Cisco Email Security Protect Your Network and Your Business
advertisement
Cisco Email Security Protect Your Network and Your Business C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 Email Is Important for Business The Threat Landscape Agenda Cisco® Email Security Benefits Inbound Protection Outbound Control Customizable Offerings C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 Businesses Consider Email One of Their Most Important Systems Business Emails per Day (Billions) 160 143.8 140 128.6 114.3 120 100 101.0 89.0 80 60 40 20 0 2012 2013 2014 2015 2016 Source: The Radicati Group, Inc., Email Statistics Report, 2012-2016 C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3 As the Way You Use Email Changes… Mobile Coffee shop C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Corporate Home Airport Cisco Confidential 4 …The Threats Change Too Targeted Attacks APTs Blended Threats Botnets IPv6 Spam Worms Trojan Horse Rootkits C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5 Tackle the Most Advanced Threats with Cisco Email Security Solutions Solutions Threat Defense Data Security Strengths Best performance C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Lowest TCO Future focus Cisco Confidential 6 Cisco Email Security Benefits • Capability to quickly block new email-sent viruses Best performance • Best-in-class capability to stop or encrypt sensitive outbound email • Exceptional threat identification infrastructure using Cisco’s global presence • Proactive protection of email with Cisco SensorBase™ filtering • Very few false-positive email classifications C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7 Cisco Email Security Benefits • No ongoing administration Lowest TCO • Low impact on network performance • Built-in compliance capabilities • Easy installation and management • World’s leading email security support “With Cisco, a substantial reduction in total cost of ownership and the new features to battle viruses and spam [are] a reality.” Kenichi Tabata Komatsu. Ltd., Japan • Few appliances required • Reduced CapEx with virtual appliances C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8 Cisco Email Security Benefits • Demonstrated commitment to email security investment and innovation • Extremely flexible email security: on-premises, in the cloud, hybrid, and virtual • Smarter and better anticipation of threats • Outstanding capability to scale threat analysis as the amount global data continues to grow C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Future focused “Cisco innovation and insight has led email security for ten years. We have been using their solution campus wide with great success for a long time. It gives us confidence for the future.” Dr. Damian Bucher Zentrum für Informationsverarbeitung Westfälische Wilhelms-Universität Münster, Germany Cisco Confidential 9 Cisco Security Intelligence Operations Outstanding Cloud-based Global Threat Intelligence 24x7x365 More than US$100 million 600+ operations spent on dynamic research and development engineers, technicians, and researchers 40+ 80+ languages PH.D., CCIE, CISSP, AND MSCE users Cisco® SIO WWW Devices IPS Networks Web Endpoints Cisco ScanSafe Cisco IPS Cisco AnyConnect® WWW Cisco ESA Cisco ASA Cisco WSA Actions Visibility Information Email Control 1.6 million 35% 3- to 5- 200+ global sensors worldwide email traffic minute updates parameters tracked 100 TB 13 billion 5,500+ 70+ of data received per day web requests IPS signatures produced publications produced 150 million+ 8 million+ deployed endpoints rules per day C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10 Cisco SIO Is Intelligence Defense Delivered at Scale Cisco® Security Intelligence Operations: Broad visibility Global footprint Defense in depth 100 TB 93 billion 13 billion security intelligence daily email messages web requests C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. 4.5 billion daily email blocks 35% 150,000 5500 enterprise email microapplications IPS signatures 150 million deployed endpoints 3- to 5minute updates 5 billion daily email connections 1.6 million 1000 applications deployed devices Cisco Confidential 11 Cisco SensorBase: Email Reputation Database Breadth and quality of data make the difference Spam Traps Complaint Reports IP Blacklists and Whitelists Message Composition Data Compromised Host Lists Website Composition Data Global Volume Data Domain Blacklist and Safelists Other Data IP Reputation Score C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. -10 0 +10 Cisco Confidential 12 Cisco Email Security Architecture Management Threat Defense Data Security Antispam Data Loss Prevention Antivirus and Virus Outbreak Filter Encryption C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13 Cisco Email Security: Threat Defense Management Threat Defense Data Security Antispam Data Loss Prevention Antivirus and Virus Outbreak Filter Encryption C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14 Antispam Defense in Depth What Known good mail is delivered When Who Cisco Anti-Spam Cisco® SIO Incoming mail good, bad, and unknown email Suspicious mail is rate limited and spam filtered Known bad mail is blocked before it enters the network C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Where How • > 99% catch rate • < 1 in 1 million false positives Cisco Confidential 15 Cisco Anti-Spam Defense-in-Depth Spam Protection What Email Reputation • Spam botnets • Spammer networks Message Content Who Cisco® Anti-Spam Web Reputation • Malware and phishes • Short-texted spam with URLs C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. When Where • SMS Spam • Attachment-based spam Message Construction How • Image spam • Spam created using automation tools Cisco Confidential 16 Cisco Email Security: Threat Defense Management Threat Defense Data Security Antispam Data Loss Prevention Antivirus and Virus Outbreak Filter Encryption C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17 Antivirus Defense in Depth Virus Outbreak Filters Antivirus Engines Zero-Hour Virus and Malware Detection Choice of Antivirus Engines C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18 Cisco Data Security Virus Outbreak Filters Zero-Hour Malware Prevention Cisco® SIO Dynamic Quarantine Virus Filter Virus Outbreak Filters in Action Zero-Hour Virus and Malware Detection C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Virus Outbreak Filters Advantage • Average lead time*: Over 13 hours • Outbreaks blocked*: 291 outbreaks • Total incremental protection*: Over 157 days Antivirus Engines Choice of Antivirus Engines Cisco Confidential 19 Outbreak filters defend against blended attacks Integrated email and web security Website is clean Link is clicked Website is blocked Cisco SIO Cisco Security The requested web page has been blocked http://www.threatlink.com Dynamic, real-time inspection via HTTP C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Email and Web Security protects your organization’s network from malicious software. Malware is designed to look like a legitimate email or website which accesses your computer, hides itself in your system, and damages files. Cisco Confidential 20 Cisco Email Security: Data Security Management Threat Defense Data Security Antispam Data Loss Prevention Antivirus and Virus Outbreak Filter Encryption C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21 DLP and Compliance Built-in Comprehensive DLP Solution with RSA: Accurate, Easy, and Extensible • Fast setup Data Loss Prevention • Low administrative overhead • Comprehensive policy creation and modification • Exceptional accuracy • Direct integration for enterprisewide DLP deployments Incidents C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Policies Cisco Confidential 22 DLP Is Easy to Set Up Stop Sensitive Content in Minutes One click activation of pre-loaded policies Integrated into policy manager C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23 Providing Comprehensive Policy Coverage 100+ Predefined Policies for Comprehensive Coverage C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24 Accuracy with In-Depth Analysis… SSN detection Proper name detection Matches are found in close proximity Rule is matched multiple times to increase score C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Unique rule matches are met Cisco Confidential 25 …And Easy Reporting and Monitoring Drill-down reporting C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Detailed message tracking Cisco Confidential 26 Cisco Email Security: Data Security Management Threat Defense Data Security Antispam Data Loss Prevention Antivirus and Virus Outbreak Filter Encryption C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27 Traditional Email Has Limitations Cisco Encrypted Email Is Integrated into the Network Anyone Confidential can read message Email No guaranteed TO TO CC CC SUBJECT SUBJECT Read message recall Receipt No control Guaranteed over forwarding Recall Secure Reply and forward C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28 Simplified Messaging Security Through a Cloud-Based Encryption Service Cisco® Registered Envelope Service Turnkey Email Encryption Flexible cloud-based encryption key server Encryption key is stored in the cloud Hosted key service Federated identity gateway Push technology with intuitive policy management Support for SAML for federated identity Technology independence: use your inbox or mail server of choice Email sender prepares an encrypted message for the recipient Recipient gets encrypted message Encryption key is requested by recipient to decrypt message Decrypted message is displayed to recipient Integrated MTA-to-MTA TLS enforced security with advanced end-to-end encryption to meet evolving customer requirements C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29 Easy for the Sender • Automated key management • No desktop software requirements • Send to any email address transparently • Encryption triggered by keywords, policies, senders, recipients, etc. Sender Controls C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30 And Easy for the Recipient 1 Open attachment C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. 2 Enter password 3 View message Cisco Confidential 31 Offering Enhanced Visibility and Control With Multidevice Support for Encrypted Email Anytime and Anywhere Smartphones C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Tablets Laptops Cisco Confidential 32 Cisco Email Security: Management Management Threat Defense Data Security Antispam Data Loss Prevention Antivirus and Virus Outbreak Filter Encryption C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33 Cisco Email Security Manager Single View of Policies for the Entire Organization Categories by: active directory, domain, username, or LDAP • Allow all media files IT • Quarantine executable files • Mark and deliver spam • Delete executable files Sales • Archive all mail • Virus-outbreak filters disabled for .doc files Legal A single, versatile dashboard to manage all the services on the appliance C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34 Comprehensive Insight Unified Business Reporting Consolidated and custom reports • Single view across the organization Multiple data points • Email volumes • Spam counters • Policy violations • Real-time insight into email traffic and security threats • Actionable drilldown reports C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. • Virus reports • Outgoing email data • Reputation service • System health view Cisco Confidential 35 Visibility into Email Messages Message Tracking What happened to the email I sent 2 hours ago? ̶ Track individual email messages Who else received similar emails? ̶ Forensics to help ensure compliance C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36 Customizable Service Offerings Broad Protection and Control Inbound Protection Outbound Control Threat Defense Data Security Antispam Data Loss Prevention Antivirus and Virus Outbreak Filter Encryption Flexible Deployment Options C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Appliance Virtual Cloud Cisco Confidential 37 C97-728331-00 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38
