risk 2018, hillstone · zte telecommunication. ... parameter 1 sample parameter 2 ... completekill...
TRANSCRIPT
www.hillstonenet.com
Security That Works!
Lingling Zhang,SVPofProduct&Marketing03/15/2018
www.hillstonenet.com
NSSLabsRecommendedNGFWwiththeBestValue!
2
99.60%BlockRate inStatictest
98.32%BlockRateinLiveTest
NSS Labs 2016
www.hillstonenet.com
PositionedinThree GartnerMQs forVision& Execution
3
…...
MagicQuadrantforEnterpriseNetworkFirewalls
MagicQuadrantforUnifiedThreatManagement(SMBMultifunctionFirewalls)
MagicQuadrantforIntrusionDetectionandPreventionSystems
www.hillstonenet.com
DemonstratesBroadCompatibilityinETSI’sNFVPlugtests
• 8 MANO(15)
4
• 5 VIM (7)
• 2 NFVI
www.hillstonenet.com
UseCase1:Ransomware Protectionw/iNGFW
www.hillstonenet.com
Ransomwareiseverywhere!
350% yearlygrowth– Cisco2017AnnualCyberSecurity Report
$5Billion in2017– CybersecurityVentures
40%spamemailscontainransomwarelinks in 2017,lessthan1%in2015– IBMSecurity
Average $1,077, 266%from2015– SymantecResearch
www.hillstonenet.com
Defending Ransomware w/Hillstone iNGFW
7
PTSinamas SecuritiesFinance
PTPGASSolutionEnergy
WOORI BankFinance
Krungthai BankComputerServicesFinance
EmtelcoISP
Speednet,BelizeISP
China Everbright BankFinance
UniversityofCórdoba,SpainEducation
NationalUniversityofCostaRicaEducation
PSG,HollandEducation
PacificLightEnergy
Madonald‘sFood
Tsinghua University,ChinaEducation
PEPSIManufacturing
ZTETelecommunication
www.hillstonenet.com
WannaCry detectedbyHillstoneAnti-virus
8
www.hillstonenet.com
WannaCry detectedbyHillstoneCloudSandbox
9
www.hillstonenet.com
WannaCry detectedbyHillstoneABDEngine
10
www.hillstonenet.com
UniqueDetectionEngineI:AbnormalBehaviorDetection(ABD)Engine
11
Threat & Risk IdentificationAbnormal behavior AnalysisBehavior Learning & Modeling
• Host/server behavior modeling by adaptive machine learning
• Layer 4-7, hundreds of behavior dimensions
• Real time Behavior Model and rules • Identify abnormal dimensions by behavior
partnering
• Quantitate risk severity and certainty by correlation analysis
• Threat forensics including suspicious and relevant PCAP
www.hillstonenet.com
UniqueDetectionEngineII:AdvancedThreatDetection(ATD)Engine
12
Machine LearningKnown malware
Samples
Malware Behavior Learning
Malware Behavior set 1
Malware Behavior set 2
Malware Behavior set 3
…
ClusteringModeling
Unknown Malware Behavior Patterns
Identify Malware Variants
Unknown Malware
Sample Parameter 1
Sample Parameter 2
Sample Parameter 3
…
Hillstone IntelligentNext-Generation Firewall
Malware Attributes
MalwareActions
Family 1
Family 2
Family 3
Family n
www.hillstonenet.com
ThreatCorrelationAnalyticsEngine
13
www.hillstonenet.com
14Complete KillChainMapping
• Mapthreateventsintoeachof7cyberkillchainstages
• Showthreatname,type,source/targetIP,severity,certaintyetc.
• Tracethethreatovertimethroughitsfulllifecycle
14
www.hillstonenet.com
UseCase2:Micro-SegmentationinaVirtualizeddatacenter
www.hillstonenet.com
BoundaryBlurredintheVirtualWorld
16
www.hillstonenet.com
SegmenttheVirtualNetworkwithCloudHive
OnevSOM,TwovSCMs,Upto200vSSMs,OneorMultiplevDSM
17
www.hillstonenet.com
CloudHive ProvidesDeepVisibilitytoEast-WestTraffic
18
www.hillstonenet.com
UseCase3:AutomatetheDeploymentofNFVandServiceChain
www.hillstonenet.com
WhyNFV?
20
NFV
Technology Vendors
Service Provider
Industry Standard
AutomaticDeploymentandHighCompatibility
ScalabilityandElasticity OpenAPIandSoftwareOrchestration
HigherEfficiency LowerOPEX BusinessContinuity VendorIndependence
www.hillstonenet.com
CloudEdge for NFV Solutions
21
Orchestrationbasedoncloudplatform
OrchestrationbasedonOpenStack FWaaS
OrchestrationbasedonopensourceMANO
www.hillstonenet.com
22
CloudEdge Automatic Deployment
Database192.168.1.14
Web Server192.168.1.11
vRouter
Virtual Firewall192.168.1.19
OpenStack
PastUnpack
Onboard
Power Connect
Configure Address
Change Password
Configure Policies
Online
NowUse Image
Deploy VM
Start VM
Acquire Address
Change Password
Configure Policies
Online
Tenant 1
Hillstone
One click deployment
Prepare Catalog
www.hillstonenet.com
HSAHillstoneSecurityAuditPlatform
ManagementCloudServerPerimeter
Security as a Service
ContinuousInnovationandImprovementofProductPortfolio
23
I-SeriessBDSServerBreach
DetectionSystem
S-SeriesNIPSIntrusionPreventionSystem
E-SeriesNGFW
T-SeriesIntelligentNGFW
X-SeriesDataCenterFW
HSMHillstoneSecurity
ManagementPlatform
Security Management& Analytics Platform
Keep in touch with us
24
Address:
E-mail:
Website:
Phone:
5201 Great America Pkwy, #420, Santa Clara, CA 95054
www.hillstonenet.com
[email protected] +1-800-889-9860
THANK YOU!
www.hillstonenet.com
Hillstone ataGlance
• Foundedin2006 byfoundingengineers fromNetscreen
• 15,000+ customersin50+countries:financial,telecom,educationetc.
• 700+ employeesglobally,>40% inengineering
Beijing
Singapore
SiliconValley
Dubai
LatinAmerica
Czech
Suzhou •ExperiencedleadershipfromNetscreen,Cisco,Juniper,Intel
WorldClassTeam
25
Mexico