business: just over 2million were delivered as legitimate.” Antonio Cisternino – CIO University of Pisa, Italy ⎻ 92% customer renewal rate ⎻ 54 new products and ~162 million lines of code “As a Platinum SonicWall partner we have recently rolled out TZ 400 firewalls for one of our larger Enterprise Customers to over 2,500 ⎻ 58% of technical support cases resolve in first business day locations across Germany and Austria to enable secure communications between retail kiosks and headquarters. The installation went extremely smoothly and the solution delivers ⎻ 15:1 self‐service score in 2018 (best in class) exactly what our client required. During this Enterprise rollout we had no issues with the selected products, demonstrating the quality ⎻ 51 awards accumulated since February 2018 of the SonicWall Security Platform. With this installation SonicWall has proven again to be the premier • Launched new Capture Cloud Platform and Capture Security Center provider of high‐class security solutions at an excellent price point. At Axsos we are proud to continue and intensify our relationship with SonicWall in the future.” Peter Klien Senior Account Manager IT‐Security, AXSOS AG 6
SonicWall Cyber Threat Report Ergebnisse aus 1.3 Mio. Sensoren! Aufdecken der Bedrohungen die auf auf globale Unternehmen, Regierungen und KMU zielen 7
SonicWall Risk Meters #KnowYourThreats Bewerten Sie ihr individuelles Risiko in Echtzeit, ergreifen Sie sofortige Maßnahmen 8
SonicWall Security Center: Did You Know? WORLDWIDE ATTACKS In 2018, the average SonicWall customer In Jan‐Feb 2019, the average SonicWall faced: customer faced: • ~25,000 malware attacks (+22% over 2017) • 3,602 malware attacks (‐26% over Jan‐Feb 2018) • 490 ransomware attacks (+11%) • 59 ransomware attacks (‐25%) • 19% of malware using non‐standard ports (+9%) • 12.6% of malware using non‐standard ports (‐26%) • 9.3 million intrusion attempts (+38%) • 1.6 million intrusion attempts (+11%) • 1,276 encrypted threats (+27%) • 368 encrypted threats (+20%) • 105K web app attacks (+79%) • 15K web app attacks (‐57%) • 5,488 phishing attacks • 738 phishing attacks (+14%) • 392K new attack variants (1,074/day) detected by Capture • 69.8K new attack variants (1,182/day) detected by Capture ATP (+97%) ATP • 89K+ never‐before‐seen attack variants identified by RTDMI • 74K+ never‐before‐seen attack variants identified by RTDMI 9
Comparing Security Platforms Key Capability CY 18 Threat SonicWall Vendor B Vendor C Vendor D Vendor E Vendor F Data • 3 rd Party engines Next-gen Firewall ~25K avg • Patented Reassembly- • Flow-based next-gen • Strong in Application • Proxy based next-gen • Proxy based next- DPI firewall • No integration control firewall firewall attacks per • Machine learning App Control & SSL • Weaker as Perimeter customer Decryption gateway DPI-SSL 1,276 encrypted • Highest NSS validated • Proxy based SSL • Proxy based SSL • Proxy based SSL • Proxy based SSL • Proxy-based performance decryption, by default decryption requiring decryption, only on port decryption, only on • Each custom port threats per on port 443 proxy definition for 443 443 needs to be defined customer custom port • Single 3 rd party Cloud Sandbox 1,074 new • Multiple Technologies • Proprietary Engine • Proprietary engine • Multi vendor • File Correlation, telemetry data & file • Multi vendor • NSS Labs recommended engine on custom built • No block until verdict (multi-engine) variants found behavior analysis • RTDMI • No block until verdict hypervisor • Invincea • No block until day • Deep learning • No block until verdict • Block until verdict (392K total) Deep Memory 74,290 • Patented RTDMI • NO • NO • NO • NO • NO • Extremely fast Inspection never-before-seen- • Highly effective variants found by RTDMI Email security 26M phishing • Multi AV-Engine • Single AV-Engine • Limited Anti-Spam • Limited Anti-Spam • No sandbox • Anti-Malware • Sandbox integration • Sandbox integration engine on the firewall on the firewall predominantly on attacks sandbox Client Security 23K+ avg • Machine Learning • No NgAV client • No AV Endpoint • No Machine Learning • Need multiple agents • Reliant on • Client rollback • Sandbox integration, but • Quarantines files, not provide protection AV and sandbox (Next-gen AV) per customer • Capture ATP integration only when on-premises host • Predominantly aimed integration • FW enforcement • Limited for Mac OS X Windows Cloud Threat N.A. • 1M+ sensors • Security fabric between • NO • Palo Alto Networks • SophosLabs data • Cisco Collective • Capture Threat Labs feed different product lines Intelligence analytics Security Intell, Talos Sharing 3 rd party vendors into NGFW, and Email • Collective of 19,500 • Synchronized Security and AMP Threat security Threat Meters N.A. • Customer threat insight • Per unit Security Fabric • NO • Threat Vault, lookup of • Global Statistics • NO • Enabling partner and Score latest threats (customer & partner) customer view. Mgmt/Reporting/ N.A. • Cloud, On-prem, role • Separate products with • Separate Management • Separate products with • Separate Management • Requires multiple etc. separate licenses and UI and Reporting engine separate licenses and and Reporting engine separately licensed Analytics 1 • New UI/UX • Minimal Analytics • No Analytics platforms 0
SonicWall Layered Security Automated Real-Time Threat Detection & Prevention: 2018 Real-Time Deep Capture Capture Email DPI for Memory NGFW Client ATP Sandbox Security TLS/SSL Inspection Policy, compliance RTDMI finds 50% ~2% of malicious and enforcement with more new threats files were In 2018, shared intelligence 4,164 phishing unknown attacks / 70% of Internet SonicWall customer 1,073 new 74K+ new traffic was stopped 10.5 threats identified / encrypted YTD attack variants day found since billion malware 1,276 encrypted Jan’18 ~25K malware threats / customer attacks, an and 778 ransomware increase of 22% attacks / Capture Client over 2017 customer 19% of provides rollback for any malware malware used that makes it non-standard through ports 11
Protection Across the Enterprise... Remote and Mobile Use Case Web App Protection Use Case Capture ATP TLS/SSL DPI Web App Capture ATP Capture SSL with RTDMI Firewall with RTDMI Client VPN Web Application Capture Client Firewall protects the provides next‐ web infrastructure 70% of Internet gen protection 70% of Internet traffic was for mobile and traffic was encrypted YTD remote users encrypted YTD ~105K web app SSL‐VPN and SonicWall NGFW attacks per Web web traffic blocks malware customer so far in in corporate SSL‐ traffic 2018 (up 79%) VPN traffic Web Servers/Apps • Rollback • Cross‐vector shared threat intelligence Why we are Why we are • Continuous behavioral monitoring • TLS/SSL DPI different: different: • Sandbox integration • Sandbox integration 12
Business Impact $11.5B $3.9M 22% $12.5B Total cost of Average Businesses attacked Global losses due to ransomware total cost of a by ransomware that business email to businesses data breach 2 suffered a compromise scams forecasted for 2019 1 stoppage 3 as of May 2018 4 1 Cybersecurity Ventures, 2017 2 Ponemon Institute, IBM, 2018 3 Malwarebytes, 2017 4 FBI, 2018 13
Our Vision: Automated Real-time Breach Detection and Prevention Ransomware Any Vehicle Inspect all SSL/encrypted traffic Email, Browser, Apps, Files Fileless Malware Machine learning Any Traffic Encrypted Malware Multi-engine, CPU-tracking cloud sandbox Encrypted, Unencrypted Any Network Cryptojacking Block files until a verdict is rendered Wired, Wireless, Mobile, Cloud Malvertising Integrated security platform (firewall, Any Device endpoint, wireless, email, CASB, Wi-Fi) Phishing PC, Tablet, Phone, IoT Security center (SOC) 14
Recommend
More recommend
