You are on page 1of 3

Web Security Technology Overview

Cisco IronPort Web Data Security and Data Loss Prevention
Data security and data loss prevention (DLP) is a serious issue for companies, as the number of incidents – and the cost to those experiencing them – continues to increase. Whether it’s a malicious attempt, or an inadvertent mistake, data loss can diminish a company’s goodwill and reputation, reduce shareholder value, introduce legal liability, and put individuals and organizations at risk of financial theft. As a leader in web security, Cisco® understands the complexities of creating a solution to address one of the most significant vectors for data loss: ubiquitous Internet access. Across all key network protocols, an intelligent, high-performance data security and DLP solution for the web and web applications is a must-have for today’s organizations. Decision makers should look to vendors like Cisco with deep expertise in security and content scanning and select a best-of-breed solution that includes data security and DLP technologies – including integrating with external DLP solutions to enforce policies.

“The increased use of Web 2.0 technologies such as blogs, social networking, and consumer-grade instant messaging increases the speed with which information moves outside of the enterprise.”
– Andrew Jaquith, Senior Analyst Forrester Research

T h e C i s c o I r o n P o r t W e b D ata S e c u r it y S o l u ti o n

Data-stealing malware presents a real and imminent threat to business today, and is the starting point for any discussion on data security for the web. The Cisco IronPort web security appliance provides the best protection against data-stealing malware, using Cisco IronPort Web Reputation Filters, the Cisco IronPort Dynamic Vectoring and Streaming (DVS) engine and the Layer 4 Traffic Monitor (L4TM). These technologies prevent Trojans and other malicious applications from entering the network, while blocking the “phone home” data connections from existing malware. The data loss problem extends well beyond malware. Employees can easily use webmail to send a message including proprietary information, post confidential data on social networks and blogs, or transfer financial documents over FTP to a server outside the corporate network. Making sure that sensitive data does not leave the corporate boundary – while allowing users to leverage the full power of the Internet – is an important and challenging issue to solve.

blocking uploads by finance staff of Excel spreadsheets over 100KB. case management and performance optimization. subnet or CIDR ranges. preventing engineers from sending design files by webmail. HTTPS and FTP. This also enables deep content inspection for regulatory compliance and intellectual property (IP) protection. D ata S e c u r it y P o l ic y D e f i n iti o n s With Cisco IronPort web security appliances. HTTPS and FTP traffic is enabled through integration with a third-party DLP appliance. Request Content from FTP Site Scan Allow Monitor Block Internet Customers Partners Cisco IronPort S-Series Users Block Unknown Common sense data security policies are easily enabled and enforced with the Cisco IronPort web security appliance. Additionally. For enterprises that have already invested in special-purpose DLP systems. These simple data security policies can be created for outbound traffic on HTTP. By directing all outbound HTTP. This highperformance system makes data security seamless and transparent. or preventing posts of content to blogs or social networking sites. incident severity definition. administrators can define groups using network segments. using Cisco IronPort Web Security Manager. HTTPS and FTP traffic to the third-party DLP appliance. IP addresses. For example.Technology Overview: Cisco IronPort Web Data Security and Data Loss Prevention pa g e 2 T h e C i s c o I r o n P o r t W e b D ata S e c u r it y S o l u ti o n ( C o n ti n u e d ) Cisco IronPort web security appliances enable organizations to take quick. groups. . URL category and applications (webmail.). easy steps to enforce simple. locations. policy definition is intuitive and powerful – offering control over specific users. web reputation. etc. social networks. common sense data security policies. Scan Sensitive Documents Clean Content Allow Users Cisco IronPort S-Series Content Clean Content Block Internet Verdict DLP Vendor Box Deep content inspection for HTTP. They can also combine multiple network segments or separate groups into a single unit. allows administrators to create and manage data security policies on a per-user and per-group basis – providing tremendous flexibility and control. metadata. Granular policy creation. organizations can allow or block based on the third-party rules and policies. Cisco IronPort web security appliances offer the option to interoperate with DLP vendors via ICAP.

Object filtering (based on “true type”) accurately recognizes objects to restrict downloads that present security and/or compliance risks. puts Cisco in the unique position to offer a simple. CCDA. and Learn and Cisco Store are service marks. MeetingPlace Chime Sound. Aironet. Cisco IOS. Follow Me Browsing. CCNA.  Designed for small businesses and organizations with up to 1. Administrators can choose to block or allow confidential data traveling through any application that uses HTTP or FTP.com/leader. Cisco Systems. All other trademarks mentioned in this document or website are the property of their respective owners. If you believe that your organization could benefit from these industry-leading products. together with its partnerships with industry-leading DLP vendors. PCNow.000 users.000 to 10. StackWise. Collaboration Without Limitation. Cisco Press. CCVP. the IronPort logo. Inc. object and protocol filtering enables the configuration of granular controls. PIX. Leadership within the Internet security market. CA Asia Pacific Headquarters Cisco Systems (USA) Pte. EtherSwitch. and/or its affiliates in the United States and certain other countries. CCIE.000 users. and Access Registrar.  Summary Cisco delivers high-performance. SMARTnet. Addresses. HomeLink. Cisco. Spectrum Expert. reliable and easier to manage. iPhone. the Cisco Systems logo. Customized and localized notifications automatically alert end-users to policy violations that impact their Internet browsing and data-transfer activity. Bringing the Meeting To You. Event Center. iQuick Study. Cisco StadiumVision. Cisco TelePresence. Changing the Way We Work. CCSP. PowerPanels. is vital to ensure the integrity of an organization’s policies. CCIP. Networking Academy. (0809R) 435-0252-1 4/09 . IOS. GigaDrive. Live. ProConnect. Play. ScriptShare. Linksys. Singapore Europe Headquarters Cisco Systems International BV Amsterdam. and Welcome to the Human Network are trademarks.000 users.Technology Overview: Cisco IronPort Web Data Security and Data Loss Prevention pa g e 3 D ata S e c u r it y P o l ic y D e f i n iti o n s ( c o n ti n u e d ) Comprehensive application. The Netherlands Cisco has more than 200 offices worldwide. Cisco Nexus. CCDE. and fax numbers are listed on the Cisco website at www. CCNP. Cisco Eos. Cisco Systems Capital. Cisco Lumin. Catalyst. and the WebEx logo are registered trademarks of Cisco Systems. Americas Headquarters Cisco Systems. channel partners and system engineers are ready to help you evaluate how Cisco IronPort products can make your corporate network infrastructure secure. The Fastest Way to Increase Your Internet Quotient. FormShare. The ability to customize notifications allows administrators to maximize the educational opportunity of blocked web content. Cisco Unity. D e p l o y m e n t Opti o n s Sizing Up Your Web Security Solution The Cisco IronPort web security product line address issues faced by organizations ranging from small businesses to the Global 2000. WebEx. DCE. Inc. SenderBase. CCENT. comprehensive data loss prevention for the web – helping organizations both large and small prevent leaks. AsyncOS. enforce compliance and protect their brand and reputation. the Cisco logo. the Cisco Certified Internetwork Expert logo. CCDP. Recommended for organizations with 1.com/go/offices. easy-to-deploy solution for this critical functionality. Fast Step. please call 650-989-6530 or visit us on the web at www. The use of the word partner does not imply a partnership relationship between Cisco and any other company. Ltd. including the web. San Jose. Cisco IronPort S660 Cisco IronPort S360 Cisco IronPort S160 Suggested for organizations above 10.ironport. Cisco IronPort web security appliances also enable warn/continue pages – allowing an organization to educate users on corporate acceptable use and security policies. MeetingPlace. Network Registrar. LightStream. IronPort.cisco. Networkers. Cisco believes that a holistic solution for monitoring and enforcing data security across all communication channels. C o n ta ct U s How to Get Started Cisco sales representatives. Cisco WebEx. MGX. phone numbers. MediaTone. Internet Quotient. TransPath. Administrators can enable system-determined notifications across more than 25 trigger events or choose to redirect to a separate customizable internal policy and notification page. EtherFast.