Transcript Sophos Live Protection

Sophos Live Protection
Agenda
1. Before and After Scenarios
2. Minimum Required Capabilities
3. How we do it
4. How we do it better
Prevent malware infection
Before:
Still getting infected
After/Positive Outcome:
Productivity/efficiency gains
• Current AV solution either
doesn’t provide effective
proactive protection of new
and unknown malware threats
or is slow to update protection
• Not cleaning up malware incidents
so IT delivers strategic projects on
time and on budge and maximize
return on existing and future IT
investments
• Infection occurs when mobile
or remote users visit websites
that have been compromised
(not protected by gateway
protection)
• End-users have the tools they
need to be productive without
compromising security
• Improved IT productivity – focus
on value-added business initiatives
• Multiple vendors/components
required to provide a
comprehensive solution
• Greater system performance and
uptime and better employee
productivity
• Security vendor acts as a partner –
solving issues and applying best
practices
Minimum Required Capabilities
AV
Scanning
Intrusion
Prevention
Real-time
Protection
Metrics
• % of new threats stopped without requiring update
• # of URLs scanned by vendor
• Time taken to install/manage
• Cost of licensing/deploying protection
4
Sophos Threat Protection
Intelligent protection that detects and stops zero-day threats
Anti-Virus Scanning
Intrusion Prevention
Live Protection
Anti-Virus Identities
(IDE)
Runtime Behavior
Detection
Live Anti-Virus
Behavioral Genotype
Protection
Sophos Client Firewall
Live URL Filtering
Web Browser
Protection
Buffer Overflow
Protection
Live Anti-Spam
Prevent malware infection: How we do it
Before:
Still getting infected
• Current AV solution either
doesn’t provide effective
proactive protection of new
and unknown malware threats
or is slow to update protection
• Infection occurs when mobile
or remote users visit websites
that have been compromised
(not protected by gateway
protection)
• Multiple vendors/components
required to provide a
comprehensive solution
Sophos Live
Anti-Virus
In-the-cloud protection
against the latest threats
Sophos Live
URL Filtering
Web protection for fixed
and mobile endpoints
Sophos
ESDP
Single vendor, console
and integrated agent
Sophos Live Anti-virus
New – In-the-cloud protection against the latest threats
Checks suspicious files with SophosLabs
Reputation database of good and bad data
Reduces reliance on updating
Sophos Live URL Filtering
New – Web protection for fixed and mobile endpoints
Built into the endpoint agent
Preventing access to malicious URLs
Protects users in the office, at home or on public WiFi
http://www.risky-site.com
10
How we do it better – competitive comparison
Clear advantages:
SophosLabs expertise does the heavy lifting and delivers pre-packaged
intelligence (Eliminates complex configuration)
Comprehensive combination of threat protection technologies
Threat protection agent also delivers prevention technologies and DLP
Single vendor, console and integrated agent
Sophos
Symantec
McAfee
Trend
Live Anti-Virus

half


Live URL Filtering



HIPS

half
half

Kaspersky
half
Summary
Sophos Live Protection’s in-the-cloud technology
delivers fast, effective detection of zero-day and web based
threats without the need for an update
Live Anti-Virus
Live URL Filtering
Stops previously unseen
threats faster
Protection for
mobile/remote endpoints
Appendix
In-the-cloud...
What is this cloud?
Put simply, the cloud is the internet
Vendors provide software and services via the internet
What is Sophos doing?
Providing direct connections to the constantly updated
reputation databases in SophosLabs
How do customers benefit?
Protected against the very latest threats
Make the most of the expertise in SophosLabs
Sophos Live Protection
in-the-cloud technology
delivering fast, effective
detection of zero-day and
web based threats without
the need for an update