Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure Browsing Because malware usually doesn’t identify itself.

Published byΈρασμος Ακρίδας Modified over 6 years ago

Similar presentations

Presentation on theme: "Secure Browsing Because malware usually doesn’t identify itself."— Presentation transcript:

1 Secure Browsing Because malware usually doesn’t identify itself

2 Introduction The threats are known. The vectors are many.
It takes many, often overlapping, technologies to protect your company and stay out of the headlines.

3 Anatomy of a hack If we look at the cyber kill chain/anatomy of a hack, we can see how it happens. Reconnaissance, Weaponization, Delivery, Exploit, Installation, Command & Control, Actions

4 The Vector One of the more common vectors to “deliver” an attack relies on the internet and the users who browse them. This relies heavily on end user behavior. Whether on purpose or by accident, as in the case of the "drive-by download", when a user is connected to the internet bad things can happen. The sites are very convincing and setup to trap the user.

5 Current State Many of the current methods to address this vector are based on sigs/defs which need to already 'know' the threat or advanced analytics which tries to understand bad/suspicious behavior. Why is my thermostat talking to Russia? Unfortunately, they are not and truthfully cannot be 100% since the threats are changing as the defenses evolve. Your blacklists\definitions\signatures are pretty much outdated as soon as you deploy them.

6 What does Secure Browsing actually mean?
This brings us to concept of secure browsing. A methodology/technology that leverages the concept of isolation. Since, as we already said, you can never know with 100% certainty if something is safe or harmful, keep it isolated.

7 Why isolate? Isolation insures that content never reaches your true ‘endpoints’ which is where it needs to run to do what it was designed to do. Compromise an endpoint then compromise your network. Remember, the threat is now coming from inside. Isolation can also be “disposable” and help with any potentially “persistent” threats.

8 Where to implement it Isolate on the endpoint Isolate off the endpoint

9 Secure Browsing Basic Flow
Remote Browsers Pool Remote Browser File Cleaning Log Configuration Orchestration Management ICAP Server Policy Proxy HTTP/HTTPS Browser (HTML5) Technology Black List White List

10 In with the new, out with the old?
Does this mean you throw out your firewalls, URL filters, antivirus, behavioral analysis tools and security education programs? Not at all. Cybersecurity is best addresses by a layered approach. Belts and suspenders. Defense in depth. Adding Ericom Shield as a layer to your enterprise will go a long way to insuring the malware cannot get in in the first place.

11 Reach out to Ericom.com and we can show you how Ericom Shield can provide a critical outer layer to your security that can keep threat off your network to begin with.

Download ppt "Secure Browsing Because malware usually doesn’t identify itself."

Similar presentations

ETHICAL HACKING A LICENCE TO HACK

ETHICAL HACKING A LICENCE TO HACK
Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)

Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)
ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.

FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.
FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.

FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.
David Flournoy Bit9 Mid-Atlantic Regional Manager

David Flournoy Bit9 Mid-Atlantic Regional Manager
Firewall Raghunathan Srinivasan October 30, 2007 CSE 466/598 Computer Systems Security.

Firewall Raghunathan Srinivasan October 30, 2007 CSE 466/598 Computer Systems Security.
Security Awareness: Applying Practical Security in Your World Chapter 6: Total Security.

Security Awareness: Applying Practical Security in Your World Chapter 6: Total Security.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
Norman SecureSurf Protect your users when surfing the Internet.

Norman SecureSurf Protect your users when surfing the Internet.
Intranet, Extranet, Firewall. Intranet and Extranet.

Intranet, Extranet, Firewall. Intranet and Extranet.
Malicious Code Brian E. Brzezicki. Malicious Code (from Chapter 13 and 11)

Malicious Code Brian E. Brzezicki. Malicious Code (from Chapter 13 and 11)
Firewalls Paper By: Vandana Bhardwaj. What this paper covers? Why you need a firewall? What is firewall? How does a network firewall interact with OSI.

Firewalls Paper By: Vandana Bhardwaj. What this paper covers? Why you need a firewall? What is firewall? How does a network firewall interact with OSI.
Lecture#2 on Internet and World Wide Web. Internet Applications Electronic Mail (email) Electronic Mail (email) Domain mail server collects incoming mail.

Lecture#2 on Internet and World Wide Web. Internet Applications Electronic Mail ( ) Electronic Mail ( ) Domain mail server collects incoming mail.
Separate your corporate environment from unknown threats of the WEB. Define trusted WEB policy. Enforce the use of WEB browsers. Automatically distribute.

Separate your corporate environment from unknown threats of the WEB. Define trusted WEB policy. Enforce the use of WEB browsers. Automatically distribute.
Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.

Security Professional Services. Security Assessments Vulnerability Assessment IT Security Assessment Firewall Migration Custom Professional Security Services.
BY OLIVIA WILSON AND BRITTANY MCDONALD Up Your Shields with Shields Up!

BY OLIVIA WILSON AND BRITTANY MCDONALD Up Your Shields with Shields Up!
FIREWALLS Vivek Srinivasan. Contents Introduction Need for firewalls Different types of firewalls Conclusion.

FIREWALLS Vivek Srinivasan. Contents Introduction Need for firewalls Different types of firewalls Conclusion.
Lecture 15 Page 1 Advanced Network Security Perimeter Defense in Networks: Firewalls Configuration and Management Advanced Network Security Peter Reiher.

Lecture 15 Page 1 Advanced Network Security Perimeter Defense in Networks: Firewalls Configuration and Management Advanced Network Security Peter Reiher.
Lecture 16 Page 1 Advanced Network Security Perimeter Defense in Networks: Virtual Private Networks Advanced Network Security Peter Reiher August, 2014.

Lecture 16 Page 1 Advanced Network Security Perimeter Defense in Networks: Virtual Private Networks Advanced Network Security Peter Reiher August, 2014.

Similar presentations

Ads by Google