Jon’s Network

Can you guess the vendor?

I watched a web demo yesterday. Here are my notes from the strategic portion that demonstrate well how list based solutions are no match for today’s threats. Which vendor gave the presentation?

Problems

no outbound inspection

no anti-malware protection from live web pages (web 2.0 pages with more user generated content)

In the Web 1.0 world

Web-wide virus attacks

Gateway protection aimed at solving productivity, liability and bandwidth issues

Solution was signature or list based

In the Web 2.0 world

Targeted malware attacks; even safe, well-known sites can be compromised and poisoned

Need a proactive solution, because you don’t know what the attack “looks like”

Targeted malware: An example

Post link or small bit of code on a safe well known website-like Wikipedia or Myspace

To defend against this, we need ability to assign risk to an otherwise good website

A reputation score for this can be used to decide between the good, bad and ugly

A credit score is created using many different information inputs. It helps lenders make credit decisions to aid business transactions.

A reputation score tracks IPs, domains, and other information to assign a reputation score to aid cyber-communication like email and web transactions. Could also be compared to how Google assigns page rank - by looking at thing such as what “neighborhood” you are linked to

The reputation score is a dynamic rating based on a constant flow of information gathered from around the world