Blue Coat Secure Web Gateway James Qian 13510873728Jiang
Blue Coat Secure Web Gateway 解 决方案以及行��用 James Qian/�江 13510873728/Jiang. qian@bluecoat. c om �南区技�支持 Blue Coat and the Blue Coat logo are trademarks of Blue Coat Systems, Inc. , and may be registered in certain jurisdictions. All other product or service names are the property of their respective owners. © Blue Coat Systems, Inc. 2009. All Rights Reserved.
�程 § 公司简介 § Blue. Coat Secure Web Gateway 分层防护解决方案 • Internet代理网关 Blue Coat Proxy. SG • 网址过滤数据库 Blue Coat Web. Filter • 防病毒网关 Blue Coat Proxy. AV • 企业移动用户防护 Blue Coat Proxy. Client • 全球云安全服务 Blue Coat Web. Pulse • 防数据泄漏 Blue Coat DLP § Blue. Coat Secure Web Gateway管理监控平台 2 • 集中管理统一平台 Blue Coat Director • 日志收集平台 Blue Coat Reporter © Blue Coat Systems, Inc. 2009. All Rights Reserved.
关于Blue. Coat公司 3 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
Blue. Coat 公司简介 § 赢利的上市公司 (NASDAQ: BCSI) § 1996年成立Cache. Flow, 专注 web cache § 2006年收购Net. App Net. Cache产品线 § 2008年收购Packeteer § 150多个国家的15, 000+ 客户 • 97 of Top 100 from Fortune® Global 500 • 8 of Top 10 Global SP § 市场的领导者 安全Web网关(web cache) #1 (Gartner) 广域网加速市场 #1 (IDC) 4 © Blue Coat Systems, Inc. 2009. All Rights Reserved. *BCSI & PKTR combined revenue
Gartner的魔力象限�比中位于��者象限地位 Secure Web Gateway, 2008 Source: Gartner Magic Quadrant for Secure Web Gateways, 2008 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
BLUE COAT 产品线 远程移动用户 Corporate Headquarters SG 9000 Series Blue. Coat Reporter Proxy Client SG 8100 Series SG 810 Series Blue. Coat Director SG 510 Series Remote Offices SG 210 Series AV 810 Series AV 510 Series AV 210 Series Connected Users WAN Throughput 6 6 Up to 250 users 150 – 1000 users Up to 20 Mbps 30 – 50 Mbps © Blue Coat Systems, Inc. 2009. All Rights Reserved. 800 – 4000 users 100 Mbps – 140 Mbps Performance 3000 – 50, 000+ users 200 Mbps – 400+ Mbps
Blue. Coat Secure Web Gateway解决方案 安全代理网关 Proxy. SG 8 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
Proxy. SG支持的协议库 § HTTP, HTTPS, FTP, DNS § CIFS, MAPI, SOCKS (v 4/v 5), Telnet § P 2 P (Ka. Zaa, Gnutella, Bit. Torrent and e. Donkey) § IM (AIM, MSN, Yahoo Messengers) § RTSP/Quick. Time, MMS § Stream caching/splitting, plus CDN § TCP-Tunnel (unique application services) Proxy. SG provides method-level controls for HTTP, HTTPS, IM, FTP, and SOCKS Proxy Library 基于对象 操作系统 10 © Blue Coat Systems, Inc. 2009. All Rights Reserved. Internet Scalable TCP Stack 智能�存 硬件优化
Proxy. SG 支持的认证(Authentication) - Active Directory (NTLM, Kerberos, LDAP, SS 0) - Novell e. Directory (LDAP, SSO) - Tokens (Secure. ID, Safeword) - Authentication Schemes - Oracle COREid, Siteminder, X. 509, Local - Credential Transport Authentication provides the foundation for identity based policies and accurate logging - NTLM, Basic/64, SSL/64, HTML Form, SSL Form - Explicit Proxy Auth Pop-up Login - Mapping Users to Traffic - IP Address, Cookies, Domain Server (SSO) - Supported Protocols - LDAP, RADIUS, XML, Unlimited Auth. Sequencing - Assigned Failure to Guest mode Proxy Library 基于对象 操作系统 © Blue Coat Systems, Inc. 2009. All Rights Reserved. Authentication Scalable TCP Stack 智能�存 Policy Engine 硬件优化 Internet
Proxy. SG 策略控制引擎 § Visual Policy Manager 图形化策略管理 具 • Over 200 triggers and actions for granular policy rules • Pick lists & wizards to quickly define policies (auth user/group) • Define custom alerts to advise & coach users § Command Line Interface (CLI) 命令行 • Popular with network admins that prefer CLI commands • All Proxy. SG policy controls available in CLI § Content Policy Language (CPL) CPL脚本语言 • Rich language with full expression support • Access to header elements (request/response) • Copy/paste pre-defined Blue Coat advanced policies Proxy Library 基于对象 操作系统 12 © Blue Coat Systems, Inc. 2009. All Rights Reserved. Authentication Scalable TCP Stack 智能�存 Policy Engine 硬件优化 Internet
Blue. Coat Secure Web Gateway解决方案 防病毒网关Proxy. AV 13 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
防病毒网关Proxy. AV Internet § Proxy. AV with leading AVM engines • 支持病毒库Mc. Afee, KASPERSKY, Sophos, panda • 阻止病毒、蠕虫、木马、恶意代码、及间谍软件 • 扫描 HTTP(S), FTP 流量 • 支持ICAP, ICAP+, Secure-ICAP协议 ICAP+ Blue Coat SG Proxy/Cache §性能通过两个缓存优化 • 内容缓存 可达 24 -32% 性能提高 • 对静态对象“扫描一次,服务多次” • 对动态对象,指纹Hash 避免重复扫描 • 集成缓存功能处理,高达 300 Mbps吞吐,7 -9 ms 延迟 Blue Coat AV Internal Network §智能的 AV-Cache 集成 防毒� • AV数据库更新后,后台重新扫描 Proxy. AV Proxy Library 基于对象 操作系统 © Blue Coat Systems, Inc. 2009. All Rights Reserved. Authentication Scalable TCP Stack 智能�存 Policy Engine 硬件优化 Internet
Blue. Coat Secure Web Gateway解决方案 网址��数据� BCWF 15 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
Blue. Coat URL Filtering §Blue Coat Web. Filter • 70+ 分类, 1500万网站,覆盖数十亿网页, 50+语言 • 一个网站多个分类,Web 2. 0网站分类精确 • 动态 实时防护,拒绝可疑网站与间谍软件 • 可疑网站覆盖率98% • 出错页面可以定制 § 支持第三方数据库,及本地数据库 • Blue Coat Web. Filter, Smart. Filter, Websense 商业数据库 • Plus regional URL lists & custom URL db/categories 地区法律、客户自定于数据库 • Allow/Deny lists, plus custom overrides & exceptions 黑白名单 • 多个数据库并行 防毒� Proxy. AV Proxy Library 基于对象 操作系统 16 © Blue Coat Systems, Inc. 2009. All Rights Reserved. URL Filter DB Authentication Scalable TCP Stack 智能�存 Policy Engine 硬件优化 Internet
Blue. Coat Secure Web Gateway解决方案 企业移动用户防护 17 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
远程(移动)用户安全策略控制 §Remote Web 访问控制 • 不接入公司的网络,也能享受公司网址过滤安全措施带来的保护 No licensing for Proxy. Client, plus an extension of Web. Filter use 防毒� Proxy. AV URLFilter DB Proxy. Client Proxy Library 基于对象 操作系统 18 © Blue Coat Systems, Inc. 2009. All Rights Reserved. Authentication Scalable TCP Stack 智能�存 Policy Engine 硬件优化 Internet
Blue. Coat Secure Web Gateway解决方案 Blue. Coat 全球云安全服� 19 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
Blue. Coat Web. Pulse云安全服务 §基于群防体系 §由超� 6, 200 万用��成的社区 §每天分析超� 2 �个 URL Web �求 §使用多个威���引擎,机器,人 防毒� Proxy. AV 云安全服� URLFilter DB Proxy. Client Proxy Library 基于对象 操作系统 20 © Blue Coat Systems, Inc. 2009. All Rights Reserved. Authentication Scalable TCP Stack 智能�存 Policy Engine 硬件优化 Internet
Blue. Coat Web. Pulse云安全服� ���接分析 名誉分析 ��分�服� 木�防� 6500万个Blue Coat 用�社区 Web. Pulse™ 每周 12�个用� �求 内容分� Blue. Coat用� 16个危�引擎 Proxy. AV Webfilter 机器分析 人 分析 K 9 Proxy. Client 21 © Blue Coat Systems, Inc. 2009. All Rights Reserved. 无需下�, 保���
Web. Pulse 作原理 – Dynamic Links Web contents Real time update Multiple Threat Engines It’s bad It’s Bad Machine Analysis Internet Human Raters Web contents downloads w/ malware Web. Pulse Datacenter URL It Doesn’t Know URL is good Proxy. SG Users Proxy. SG 22 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
Web 2. 0 保�和�� Webfilter Only Blocks the Desired Web 2. 0 Content, Ensuring Governance & Compliance 23 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
Blue. Coat Secure Web Gateway解决方案 Blue. Coat 企�防信息泄露 24 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
Blue. Coat防信息泄露 § Proxy. SG with leading DLP/ILP solutions • Blue Coat DLP 700/1700/2700,Email/Web/Network DLP • 支持第三方厂商SYMC/Vontu, RSA Tablus, Veri. Cept, MFE/Reconnex, • ICAP, Secure-ICAP § Proxy. SG content controls • Method level controls (HTTP, SSL, FTP, SOCKS) • Restrict outbound files in webmail, IM and FTP per user/group • Ability to filter/strip/replace content types • Keyword search in IM 云安全服� 防毒� Proxy. AV URLFilter DB Proxy. Client Proxy Library 基于对象 操作系统 25 © Blue Coat Systems, Inc. 2009. All Rights Reserved. Authentication Scalable TCP Stack 智能�存 防信息泄露 DLP/ILP Policy Engine 硬件优化 Internet
Blue Coat DLP is Scalable § Enterprise Scalability From small to large enterprise Redundancy and high availability DLP 700 § Multi-function Appliances Email DLP Web DLP Network DLP 1700 & DLP 2700 Model Users Discovery DLP 700 Central management DLP 1700 5, 000 DLP 2700 20, 000 © Blue Coat Systems, Inc. 2009. All Rights Reserved. 250
Blue. Coat多�安全防�体系 Layer 5: 全球云安全服� Web. Pulse Service L 4 -L 7 Blue Coat Solution Layer 4: 企�移�用��合安全保� Proxy. Client Layer 3: 防数据泄漏 Blue. Coat DLP Layer 2: �机安全威� Proxy. AV Layer 1: Web内容以及安全控制 Proxy. SG + Web. Filter L 2 -L 4 Firewall Ø Cloud Malware Defense Ø SSL Inspection Ø Dynamic URL Filtering Ø Policy Control Ø Data leakage Ø Protect roaming users 网�安全 Ø Perimeter protection Ø Access control Ø Stateful inspection 网��防火� 27 Web安全 © Blue Coat Systems, Inc. 2009. All Rights Reserved. Ø Do. S protection
Blue. Coat Secure Web Gateway管理�控系� Blue. Coat Director集中管理统一平台 28 © Blue Coat Systems, Inc. 2009. All Rights Reserved.
Blue. Coat Reporter统计报表 § 全方位的安全与Web流量报告 • 150种报表模板,追踪所有用户的web行为 • Dashboard™指示盘 ,直观显示Web活动总览 • 支持 Linux & Windows (both 32 -bit or 64 -bit 操作系统) 防毒� Proxy. AV 云安全服� URLFilter DB Proxy. Client Proxy Library Director 基于对象 操作系统 © Blue Coat Systems, Inc. 2009. All Rights Reserved. Authentication Scalable TCP Stack 智能�存 防信息泄露 DLP/ILP Policy Engine 硬件优化 Internet Log Files Reporter
Blue. Coat Global Secure Gateway Solution Blue. Coat Reporter Proxy. AV Web. Pulse SYMC/Vontu RSA Tablus Veri. Cept MFE/Reconnex Code Green Kaspersky Sophos Mc. Afee Panda Web. Filter SGOS 31 Data Loss Prevention Policy Proxy. SG © Blue Coat Systems, Inc. 2009. All Rights Reserved. Proxy. Client Performance Authentication Director
Blue Coat 安全Web网关 § Blue. Coat Secure Web Gateway 分层防护解决方案 • Internet代理网关 Blue Coat Proxy. SG • 网址过滤(行为分析) Blue Coat Web. Filter • 防病毒网关 Blue Coat Proxy. AV • 企业移动用户防护 Blue Coat Proxy. Client • 全球云安全服务 Blue Coat Web. Pulse • 防数据泄漏 Blue Coat DLP § Blue. Coat Secure Web Gateway管理监控平台 32 • 集中管理统一平台 Blue Coat Director • 日志收集平台 Blue Coat Reporter © Blue Coat Systems, Inc. 2009. All Rights Reserved.
© Blue Coat Systems, Inc. 2009. All Rights Reserved.
- Slides: 33