You are on page 1of 3

Web Security Technology Overview

Cisco IronPort Web Data Security and Data Loss Prevention
Data security and data loss prevention (DLP) is a serious issue for companies, as the number of incidents – and the cost to those experiencing them – continues to increase. Whether it’s a malicious attempt, or an inadvertent mistake, data loss can diminish a company’s goodwill and reputation, reduce shareholder value, introduce legal liability, and put individuals and organizations at risk of financial theft. As a leader in web security, Cisco® understands the complexities of creating a solution to address one of the most significant vectors for data loss: ubiquitous Internet access. Across all key network protocols, an intelligent, high-performance data security and DLP solution for the web and web applications is a must-have for today’s organizations. Decision makers should look to vendors like Cisco with deep expertise in security and content scanning and select a best-of-breed solution that includes data security and DLP technologies – including integrating with external DLP solutions to enforce policies.

“The increased use of Web 2.0 technologies such as blogs, social networking, and consumer-grade instant messaging increases the speed with which information moves outside of the enterprise.”
– Andrew Jaquith, Senior Analyst Forrester Research

T h e C i s c o I r o n P o r t W e b D ata S e c u r it y S o l u ti o n

Data-stealing malware presents a real and imminent threat to business today, and is the starting point for any discussion on data security for the web. The Cisco IronPort web security appliance provides the best protection against data-stealing malware, using Cisco IronPort Web Reputation Filters, the Cisco IronPort Dynamic Vectoring and Streaming (DVS) engine and the Layer 4 Traffic Monitor (L4TM). These technologies prevent Trojans and other malicious applications from entering the network, while blocking the “phone home” data connections from existing malware. The data loss problem extends well beyond malware. Employees can easily use webmail to send a message including proprietary information, post confidential data on social networks and blogs, or transfer financial documents over FTP to a server outside the corporate network. Making sure that sensitive data does not leave the corporate boundary – while allowing users to leverage the full power of the Internet – is an important and challenging issue to solve.

web reputation. preventing engineers from sending design files by webmail. organizations can allow or block based on the third-party rules and policies. policy definition is intuitive and powerful – offering control over specific users. groups. This highperformance system makes data security seamless and transparent.Technology Overview: Cisco IronPort Web Data Security and Data Loss Prevention pa g e 2 T h e C i s c o I r o n P o r t W e b D ata S e c u r it y S o l u ti o n ( C o n ti n u e d ) Cisco IronPort web security appliances enable organizations to take quick. blocking uploads by finance staff of Excel spreadsheets over 100KB.). IP addresses. HTTPS and FTP traffic to the third-party DLP appliance. social networks. subnet or CIDR ranges. or preventing posts of content to blogs or social networking sites. . Cisco IronPort web security appliances offer the option to interoperate with DLP vendors via ICAP. Scan Sensitive Documents Clean Content Allow Users Cisco IronPort S-Series Content Clean Content Block Internet Verdict DLP Vendor Box Deep content inspection for HTTP. using Cisco IronPort Web Security Manager. allows administrators to create and manage data security policies on a per-user and per-group basis – providing tremendous flexibility and control. These simple data security policies can be created for outbound traffic on HTTP. For enterprises that have already invested in special-purpose DLP systems. Additionally. metadata. locations. incident severity definition. They can also combine multiple network segments or separate groups into a single unit. etc. URL category and applications (webmail. common sense data security policies. This also enables deep content inspection for regulatory compliance and intellectual property (IP) protection. Granular policy creation. Request Content from FTP Site Scan Allow Monitor Block Internet Customers Partners Cisco IronPort S-Series Users Block Unknown Common sense data security policies are easily enabled and enforced with the Cisco IronPort web security appliance. case management and performance optimization. D ata S e c u r it y P o l ic y D e f i n iti o n s With Cisco IronPort web security appliances. administrators can define groups using network segments. For example. By directing all outbound HTTP. HTTPS and FTP traffic is enabled through integration with a third-party DLP appliance. HTTPS and FTP. easy steps to enforce simple.

PCNow. MGX. WebEx. and Welcome to the Human Network are trademarks. and Access Registrar. CCSP. Cisco Press. the IronPort logo. CCIP. and Learn and Cisco Store are service marks. and fax numbers are listed on the Cisco website at www. The use of the word partner does not imply a partnership relationship between Cisco and any other company. the Cisco Systems logo. together with its partnerships with industry-leading DLP vendors. Americas Headquarters Cisco Systems. comprehensive data loss prevention for the web – helping organizations both large and small prevent leaks. Cisco IronPort web security appliances also enable warn/continue pages – allowing an organization to educate users on corporate acceptable use and security policies. MediaTone. Leadership within the Internet security market. Addresses. PowerPanels. Networking Academy. The ability to customize notifications allows administrators to maximize the educational opportunity of blocked web content. Cisco WebEx. Cisco TelePresence. Administrators can enable system-determined notifications across more than 25 trigger events or choose to redirect to a separate customizable internal policy and notification page.ironport. CCDE. channel partners and system engineers are ready to help you evaluate how Cisco IronPort products can make your corporate network infrastructure secure. CCDP.com/go/offices. Recommended for organizations with 1. SMARTnet. Cisco StadiumVision. TransPath. CA Asia Pacific Headquarters Cisco Systems (USA) Pte. GigaDrive. and/or its affiliates in the United States and certain other countries. C o n ta ct U s How to Get Started Cisco sales representatives. IronPort. Cisco Systems Capital. the Cisco logo. D e p l o y m e n t Opti o n s Sizing Up Your Web Security Solution The Cisco IronPort web security product line address issues faced by organizations ranging from small businesses to the Global 2000. easy-to-deploy solution for this critical functionality.000 users. Cisco Systems. IOS. enforce compliance and protect their brand and reputation. please call 650-989-6530 or visit us on the web at www. HomeLink. Collaboration Without Limitation. Singapore Europe Headquarters Cisco Systems International BV Amsterdam. Cisco Eos.  Designed for small businesses and organizations with up to 1. iQuick Study. phone numbers.cisco. Cisco believes that a holistic solution for monitoring and enforcing data security across all communication channels. Cisco IOS. PIX. EtherFast. iPhone. Live.com/leader.000 users. Internet Quotient. Play. The Netherlands Cisco has more than 200 offices worldwide. ProConnect. MeetingPlace. Bringing the Meeting To You. Cisco Lumin. is vital to ensure the integrity of an organization’s policies.  Summary Cisco delivers high-performance. Administrators can choose to block or allow confidential data traveling through any application that uses HTTP or FTP. Cisco Unity. SenderBase. StackWise. Changing the Way We Work. Event Center. Customized and localized notifications automatically alert end-users to policy violations that impact their Internet browsing and data-transfer activity. FormShare. including the web. ScriptShare. If you believe that your organization could benefit from these industry-leading products. object and protocol filtering enables the configuration of granular controls. Ltd. puts Cisco in the unique position to offer a simple. DCE. Network Registrar. Cisco. San Jose. CCVP. CCNP. Spectrum Expert. CCDA.000 users. and the WebEx logo are registered trademarks of Cisco Systems. All other trademarks mentioned in this document or website are the property of their respective owners. Inc. CCIE. AsyncOS. Networkers. CCENT. MeetingPlace Chime Sound. (0809R) 435-0252-1 4/09 . Fast Step. Linksys. Inc.000 to 10. CCNA. Aironet. The Fastest Way to Increase Your Internet Quotient. Catalyst. reliable and easier to manage. Cisco IronPort S660 Cisco IronPort S360 Cisco IronPort S160 Suggested for organizations above 10. Cisco Nexus. EtherSwitch.Technology Overview: Cisco IronPort Web Data Security and Data Loss Prevention pa g e 3 D ata S e c u r it y P o l ic y D e f i n iti o n s ( c o n ti n u e d ) Comprehensive application. Object filtering (based on “true type”) accurately recognizes objects to restrict downloads that present security and/or compliance risks. the Cisco Certified Internetwork Expert logo. LightStream. Follow Me Browsing.