Content Security

Overview

Content Security specifically around the web browser has matured from being static in its nature to becoming dynamic and adaptive. No longer are URL databases satisfactory for the modern workplace as they are unable to deal with dynamic pages, as what one individual sees on one iGoogle page will be totally different to what another individual will see on their personalised page. A URL database simply can't handle dynamic content even though it still does have a place in helping define a security policy.

The same applies to malware and viruses, hundreds and thousands of variations of  new malware are being released on a daily basis to target individuals and so the standard Anti-Virus model is beginning to struggle. More intelligent scanning and the ability to understand exploits to deal with them have become ever more important to businesses today as this not only helps protect users and their networks but will also help protect businesses data.

Currently, the majority of malware enters the network through exploited websites referenced in email where, users are being subjected to drive by install or perhaps via a virus stored on a USB key. However with a lot of businesses starting to lock down and control USB access this is beginning to wane.

Most businesses have been restricting the types of attachments, which are allowed into the network via email for many years now, so the old attacks have pretty much died a death. They have been replaced with the Zero - Day exploit. A mail, whether targeted or opportunistic (using current popular events as bait) will most likely link to an exploited website and, browsing to the site will install a zero -day exploit infecting the device with malware and from here the malware is able to steal and leak data out of the network. So, not only do web content filtering solutions need to be dynamic and understand attacks… but also email systems must do the same. Simple lexical analysis of the text using dictionaries is not sufficient in blocking spam or attacks, the email system must be able to scan the mail and understand the web attacks with updating URL databases if necessary.

Market Trends

Content security has grown to become more than just a static list of URLs or signatures that are updated daily as real-time updates are now required to combat real-time threats within web and email channels.  Content security technology today needs to be aware of what the traffic is passing in terms of data and where its true destination is. These solutions must be able to read, understand and classify accordingly to be able to enforce a security policy.

With the transition of the modern day website utilising Web 2.0 controls and using dynamic content, a content security solution should have the granularity and flexibility to strip or block inappropriate content or malware whilst allowing the unaffected or remaining content to be displayed.  A content security solution today should be able to provide analysis to businesses with details on bot -nets and zombie activity on the network with alerting providing alerts to network and security administrators. This functionality is a great security tool in itself.

Businesses are now pushing IT departments to provide more access with fewer restrictions on content and, rather than blocking sites and content outright, employees are now being allowed to use Facebook, Twitter, LinkedIn and many other social networking sites during the day for work purposes.  With this type of demand policy and enforcement has a large part to play as you don’t want your users spending all their time on Facebook if they should be working, so a solution should not only be flexible enough to grant granular permissions to individual users or groups but also should be able to enforce users to state why they need to access a specific web site even if they do already have access to it.  With Web 2.0 functionality it is also important that you are able to define which applications can be used within these kinds of websites, i.e. blocking games, chat and even the ability to post on a site like Facebook not only restricts a user in terms of what they can use the site for but also reduces the risk of losing data.

Hybrid solutions are also becoming main-stream for businesses that want to enforce a security policy across both email and web channels simultaneously. Email is being scanned in the cloud then delivered directly to the mail server or sent to a downstream content filter for further analysis thus greatly reducing the number of junk messages flooding the internet connection. This preserves internet bandwidth and with the combination of appliance and cloud based web filtering technology businesses are able to enforce the same security policy for networked and remote users.  Using the same vendor for email and web channels not only provides greater control and visibility of web and email channels but can also provide other benefits such as tighter integration into DLP and as well as provide a business with a lower total cost of ownership.

Solution Benefits
The benefits of a good content security solution are hard to ignore, we have highlighted some of benefits that you should see by employing this kind of solution:;

• Centralised security, policy and reporting on users for web and email increases visibility and tightens security
• Threat analysis of malware and bot nets reduces IT time in clean-up operations and reduces the risk of losing data
• Increased bandwidth for business applications due to reduction in spam and web 2.0 apps
• Enforcement and notification of the acceptable usage policy
• Increased security for loss or leakage of data (DLP)
• Increased security and visibility for remote users or small offices with hybrid solutions
• Blocking, filtering and categorisation of known and unknown content enhances security
• Access to previously restricted sites can be controlled and reported on
• Users given extra freedom giving IT time to concentrate on other issues.

Why SecureData?

SecureData is the largest Independent security service provider in the UK and offers a wide range of technologies and services. We have specifically worked within the Content Security area for a number of years deploying all types of solutions and configurations to address business needs and we have many deployments in a huge number of scenarios to demonstrate the breadth and depth of our experience.work from. 
These rangeing from a web filter to block traffic on a guest network, through to multi-national, centrally managed integrated web and mail filtering solutions.

SecureData are able to offer advice to meet the requirements and needs whether this be a solution fully managed, a cloud based solution or a monitored solution with phone and email support - we are able to help.

Through extensive and continuous research we are able to offer a variety of technologies to deliver these solutions and to suit your requirements, whether this is a fully managed, cloud based solution or a monitored solution with phone and email support.  The technologies that we offer are seen as ’best of breed’ within the security market and have been selected not only because of the features they offer but also because of the vendors’ commercial offerings, ability to provide global support, ability to include new features and support future trends.  We invest time in not only choosing the correct technologies to sit within our portfolio, but also in Sales and Technical training so that not only are we able to supply the correct technology to suit your requirements but are also able to offer Professional Services for Implementation and Training backed up by either a supported, monitored or managed service. We achieve the highest levels of technical and commercial accreditations with all those vendors that sit within our product portfolio.