ShareTech 2015 Next-Gen UTM What is UTM? Next-Gen Firewall Firewall Intrusion Detection Virus Protection Advanced Defense Web Filtering Co-Defense Online Behavior Record United Threat Management ShareTech Information Co., Ltd.
Download ReportTranscript ShareTech 2015 Next-Gen UTM What is UTM? Next-Gen Firewall Firewall Intrusion Detection Virus Protection Advanced Defense Web Filtering Co-Defense Online Behavior Record United Threat Management ShareTech Information Co., Ltd.
Slide 1
ShareTech 2015
Next-Gen UTM
Slide 2
What is UTM?
Next-Gen Firewall
Firewall
Intrusion
Detection
Virus
Protection
Advanced Defense
Web Filtering
Co-Defense
Online Behavior
Record
United Threat Management
ShareTech Information Co., Ltd. Page 2
Page 2
Slide 3
Traditional Deployment 1: FW + IDP + AV + APP
Users
Viruses
Malware
Internet
Data Center
FW
Worms
Hackers
IDP
AV
APP
Much higher cost
Unreliable networks
Poor Performance
More complex and harder to manage
ShareTech Information Co., Ltd. Page 3
Servers
Slide 4
Integrated UTM Solutions
Users
Viruses
Malware
Internet
Data Center
FW
Worms
Hackers
ShareTech Information Co., Ltd. Page 4
IDP
AV
APP
Servers
Slide 5
Traditional Deployment 2: Bad Impression on UTM
100%
•
•
•
•
Poor performance
Insufficient protection level
Lack of integration
Difficult to manage
50%
0%
FW
FW
AV
ShareTech Information Co., Ltd. Page 5
IDP
AV
APP
IDP
APP
Slide 6
How do ShareTech define Next-Gen
UTM ?
Slide 7
3-IN-ONE Multi-Purpose Next-Gen UTM
Defense in Depth
ShareTech Information Co., Ltd. Page 7
Security Integration
Cloud Management
Slide 8
3-IN-ONE Multi-Purpose Next-Gen UTM
Next-Gen UTM
ShareTech Information Co., Ltd. Page 8
Slide 9
3-IN-ONE : Defense in Depth
Hardware
Performance
Intrusion
Detection
Online
Record
Mail
Security
Secure
Connection
Integrated
Monitoring
ShareTech Information Co., Ltd. Page 9
Slide 10
3-IN-ONE : Defense in Depth
Hardware Performance
x86 operating systems
Future network bandwidth available which exactly matches our needs
Custom ports on UTM interface
High Availability (Modular copper / fiber)
Improve performance of UTM (up to 1.5Gbps)
USB Instant Recovery
ShareTech Information Co., Ltd. Page 10
Slide 11
3-IN-ONE : Defense in Depth
UTM ≠ poor performance
Performance
AV
IDP
Policies
Optimization
AP
P
Solo
Core
Dual
Core
Network Layer
Optimization
Quad
Core
Hardware I / O
Parallel
processing
ShareTech Information Co., Ltd. Page 11
Solo
Core
Dual
Core
Quad
Core
CPU
Slide 12
3-IN-ONE : Defense in Depth
USB Instant Recovery
Support USB backup
Administrators can schedule
backups
Always make adequate backups
Efficient recovery made in 5 mins
ShareTech Information Co., Ltd. Page 12
Slide 13
3-IN-ONE : Defense in Depth
Instrusion Detection
Firewall
Malware
IDP Instruction Detection
Session
Skype
BotNet Detection
APP Control
Application
URL Database
Flow Analysis
Anti-Virus
Bot
Vulnerability
ShareTech Information Co., Ltd. Page13
Java Script
Slide 14
3-IN-ONE : Defense in Depth
Online Record
Record user's browsing behaviors
Preventive control
Complete record
Data storage and audit
IM
FTP
ShareTech Information Co., Ltd. Page14
MAIL
WEB PAGES
Slide 15
3-IN-ONE : Defense in Depth
Mail Security
Quarantine / Mail Audit / Mail Record
Outgoing
Mail Audit and
filtering
AntiVirus
Quarantine/Delete/
Block IP/Send Copies
Spam
Engine
Quarantine / Mail Audit / Mail Record
ShareTech Information Co., Ltd. Page15
Business
Policies
Record
Incoming
Slide 16
3-IN-ONE : Defense in Depth
Secure Connection
3G/4G/WiFi/APP
Branch &Spot
MAIL
SERVER
Hotels & Cafe
ShareTech Information Co., Ltd. Page 16
TERMINAL
SERVER
WEB
SERVER
Slide 17
3-IN-ONE : Defense in Depth
Integrated Monitoring
CMS monitors, enables, reboots and
manages devices remotely
Monitor various UTM devices
Integrated with switch (Co-Defense)
Branch
Business cost drop
Oversea
Branch
Office
Control authorization for administrators
Headquarter
ShareTech Information Co., Ltd. Page17
Spot
Slide 18
3-IN-ONE : Security Integration (SG Series)
ShareTech Information Co., Ltd. Page 18
Slide 19
3-IN-ONE : Security Integration (UTM + MyCloud Storage)
ShareTech Information Co., Ltd. Page 19
Slide 20
3-IN-ONE : Security Integration (UTM + IP CAM + WiFi)
Integrate both network and
physical security
Implementing secure wireless
Networks
Physical Monitoring
ShareTech Information Co., Ltd. Page 20
Network Security
Wireless Networking
Slide 21
3-IN-ONE : Security Integration (UR Series)
UR-98X (2U)
Max 16-42 interface
FW 32 Gbps
VPN 6 Gbps
UR-96X (1U)
Max 6-14 interface
UR-94X (1U)
Max 6 interface
FW 2 Gbps
VPN 1 Gbps
ShareTech Information Co., Ltd. Page 21
FW 10 Gbps
VPN 2 Gbps
Slide 22
3-IN-ONE : Security Integration (UR Series)
Security
Control
Record
•Block hacking attacks
•Block malware
•IDP Protection
•BotNet Protection
•Anti-Virus(WEB/FTP/Mail)
•Anti-Spam
•Co-Defense
•HTTP/SSL Secure
•QoS
•Web Content Filtering
•IM Control
•Flow Analysis
•APP Control
•VPN/SSL VPN Control
•Online Authentication
•Mail
•IM
•Events
•FTP Download
•Anomaly IP Analysis
•Firewall Protection
•ARP Spoofing
ShareTech Information Co., Ltd. Page 22
Slide 23
3-IN-ONE : Security Integration (SG Series)
Models
SG-100N
SG-100C
Available
SOHO/SMB
SOHO/SMB
Firewall
O
O
IDP Intrusion Protection
O
O
My Cloud (NAS)
O
X
IP CAM Monitoring
X
O
(an IP CAM included)
AP Control
O
(50 pcs)
O
(50 pcs)
Wireless Module
Optional
Optional
ShareTech Information Co., Ltd. Page 23
Slide 24
3-IN-ONE : Security Integration
Networking
Security
Video
Surveillance
Wireless
Technologies
Cloud
Storage
ShareTech Information Co., Ltd. Page 24
Slide 25
3-IN-ONE : Security Integration (Industrial Firewall)
Monitor Room
ShareTech Information Co., Ltd. Page 25
Slide 26
3-IN-ONE : Cloud Management (Eye Cloud)
Eye Cloud is a next-gen cloud service platform
providing user friendly interface to support instant
equipment maintenance and management. When
anomaly occurs, administrators will be notified of the
problem. Configuration files can be automatically
saved at schedule for disaster recovery. Furthermore,
scheduled reports will be distributed. It is the best
cloud management platform that creates win-win
situations for both system service providers and
users.
2014 Taiwan
SMEs Innovation Award
ShareTech Information Co., Ltd. Page 26
Slide 27
www.sharetech.com.tw
Technical Support
[email protected]
Sales Inquiry
[email protected]
ShareTech Information Co., Ltd. Page 27
ShareTech 2015
Next-Gen UTM
Slide 2
What is UTM?
Next-Gen Firewall
Firewall
Intrusion
Detection
Virus
Protection
Advanced Defense
Web Filtering
Co-Defense
Online Behavior
Record
United Threat Management
ShareTech Information Co., Ltd. Page 2
Page 2
Slide 3
Traditional Deployment 1: FW + IDP + AV + APP
Users
Viruses
Malware
Internet
Data Center
FW
Worms
Hackers
IDP
AV
APP
Much higher cost
Unreliable networks
Poor Performance
More complex and harder to manage
ShareTech Information Co., Ltd. Page 3
Servers
Slide 4
Integrated UTM Solutions
Users
Viruses
Malware
Internet
Data Center
FW
Worms
Hackers
ShareTech Information Co., Ltd. Page 4
IDP
AV
APP
Servers
Slide 5
Traditional Deployment 2: Bad Impression on UTM
100%
•
•
•
•
Poor performance
Insufficient protection level
Lack of integration
Difficult to manage
50%
0%
FW
FW
AV
ShareTech Information Co., Ltd. Page 5
IDP
AV
APP
IDP
APP
Slide 6
How do ShareTech define Next-Gen
UTM ?
Slide 7
3-IN-ONE Multi-Purpose Next-Gen UTM
Defense in Depth
ShareTech Information Co., Ltd. Page 7
Security Integration
Cloud Management
Slide 8
3-IN-ONE Multi-Purpose Next-Gen UTM
Next-Gen UTM
ShareTech Information Co., Ltd. Page 8
Slide 9
3-IN-ONE : Defense in Depth
Hardware
Performance
Intrusion
Detection
Online
Record
Security
Secure
Connection
Integrated
Monitoring
ShareTech Information Co., Ltd. Page 9
Slide 10
3-IN-ONE : Defense in Depth
Hardware Performance
x86 operating systems
Future network bandwidth available which exactly matches our needs
Custom ports on UTM interface
High Availability (Modular copper / fiber)
Improve performance of UTM (up to 1.5Gbps)
USB Instant Recovery
ShareTech Information Co., Ltd. Page 10
Slide 11
3-IN-ONE : Defense in Depth
UTM ≠ poor performance
Performance
AV
IDP
Policies
Optimization
AP
P
Solo
Core
Dual
Core
Network Layer
Optimization
Quad
Core
Hardware I / O
Parallel
processing
ShareTech Information Co., Ltd. Page 11
Solo
Core
Dual
Core
Quad
Core
CPU
Slide 12
3-IN-ONE : Defense in Depth
USB Instant Recovery
Support USB backup
Administrators can schedule
backups
Always make adequate backups
Efficient recovery made in 5 mins
ShareTech Information Co., Ltd. Page 12
Slide 13
3-IN-ONE : Defense in Depth
Instrusion Detection
Firewall
Malware
IDP Instruction Detection
Session
Skype
BotNet Detection
APP Control
Application
URL Database
Flow Analysis
Anti-Virus
Bot
Vulnerability
ShareTech Information Co., Ltd. Page13
Java Script
Slide 14
3-IN-ONE : Defense in Depth
Online Record
Record user's browsing behaviors
Preventive control
Complete record
Data storage and audit
IM
FTP
ShareTech Information Co., Ltd. Page14
WEB PAGES
Slide 15
3-IN-ONE : Defense in Depth
Mail Security
Quarantine / Mail Audit / Mail Record
Outgoing
Mail Audit and
filtering
AntiVirus
Quarantine/Delete/
Block IP/Send Copies
Spam
Engine
Quarantine / Mail Audit / Mail Record
ShareTech Information Co., Ltd. Page15
Business
Policies
Record
Incoming
Slide 16
3-IN-ONE : Defense in Depth
Secure Connection
3G/4G/WiFi/APP
Branch &Spot
SERVER
Hotels & Cafe
ShareTech Information Co., Ltd. Page 16
TERMINAL
SERVER
WEB
SERVER
Slide 17
3-IN-ONE : Defense in Depth
Integrated Monitoring
CMS monitors, enables, reboots and
manages devices remotely
Monitor various UTM devices
Integrated with switch (Co-Defense)
Branch
Business cost drop
Oversea
Branch
Office
Control authorization for administrators
Headquarter
ShareTech Information Co., Ltd. Page17
Spot
Slide 18
3-IN-ONE : Security Integration (SG Series)
ShareTech Information Co., Ltd. Page 18
Slide 19
3-IN-ONE : Security Integration (UTM + MyCloud Storage)
ShareTech Information Co., Ltd. Page 19
Slide 20
3-IN-ONE : Security Integration (UTM + IP CAM + WiFi)
Integrate both network and
physical security
Implementing secure wireless
Networks
Physical Monitoring
ShareTech Information Co., Ltd. Page 20
Network Security
Wireless Networking
Slide 21
3-IN-ONE : Security Integration (UR Series)
UR-98X (2U)
Max 16-42 interface
FW 32 Gbps
VPN 6 Gbps
UR-96X (1U)
Max 6-14 interface
UR-94X (1U)
Max 6 interface
FW 2 Gbps
VPN 1 Gbps
ShareTech Information Co., Ltd. Page 21
FW 10 Gbps
VPN 2 Gbps
Slide 22
3-IN-ONE : Security Integration (UR Series)
Security
Control
Record
•Block hacking attacks
•Block malware
•IDP Protection
•BotNet Protection
•Anti-Virus(WEB/FTP/Mail)
•Anti-Spam
•Co-Defense
•HTTP/SSL Secure
•QoS
•Web Content Filtering
•IM Control
•Flow Analysis
•APP Control
•VPN/SSL VPN Control
•Online Authentication
•IM
•Events
•FTP Download
•Anomaly IP Analysis
•Firewall Protection
•ARP Spoofing
ShareTech Information Co., Ltd. Page 22
Slide 23
3-IN-ONE : Security Integration (SG Series)
Models
SG-100N
SG-100C
Available
SOHO/SMB
SOHO/SMB
Firewall
O
O
IDP Intrusion Protection
O
O
My Cloud (NAS)
O
X
IP CAM Monitoring
X
O
(an IP CAM included)
AP Control
O
(50 pcs)
O
(50 pcs)
Wireless Module
Optional
Optional
ShareTech Information Co., Ltd. Page 23
Slide 24
3-IN-ONE : Security Integration
Networking
Security
Video
Surveillance
Wireless
Technologies
Cloud
Storage
ShareTech Information Co., Ltd. Page 24
Slide 25
3-IN-ONE : Security Integration (Industrial Firewall)
Monitor Room
ShareTech Information Co., Ltd. Page 25
Slide 26
3-IN-ONE : Cloud Management (Eye Cloud)
Eye Cloud is a next-gen cloud service platform
providing user friendly interface to support instant
equipment maintenance and management. When
anomaly occurs, administrators will be notified of the
problem. Configuration files can be automatically
saved at schedule for disaster recovery. Furthermore,
scheduled reports will be distributed. It is the best
cloud management platform that creates win-win
situations for both system service providers and
users.
2014 Taiwan
SMEs Innovation Award
ShareTech Information Co., Ltd. Page 26
Slide 27
www.sharetech.com.tw
Technical Support
[email protected]
Sales Inquiry
[email protected]
ShareTech Information Co., Ltd. Page 27