1 / 36

Symantec Messaging Gateway

Symantec Messaging Gateway. Stéphane Jacobs. Pre-sales Consultant. Symantec Messaging Gateway Small Business Edition. Purpose built appliance that prevents spam, viruses, and phishing attacks from reaching email servers Small Business Edition Targets 250 users and below

ira
Download Presentation

Symantec Messaging Gateway

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Symantec Messaging Gateway Stéphane Jacobs Pre-sales Consultant

  2. Symantec Messaging Gateway Small Business Edition • Purpose built appliance that prevents spam, viruses, and phishing attacks from reaching email servers • Small Business Edition • Targets 250 users and below • Same enterprise class protection • Installation in minutes • Small Business friendly per-appliance pricing and licensing

  3. Symantec Global Intelligence Network Managed devices in 70+ countries 120 Million Threat/ Virus Submission Systems • 55,000+ technologies from over 8000 vendors Vulnerability Database 25,000+ vulnerabilities in database • Statistics on 1+ Billion email messages a day • Geo-location capabilities on servers and zombies Fraud: Spam & Phishing 2+ Million Probe Network Accounts Honeypot Network • Capturing previously unseen threats and attack methods Virtual network of 8000+ IP addresses > 10,000 Security Professionals Over 100,000 security alerts generated annually 200,000 daily code submissions 2B+ events logged daily 40,000+ Sensors in 200+ Countries 3

  4. Symantec’s Approach to Messaging Security Better Protection Greater Control Easy Management • Best Antispam and Antivirus • Personalized Protection • Adaptive Reputation Management • Global Intelligence Network • Advanced Content Filtering • Content Encryption • Data Loss Prevention Integration • Compliance • Unified Control and Management • Continuous Automatic Spam and Virus updates • On-demand Reporting • Virtual appliance ...From the Leader in Enterprise Security

  5. Managed devices in 70+ countries 120 Million Threat/ Virus Submission Systems Uncompromising Protection • Spam • 99% Effective • <1 in 1 million false positives • Anti-phishing • Adaptive Reputation Mgmt stops 90% at connection • Viruses • Leading AV engine • Day Zero • Content Filtering • Offensive language • Confidential information • 20+ Layers ofProtection • Global Reputation • Local Reputation • Image spam • PDF spam • Zombie attacks • BATV backscatter • Directory Harvest • Language filters PROTECT Inbound Protection: • Effective & Accurate AV & AS • Adaptive Reputation Management (Global and Self-Learning Local Reputation) • World’s Largest Global Intelligence Network 40,000+ Sensors in 200+ Countries

  6. Best in Class Antispam Protection Symantec Brightmail Antispam Engine URL Filters Bounce Attack Prev. Heuristics Reputation Filtering • Fraud URLs • HTTP URLs • Adult URLs • Tag Validation to Protect against Bounce Attacks • Configurable Group Policies • Flexible Remediation • Header Analysis • Language Analysis • Content Analysis • Structural Analysis • Image Analysis • High Volume Spam Sources • Safe Sources • Inputs from Global Intelligence Network Signatures Allow and Block Lists • Body Hash • Body Fuzzy Signatures • Attachment Signatures • Personal Allowed and Blocked Lists • Personal Language Filters • Admin-Defined Allowed and Blocked Senders List • Greater than 99% effectiveness • Accuracy of over 99.9999% • Less than one false positive in every one million legitimate emails Managed by customers (optional) Managed by Symantec

  7. Adaptive Reputation Management Global reputation Local reputation • Leverages reputation service from Brightmail BLOC and patented Probe Network • Tracks millions of known spam and safe senders based on IP • Self-learning local reputation scoring tracked by each scanner • Used by connection classification to defer connections of likely spam senders • Effectively tracks mixed reputation and distributed low volume senders Connection Classification • Assigns system resources differentially based on connection class • Guarantees higher quality of service to senders with better reputations • Filters out up to 90% of spam traffic based on reputation

  8. Best in Class Antivirus Protection Symantec Antivirus Engine • Signature-based Virus Definitions • Script-Blocking • Bloodhound™ Heuristic Definitions • Day Zero Malware Protection • Mail/zip Bomb Protection • Decomposer and File Typer for Attachment Scanning • Multi-threaded Scanning for Performance • Mass-mailer Cleanup • Heuristic- and Behavior-based IM Monitoring • LiveUpdate • Multi-threaded Scanning • Repair Engine • Flexible Workflow with Multiple Dispositions • Over 40 consecutive perfect scores (VB100 designation) from VirusBulletin, since 1999 – “excellent scanning speeds and the usual impeccable detection” • Top performer in AV-Test benchmarks, with no false positives, fast scan speed, rootkit detection, and malware cleaning

  9. Outbound Control CONTROL Outbound Control: • Advanced Content Filtering • Data Loss Prevention • Regulatory Compliance • Flexible Policy-based Workflow and Rule sets • Pre-built Templates and Dictionaries • Compliance Folders • Email and attachments • Compliance • Intellectual Property • Sensitive Information • Inappropriate • Structured Data Matching • Fingerprinting • Exact data protection • Related data matching

  10. Advanced Content Filtering Framework Detection Incident Management Policy Management Symantec Brightmail Content Filtering Engine • Regular Expressions • Pre-built Dictionaries • Structured Data Matching • True File Typing • Text Extraction and Attachment Scanning • Compliance Folders • Access Controls • Multiple Verdicts • Hold-for-Review Workflow • Graphical Incident Manager • Centralized Management • Pre-built Policies, Patterns, and Templates • Graphical Condition Builder Remediation Reporting • Notifications • Enforce TLS Encryption • Tag for Archiving • Header/Message Modification • Bounce Message • Pre-built Reports with Flexible Options • Automated Report Generation • Illustrate Liability and Risk Reduction

  11. Choice in Email Encryption • Symantec Content Encryption, a hosted option leveraging Symantec.cloud • Symantec PGP Universal Gateway Email, for extensible on-premises encryption Unencrypted Communications Messaging Gateway Unencrypted Communications Unencrypted Recipient Email Server Users Customer Network Unencrypted Recipient Policy Configuration TLS Encrypted Communications Email Server Users Customer Network Messaging Gateway Encrypted Email Based on Policies Encryption Policy Configuration PGP GW Email Encrypted Recipient Admin Encrypted Response Admin Encrypted Recipient 22

  12. Powerful and Easy to Use Management MANAGE Management and Administration • Unified Control and Management • Frequent Automatic Spam/Virus Updates • Comprehensive Logging and Alerts • On-Demand Reporting and Intelligence • Virtual Appliance • Setup in minutes • No tuning requirements • Adapts to local environment • Minimize administrative effort • Role based administration • End user self service quarantine • Dashboard and automated reporting • Message tracking and auditing • Benefit from virtualization • Supports mixed physical / VMware environments • Save on hardware costs • Simply backup and high availability

  13. Virtual vs. Physical Appliance Option Hypervisor • Compatible with VMWare ESX 3.5 and ESXi 3.5 servers • Same software license for virtual and traditional appliance • Dedicated Scanners or Dedicated Control Center • Combined Scanner/Control Center: Suitable for smaller organizations

  14. Out-Of-The-Box Reporting • Full set of reporting options • Dashboard - quantifies all knownemail threats • Executive Summaries • Over 50 preset reports • Flexible reporting workflow • Scheduled report generation and export options • Benefits • Gain insight into performance • Identify Email and IM securitytrends • Track potential compliance issues

  15. Filter with multiple criteria Retrieve Message Status 2 3 1 Simple Message Tracking • Sender • Recipient • Subject • etc. • Time message processed • Sender • Recipient • Subject of the message • Disposition (spam, virus, blocked sender, etc) • Actions Taken Drill down for detailed forensics 15

  16. Flexible Compliance Administration • Create additional administrator accounts • Specify desired level of management privileges • Specify list of administrators who can use Control Center • Specify administrators who can access compliance folders • Customize administrator rights • Full Administrator rights (View and Modify any page in Control Center) • Limited access to restrict access to certain settings • Differentiate between View and Modify access

  17. Stéphane Jacobs Stephane_jacobs@symantec.com

  18. Key Benefits

  19. Best of Breed Technologies • Uncompromising Protection • Unique Antispam – Effective on botnets and adapts to your local threat conditions with greater than 99% effectiveness and 99.9999% false positive rate • Best Antivirus – Unparallel VB100 testing results • Advanced Content Filtering – Protect confidential information • Powerful and Easy-to-Use Management • Out-of-box Installation – Less than 15 min setup time • Zero Tuning – No administrative work is required to train the rulesets • Continuous Automated Updates – From Symantec Global Intelligence Network • Smart Investment, Today and Tomorrow • Save on hardware by implementing the Virtual appliance on hardware of choice, including ones currently owned • Lower total cost of ownership with minimal ongoing administrative overhead 19

  20. Competitive Comparison • Compared to Barracuda, Symantec has • Better protection – 8% more effective than Barracuda; and Barracuda had almost 9x more false positives than Symantec did1. • Easier to manage – Zero ruleset maintenance, and no tuning required. • Lower total cost of ownership – Lowest on-going costs; scalable appliance • Compared to Cisco Virus and Spam Blocker, Symantec has • Smarter appliance – Industry’ only global AND local IP reputation technology • Better antivirus – Day zero antivirus protection included • Compared to McAfee, Symantec has • Better antispam – McAfee has substantial administrative burden to train rulesets • Better antivirus - Symantec has more than 40 consecutive VB100 awards for the last 10 years. McAfee has failed 11 times since 19992. 1 InfoWorld Technology of the Year Award, 2005-2008, winner for Best Anti-Spam/Mail Security Solution. 2 VirusBulletin100 Awards 1999 to 2009

  21. Image Spam Phishing HTML ASCII Simple Text Challenge #1: Spam Continues to Flood Servers and Employee Inboxes 419 Spam PDF Spam 90% Spam as a Percentage of Email Volume 8% 2001 2009 Severity/Complexity Source: Symantec State of Spam Report 21

  22. Challenge #2: Sensitive Data is Leaving the Enterprise, Risking Brand and Reputation Customer, Employee, Patient Data Intellectual Property Company Confidential Regulatory Compliance • HIPAA, GLBA, PCI, State Data Privacy, Caldicott, PIPEDA • SSN, Credit Card Numbers, Health Info Competitive • Source Code • Engineering Specs • Strategy Documents • Pricing Reputation • Press Release • Quarterly Earnings • M&A • CEO Internal Email • 1:400 emails contain confidential information • Over 90% of data loss caused by breakdowns in process controls by good employees

  23. Reducing False Positives with Structured Data Matching • Matching to database extracts • Protect the exact data you care about – not just a pattern that looks like a credit card number, but your customers’ actual credit card numbers • Protect data that is difficult to describe and only important if related - e.g. Employee first name, last name and salary • Once a fingerprint has been created from these data, the administrator can specify what defines a violation • E.g. fields required for a match

  24. Symantec Data Loss Prevention Integration • Protect confidential data across endpoint, network, and storage systems • New integration: • Simplifies deployment and management • Ensures high availability and performance

  25. 8AM 8:15 AM 12:00 Midnight 11:45 AM 10:30 AM 9:00 AM 2:45 PM Generate Reports for Executive Review Install System Updates, Manually Adjust Policies Help Desk is Bombarded All Day Targeted Attack Occurs Executive Calls: Can’t Find My Email! 1:30 PM Change Block Lists Based on Message Audit Results Search Through Spam Quarantine for Missing Emails 9AM 10AM 11AM Noon 1PM 2PM 3PM 4PM Midnight Challenge #3: Messaging Infrastructure is Increasing in Cost and Complexity Challenges • Generating Management Reports • Keeping Systems Current • Responding to End User Requests • Managing Policies Across Systems • Managing Spiraling Energy Costs • IT Budgets and Headcount are Flat • IT Responsibilities are Growing

  26. Automated filter downloads and statistics Antivirus LiveUpdate process Simple software updates Automated email alerts Granular backup and restore Configurable logging levels SNMP support Streamlined System Management

  27. Upsell/Crosssell

  28. Easy Up-sell/Cross-sell Opportunities Add Messaging Gateway Small Business Edition to provide comprehensive end-to-end protection, securing both inbound and outbound email and instant message traffic from phishing threats. One affordable Messaging Gateway Small Business Edition appliance at the messaging gateway can drastically reduce spam volumes—relieving stress at the mail server level. Mail Servers

  29. Competitive Displacements

  30. Summary

  31. Symantec Brightmail GatewayProduct Recognition “Symantec takes the prize with superior anti-spam and anti-malware capabilities, strong enterprise-class features, excellent management and reporting tools, and a very polished and easy-to-use administrative interface.” -InfoWorld 2008 Technology of the Year Awards 4th Consecutive Year - Best Messaging Security Product Excellence Award: Server Appliance Leader, Forrester Wave 2009 Email Filtering Symantec … shows a level of sophistication and ease of use that only comes from being a class leader for a long time, and having all the sharp edges rounded off. Leader, Magic Quadrant 2010 Secure E-Mail Gateways 31

  32. Customer Confidence In Symantec We protect over 800M mailboxes at over 100,000 customers, including… 32

  33. Experts with certifications from more than 20 industry associations and technology providers including: • Microsoft, Cisco, Sun, HP, IBM, SNIA, and CISSP • Rapid resolution of multi-vendor cases provided through: • Cooperative support agreements with more than 200 vendors • TSANet board membership • Support delivered in 10 languages • Awards: • SSPA Star Award (Service and Support Professionals Assoc.) • Omega’s NorthFace ScoreboardSM Award • WebStar Award from Supportgate.com • Global programs to extend support delivery through partners 29 regional support centers 70 regional delivery partners Global Support Presence More than 2400 highly trained global support professionals

  34. Try the product! • 30-day evaluation www.symantec.com/trybrightmail • Compare effectiveness and accuracy • Greater than 99% effectiveness, less than 1 in a million false positives Symantec and our partners can help assess, plan and deploy successfully! What To Do Next

  35. Backup 35

  36. Symantec Global Intelligence Network Messaging Gateway Architecture • Reputation • Rules • Signatures • Heuristics • Definitions Advanced Content Filtering Adaptive Reputation Mgmt. Management Interface • SMTP • IM Embedded MTA IM Proxy Antivirus Antispam Data Loss Prevention Policy Engine • SMTP • IM Encryption* Message processing and verdict analysis * Native TLS encryption, Integration with encryption partners 36

More Related