| Full Protection from Web 2.0 Threats with Full Content Inspection at Ultra-Low Latency |
| Security threats have evolved from desktop-based viruses to email-based worms and now are largely becoming browser-based threats. Zscaler inspects all inbound and outbound web traffic to protect enterprises from security threats. In addition, Zscaler performs inspection of full content (not just URL or header), which is required to detect newer threats, such as botnets, cross site scripting and malicious active content. Finally, our global network enables us to detect attacks in any part of the world and update threat protection measures in real-time. |
|
| Viruses & Spyware: The Known Threats |
| Zscaler protects against known viruses, worms and spyware using signature and heuristic technologies. Zscaler’s architecture provides inspection at many times the speed of traditional products, ensuring full protection without introducing any noticeable latency. |
| Malware is found on 60% of the top 100 sites. All new malware has a web component |
|
| – Gartner |
 |
| Advanced Threats: Zero-Day, Unknown Threats |
| Bots, cross site scripting (XSS), peer-to-peer (P2P) and malicious content are some of the most dangerous threats, but are not detected with traditional anti-virus technology. These newer threats require full content inspection, which introduces unacceptable latencies with traditional proxies. Zscaler’s high performance proxy and content scanning engine can inspect both the header and the content of a page. Using detection technologies innovated by the Zscaler Research Team, as well as data feeds from third parties—such as Microsoft, Google, and TippingPoint—Zscaler delivers the best threat detection. |
| Browser Control |
| Hackers are exploiting browsers. Older and unpatched browsers are especially vulnerable. Zscaler allows organizations to define a policy to enforce browser versions, patch levels, allowed plug-ins and applications. This is achieved without requiring any client-side software. This reduces security risk without requiring much IT administration. |
| Multiple-Detection Technologies |
| Single-Scan, Multi-Action (SSMA) Technology: Traditional web proxies are slow and they perform inspection sequentially: they sequentially pass web traffic from one subsystem to another. For example, the data will first be passed to a URL filtering subsystem, then it will be passed to an Anti-Virus subsystem, etc. This introduces significant latency. Instead of using separate engines and signature sets that require multi-pass scans, Zscaler scans the content once and performs multiple actions—such as URL filtering, data leakage detection, bandwidth control, Web 2.0 control, etc. This significantly reduces the amount of processing overhead and minimizes latency. |
| Page Risk Index: Reputation systems can only block known IP addresses and domains. In Web 2.0, where users are the creators of content, domain-based reputation is not effective. Zscaler has developed a Page Risk Index that dynamically computes risk scores for each page as it is delivered, without introducing noticeable latency. |
|
|
| Decrypting SSL Traffic: Web traffic is increasingly being encrypted using SSL. Zscaler can decrypt SSL traffic by using man-in-the-middle technology to detect and block hidden malicious content. |
| Benefits |
| By integrating the best-of-breed third party data feeds with our own research and technology to perform high-speed scanning, Zscaler offers the most comprehensive security for the HTTP channel, with minimal latency. Zscaler eliminates the need to purchase multiple point products and maintain them. It delivers high security with low TCO. |
| To learn more about Comprehensive Security, also read: Anti-Virus & Anti-Spyware, Advanced Threats and Browser Control |
| To request more information, please click here. |
| |
| |
