| |
Overview
Each year, the threat from malware has grown larger. ICSA Labs calculates
that the total cost of recovery for each medium-large organization hit by a
virus disaster is over US$900,000. Moreover, spyware has emerged as a growing
menace. Today's malware programs include viruses, worms, spyware, and other
malicious software. They are used in mass attacks to disable or steal computing
resources and in stealthy, targeted attacks to steal information. And they do so
not only through email traffic but also increasingly through real-time web
traffic. Indeed, malware programs have been attacking through the web since the
2001 Nimda worm, and today's spyware programs mainly infiltrate through web
traffic.
Malware programs are becoming more creative and sophisticated, making use of
multiple components to attack in a blended way. It is now not unusual for worms
to include Trojan horse and backdoor spy programs and to attack through both
email and the web. Today's threats blend multiple malware and multiple attack
vectors to achieve their increasingly criminal goals.
Content Security Gateway Series |
Developed by gateway anti-virus pioneers, CP Secure's
award-winning Content Security Gateway™ (CSG) appliances use patent-pending
stream-based scanning technology to protect enterprise-class organizations
against spyware, viruses, worms, and other malware at the internet gateway,
before the malicious programs enter the network. CSG appliances scan in
real-time web (HTTP and HTTPS), email (SMTP, POP3, and IMAP), and FTP traffic to
protect organizations from blended attacks that include multiple types of
malware and multiple attack vectors.
|
CP Secure's patent-pending stream-based scanning architecture
enables, for the first time, the scanning of high-volume web and email traffic
without bringing enterprise internet activities to a standstill. Stream-based
scanning is especially suited for stopping web-based malware such as spyware and
worms. In the same way that previous innovations enabled anti-virus scanning to
be extended from individual computers to email traffic, today CP Secure's
stream-based scanning architecture enables anti-malware scanning to be extended
from email traffic to all existing and future real-time internet traffic.
|
Complete network protection against spyware, viruses, worms and other malware
|
Enterprise Solutions |
|
Small/Medium Solutions |
|
Scalable enterprise protection secures the Internet gateway
against all forms of Web and email-based threats
With the CSG 2500, CSG 1500 and 1000+, enterprise-class organizations now
have the most comprehensive and effective first line of defense against
internet-based viruses and spyware.
"The CP Secure was extremely easy to deploy… The appliance was up and
scanning in just 10 minutes."
-Communications News |
|
Cost-effective gateway protection against all forms
of Web and email-based threats
With the CSG 300, CSG 110 and CSG 100, small-medium organizations and branch
offices now have big company content security without the big price tag or the
big hassles.
"What we quickly discovered… was we were getting a lot more malware and
spyware trying to come in through HTTP than really any other protocol."
-Washington Technology |
 Read the Success Story |
|
Read the Success Story |
|
Why
you must use the CP Secure's Solution :
|
| Real-Time
Internet Security Stream-Based Scanning Technology |
| Most organizations are aware that some varieties of malicious software enter
their networks and computers through web traffic. A user only needs to browse a
web page, click on a URL link in an email, or view web email to unwittingly
activate HTTP-based spyware and worms. As IDC and InfoWorld have
pointed out, the web is the new vector for malware attacks.
But most organizations are not aware of the magnitude of this problem. To
see the thousands of malware that come in through web traffic and realize the
true extent of this threat, they would need to deploy an extremely high
performance gateway anti-malware product that could detect and stop malware on
HTTP without generating latency and impeding network performance. They would be
alarmed to learn that the majority of the malware CP Secure customers catch is
on HTTP. How is this possible?
The Traditional Approach
Today's scanning technology, used in everything from desktop anti-virus
software to gateway anti-virus appliances, is batch-based. Many anti-virus
vendors built their batch-based scan engines during an era when viruses were
transmitted via removable media. They based their algorithms on the assumption
that the entity to be scanned could be randomly accessed.
In this batch-based method, scanning commences only after the entire file is
received, and outputting starts only after the entire file has been scanned (see
figure 1). Therefore, end-users often experience long delays or sometimes even
timeouts while the file is transferred and scanned. When applied to the new
malware threats in real-time web traffic, the traditional scanning approach
introduces unacceptable levels of latency that bring enterprise web activities
to a standstill. |
|
CP Secure's Solution
Stream-based scanning is based on the simple observation that network traffic
travels in streams. CP Secure's scan engine starts receiving and analyzing
traffic as the stream enters the network (see figure 2). As soon as a number of
bytes are available, scanning commences. The scan engine continues to scan more
bytes as they become available, while at the same time another thread starts
outputting the bytes that have been scanned. CP Secure's pipeline approach, in
which the receiving, scanning, and outputting processes occur concurrently,
ensures that network performance is not impeded. The result is that internet
traffic is scanned virtually in real-time – a performance advantage that is
easily noticeable to the end-user. Anti-malware scanning of real-time web
traffic at the internet gateway is now feasible. |
|
Figure 1 : Traditional Batch-based Scanning
|
|
Figure 2 : CP Secure's Stream-based Scanning
| |
|
The Benefit
CP Secure’s patent-pending stream-based scanning architecture enables, for
the first time, the scanning of very high volumes of real-time internet traffic
for malware, without bringing enterprise internet activities to a standstill.
Organizations can now protect their confidential data and maintain
organizational continuity by stopping spyware and viruses at the internet
gateway, without stopping the internet. |
|
Solutions
|
|
Enterprise
Solutions |
Scalable enterprise protection secures the Internet gateway
against all forms of Web and email-based threats
 |
|
|
|
|
 Read More |
|
Read More |
|
Read More
|
|
Developed by gateway AV pioneers, CP Secure's award-winning Content Security
Gateway (CSG) appliances protect against the latest malware threats faced by IT
professionals and their organizations. With the CSG 2500, CSG 1500 and 1000+,
enterprise-class organizations now have the most comprehensive and effective
first line of defense against internet-based viruses and spyware.
|
|
CSG Model |
CSG 2500 |
CSG 1500 |
CSG 1000+ |
|
Type of Organization |
Enterprise |
Enterprise |
Enterprise |
|
Number of Computers |
Thousands |
Thousands |
Thousands |
|
HTTP Throughput (Mb/s) |
480 |
314 |
260 |
|
SMTP Throughput
(emails/hour) |
2,760,000 |
1,380,000 |
1,080,000 |
|
RAID Support |
|
- |
- |
|
Redundant Power Supply Units
|
|
|
- |
|
Fail-open |
|
|
|
|
Fail-over |
|
|
|
|
Load-Balancing Option |
|
|
|
|
Quarantine |
|
|
| |
|
|
Small/Medium Solutions |
|
Cost-effective gateway protection against all forms
of Web and email-based threats
|
|
|
|
|
| Read More |
|
Read More |
|
|
Developed by gateway AV pioneers, CP Secure's award-winning Content Security
Gateway (CSG) appliances protect against the latest malware threats faced by IT
professionals and their organizations. With the CSG 300, CSG 110 and CSG 100,
small-medium organizations and branch offices now have big company content
security without the big price tag or the big hassles.
|
|
CSG Model |
CSG 300 |
CSG 110 |
|
Type of Organization |
Small-Med. |
Small-Med. |
|
Number of Computers |
Hundreds |
Up to 100 |
|
HTTP Throughput (Mb/s) |
68 |
50 |
|
SMTP Throughput
(emails/hour) |
420,000 |
300,000 |
|
Redundant Power Supply Units
|
- |
- |
|
Fail-open |
- |
- |
|
Fail-over |
|
- |
|
Load-Balancing Option |
|
- |
|
Quarantine |
|
| |
|
|
|
