Академический Документы
Профессиональный Документы
Культура Документы
web security | data security | email security Websense Confidential © 2010 Websense, Inc. All rights reserved.
Agenda
Market Challenges
TRITON Architecture
Websense DLP Solution
– Identify
– Monitor
– Protect
– Manage
Packaging
Deployment Scenarios
Industry Recognition
Takeaways
Websense Confidential
Challenge of Data Loss Prevention
Ensure uninterrupted business by managing compliance & risks,
preventing data loss and securing business processes
Websense Confidential
3
Cost of Data Breaches
Average Total Per-Incident Cost
Websense TRITON
Websense Confidential
Unified Content Security Solution
Websense Confidential
The TRITON Architecture
Unified
Web
Security
Data
Security
Email
Security
Solution
Unified Content Security
Unified
Management
Websense Confidential
Websense Confidential
PreciseID
File Matching
Regular Expressions
Categories / Dictionaries
Websense Confidential
Out-of-Box Classifiers
Websense Confidential
Network Fingerprinting
Network Fingerprinting
– Database
– Files
– Fileshare/Sharepoint
Websense Confidential
Endpoint Fingerprinting
Websense Confidential
Accurate Identification
Credit Card #
Customer John Doe 111-22-3333 paid using
2468-1357-3333-4444.
Name Dictionary
Jane Brown asked us to call her back at 408-555-7890.
Websense Confidential
Websense Confidential
Websense Confidential
Monitor Stored/Sent Data
Websense Confidential
TruWeb DLP
Customer Information
Here is a customer
Customerinformation:
Information
Joe,
Destination
Janet@gmail.com
Guess what? Britney Shears just checked into the hospital and she has
Medical Dictionary nasopharyngitis. Can you believe it?!
nasopharyngitis
Tina
Websense Confidential
Websense Confidential
Websense Confidential
Remediation Action - Data Discovery
Remediation Script
– Several predefined scripts available for execution
– Custom scripts for highest flexibility
Common Remediation Action
– Tombstone
– Ransom Note
– Encrypt
– Apply EDRM
Websense Confidential
Action Plan
Websense Confidential
Endpoint Protection
Removable
Media
Local Printer
Network Printer 1
Print
LAN Storage Server
Network Printer 2
Websense Confidential
Endpoint SaaS Protection
SaaS Applications
Websense Confidential
32
Removable Media File Encryption
Websense Confidential
33
Proven Results and Methodology
Websense Confidential
TRITON Console
Websense Confidential
37
Streamline Incident Management
Competitor Alerts
Data: HIPAA
Websense Confidential
Websense Confidential
D
• ata Endpoint
• Local discovery
• Removable media & CD/
DVD security
• Application controls for copy/
paste, print, print screen, file
access
•Data Protection
• Automated policy
enforcement for all channels
• Destination policy controls
WEBSENSE
Data Protect
•Data Monitoring
•Data Protection • Monitoring for
• Automated policy • Mail
enforcement for all channels • Web / FTP
• Destination policy controls • IM
WEBSENSE
WEBSENSE
WEBSENSE
•User defined protocols
Data Discover Data Monitor Data Endpoint • Destination awareness
Websense Confidential
40
Solutions for Every Customer
Data
Data Data Security
Web DLP Monitor Data Protect Endpoint Data Discover Suite
Data Identification
Central Management
Notifications
Monitor Web
Enforce Web
Monitor Email
Enforce Email
Web Downloads
Outbound LAN
Removable Media
Application Control
Agent-less Discovery
Deployment Scenarios
DB
Discovery
HQ HQ
Server Server
DLP DLP Web
AV
Network
Network
Sniffer Web Security Sniffer Web Security
V10000
Websense Confidential
43
Onboard Content Analysis Engine
WSGA/V10K V10K
Protector
– Web content analyzed on-box
– No need for ICAP protocol
Protector
– All content analyzed on-box
– No need for separate DSS server Incident & Policy
Efficient Management
– Management sends and receives
policies/incident information only
– No transmission of sensitive data
across network
Management
DSS Server
Websense Confidential
44
ICAP Complexity and Cost
Competitor Web DLP solution require minimum 2-box
– 3rd party proxy
– DLP for content analysis 3rd Party Proxy
Competitor DLP
Solution
Websense Confidential
45
ICAP Performance Concerns
Increased latency
– Proxy has to send every outbound Web communication for
analysis and wait for a reply
Twice the load
– Every PUT/POST is passed from the gateway over the
network to a DLP analyzer
Twice the hardware
– Redundant hardware required for fault tolerance
– Requires content to be passed over the network
simultaneously to redundant system
Websense Confidential
TruWeb DLP Deployment
Remote
Outbound Traffic Site
V10K
Internet
Outbound Traffic
V10K
Websense
Manager
Management
DSS Server
Websense Confidential
TruWeb DLP upgrade to DSS
Remote
Outbound Traffic Site
V10K
Internet
Outbound Traffic
V10K
Websense
Manager DSS Server
MTA
Scalability
Management
DSS Server
Discovery Agent
File
Endpoint Agent Server
DSS Server
Content Analysis Engine
Websense Confidential
DSS Deployment
Remote
Outbound Traffic Site
Internet DSS
Protector
Outbound Traffic
DSS Protector
Management
Scalability
DSS Server
Discovery Agent
File
Endpoint Agent Server
DSS Server
Content Analysis Engine
Websense Confidential
Websense Confidential
Industry Recognition
The Gartner Magic Quadrant or Content Monitoring and Filtering and Data Loss Prevention was written by Eric Oullet and Paul E. Proctor and is
copyrighted June 17, 2008 by Gartner, Inc., and is reused with permission. The Magic Quadrant is a graphical representation of a marketplace at and for
a specific time period. It depicts Gartner’s analysis of how certain vendors measure against criteria for that marketplace, as defined by Gartner. Gartner
does not endorse any vendor, product or service depicted in the Magic Quadrant, and does not advise technology users to select only those vendors
placed in the “Leaders” quadrant. The Magic Quadrant is intended solely as a research tool, and is not meant to be a specific guide to action. Gartner
disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
The Magic Quadrant graphic was published by Gartner, Inc., as part of a larger research note and should be evaluated in the context of the This Magic
entire report. The Gartner report is available upon request from Websense.
Websense Confidential
Forrester
The Forrester Wave is copyrighted by Forrester Research, Inc. Forrester and Forrester Wave are trademarks of Forrester Research, Inc.
The Forrester Wave is a graphical representation of Forrester's call on a market and is plotted using a detailed spreadsheet with exposed
scores, weightings, and comments. Forrester does not endorse any vendor, product, or service depicted in the Forrester Wave. Information
is based on best available resources. Opinions reflect judgment at the time and are subject to change.
Websense Confidential
Customers That Trust Websense for DLP
Financial Services Healthcare – Insurance Government
Takeaway
Websense Confidential
Websense Confidential