DUBEX CUSTOMER MEETING

(1)

DUBEX CUSTOMER MEETING

JOHN YUN

Director, Product Marketing

Feb 4, 2014

(2)

AGENDA

 WebPulse

 Blue Coat Cloud Service Overview

 Mobile Device Security

(3)

(4)

GLOBAL THREAT PROTECTION

 75 million enterprise

and consumer users

 Intelligence from

1 billion requests/day

 Real time updates on

new defenses and

results to ALL users

 Blocks 3.3 million

threats/day

 First layer of defense

 Malnet tracking and

blocking

 Dynamic rating,

heuristics, sandboxing,

exploit analysis

 Blocking inbound

and outbound (call

home) threats

NEGATIVE DAY DEFENSE

 Web protection

 Malware protection

 SSL inspection

 Advanced Threat

Protection

 Rich data analytics

 Advanced correlation

DEFENSE IN DEPTH

GLOBAL

(5)

NEGATIVE DAY DEFENSE WITH

WEBPULSE

AWARE

INTELLIGENT

PROACTIVE

ProxyAV

Content Analysis System

SWG Virtual

Appliance

Web Security

Service

Mobile Device

Security Service

K9

PacketShaper

Cache Flow

Third Party

Proxy AV

(6)

MAPPING MALNETS

MALVERTISING

PORN

MOBILE

PHISHING

Attack type doesn’t matter.

Content and encryption doesn’t matter.

Device type doesn’t matter.

Zero-day exploits don’t matter.

SEARCH ENGINE

POISONING

(7)

2012

_{-225 Days}

Jan

_{-120 Days}

April

Aug 26

_{0 Day}

Aug 26

_{0 Day}

BLOCKING A ZERO-DAY JAVA EXPLOIT

New exploit

site named

ok.aa24.net

becomes

active

New C&C

site comes

online

ok.aa24.net actively

distributes malicious

executable that uses

zero-day Java exploit

Infected

systems begin

communicating

with command and

control domain

WebPulse

rates as malware

source & begins

blocking

WebPulse rates

IP address as

suspicious and

begins blocking

WebPulse

automatically

blocks all

requests to site

WebPulse

automatically

blocks all

requests to

domain

(8)

MULTI DIMENSION CATEGORY

 Requires you to pick a category

that best describes a site

 Multiple one-off policies required

to manage various use scenario

Entertainment

Social

Networking

Sports

Economy

Entertainment

Gambling

Sports

Shopping

Economy

Objectionable

Society / Living

Intimate Apparel Adult Content

• Flexible security policy based

on multiple categories

• Accurate policy enforcement

from accurate URL description

Blue Coat supports up to 4 categories

for a given site

Traditional security relies on only 1

category for a given site

(9)

GRANULAR APPLICATION CONTROL

 Apps are no longer limited to

single primary feature

 ON-OFF approach at app-level

cannot support high

productivity

 Granular operation control

required to safeguard

continuing use of Apps

Post Message

Upload Pictures

Upload Videos

Send Message

Download

Attachment

Upload Attachment

Login

Manage Profile

Upload Files

(10)

GROWING APPLICATION TYPES

Web

Applications

Mobile

Browser App

Mobile Apps

Native

m.facebook.com

Robust Category

and Operation

Architecture

Seamless policy enforcement across

ALL types of applications

Consistent Policy Enforcement

(11)

Corporate HQ

Branch Office

Remote Workers

Mobile Devices

UNIVERSAL POLICY

ProxySG

ProxyAV

WebFilter

Mobile Device

Security Service

SWG Virtual

Appliance

Corporate HQ & Branch Policy

• Allow YouTube Education Videos for Engineering;

Block Entertainment

• Read Only Facebook & Facebook Mobile App

• Log All Data

Remote worker Policy

• Log Data When Accessing

Corporate Assets

• Block Uploads on Facebook

• Contextual Use of Dropbox

• Allow Box.com

BYOD Or Corporate

Mobile device Policy

• Location aware: Apply

Corporate Policies on

Corporate Network

• Log Data when Accessing

Corporate Assets

Web

(12)

WEBPULSE: GLOBAL INTELLIGENCE

NETWORK

WebPulse cloud

datacenters

(13)

(14)

BLUE COAT CLOUD SERVICE

GLOBAL COVERAGE

•Virginia Santa Clara Chicago Miami Seattle Toronto Dallas Buenos Aires Mexico City Sao Paulo New York London Frankfurt Paris _Zurich Stockholm Madrid Milan Johannesburg Sydney Auckland Singapore Tokyo Hong Kong Seoul India

• 30+ Datacenters

• Coverage across 6

continents

• Fully meshed/redundant

network

• 99.999% SLA

Israel Finland

(15)

DEPLOYMENT OPTIONS

(16)

CONSISTENT ENFORCEMENT ACROSS

THE GLOBE

Administrator

• Policy updates applied to all

datacenters

• Consistent enforcement to all

users across all connectivity

methods

• Administrator in any location

can update policies

(17)

(18)

MOBILE DEVICE SECURITY SERVICE

BENEFITS

 Security of Blue Coat Cloud Service

• Route all traffic to Blue Coat Cloud

• Supports all connection methods including

3G/4G

• Benefit of WebPulse and 2-stage

AV scanning

 Cloud-based Security Analytics

• All analysis performed in the cloud

• Leverage built-in iOS VPN profile

• Android Client App

 Transparent User Experience

• No additional login or configuration needed

• VPN connection established automatically

(19)

MOBILE DEVICE SECURITY SERVICE

SUMMARY

Device

 iPhone and iPad

 iOS v5, v6 & v7

 Android Devices

 Android 4.0+

Connection to

BC cloud

 Encrypted IPSec

App Controls

 Web Application

 Mobile Browser App

 Native App

 Operation Control

Security

 WebPulse

 Negative-Day

Defense

 URL Filtering

 Real-time Analytics

 2-stage AV

Reporting

 Cloud-based

 On-premise

Policy

Management

 Policy Sync

(20)

IPSEC

MDS – HOW IT WORK

 Mobile device is

connected to one

of 30+ data centers

around the globe

 Fully meshed

cloud service with

99.999% SLA

 All traffic analyzed

by WebPulse

• Negative-Day

Defense

• Malnet-Awareness

• Real-time

analytics

• 2-stage AV

scanning

 iOS/Android device

establishes IPSec

VPN connection

 All traffic are routed

through VPN

tunnel

 IPSec tunnel is

supported for all

connection types

• Cellular

• 3G/4G

• Home WiFi

• Hotspot

• Corp WiFi

(21)

TRANSPARENT MDS USER EXPERIENCE

 Transparent experience

with no manual user

intervention required

 VPN icon indicates

connection to

(22)

(23)

CUSTOMER’S VIEW OF

“MOBILE SECURITY”

 MDM identified as the most common solution to

“mobile security”

 Reaction to most common concern

– lost/stolen device

 Lack of focus on enabling secure use of mobile devices

54,9%

49,0%

43,1%

33,3%

23,5%

11,8%

2,0%

MDM

Password

Encryption

Virtual

Desktop

VPN

Network MDM

Other

What type of Mobile Security do you use?

(24)

VALUE OF MDM AND MOBILE SECURITY

Enterprise Mobile

Security Requirements

Mobile Device

Management

Mobile

Device Security

Loss or theft of device

Remote lock/Wipe

-

Enforce user & access control

User Authentication

-

Segment/Isolate enterprise app

and data

Secure Container

-

Password enforcement

Device Profile

-

Control which Apps are installed

Device Profile

-

Control which Apps can be used

-

Application Control

Control which App operations are

enabled

-

Application Control

Protect against malicious links

-

Real-time Malware Protection

Protect against malicious/virus

attachments and downloads

-

Real-time Malware Protection

AV Scanning

(25)

SECURITY IMPLICATIONS OF

WHITELISTED APPS

Top 10

Whitelisted Apps

Security

Risks

Security

Solution

 Malicious URL

 Virus-embedded image

 AV scanning

 Application control

 Search engine poisoning

 Unrestricted mobile web

apps

 Malware detection/URL

filtering

 Mobile web app control

 Malware or virus downloads

 Application control

 User/group-based app control

 AV scanning

(26)

ANDROID MOBILE AGENT

 Intelligent VPN Client

• Automatically connect to the nearest

datacenter

• Transparent User Experience

 Simplicity of an App

• Designed as an App from the ground up

• Downloadable from Google Playstore

• Simple deployment by Mobile Device

(27)

IOS MOBILE AGENT

 No Client

• Leverage iOS VPN-OnDemand capability

• Automatically establish VPN connection to

nearest data center on demand

 VPN Profile

• iOS VPN Profile configured to connect to

Blue Coat cloud infrastructure

• Only comprehensive security solution

available for iOS devices

(28)

CHALLENGES IN IOS DEVICE SECURITY

MDM AND MOBILE SECURITY

 Leverage built-in IPSec

VPN profile

 Route all mobile traffic to

cloud for security analysis

 Inspect traffic for all use

scenarios

 Leverage iOS MDM

profile

Comprehensive Mobile

Security

 Leverage configuration

profile with iOS MDM

Management from Apple

 Services including easy

enrollment, integration,

container, etc…

 Leverage iOS MDM

profile

Leading MDM Solution

 Only 1 MDM profile can be active at any given time

 Mobile Security and MDM solutions cannot both be active*

(29)

IOS MOBILE SECURITY SOLUTION

OPTIONS

Ea

se o

f

MDM Integ

ratio

n

Comprehensive Mobile Security

Secure limited use cases

Secure all use cases

No

In

te

g

ratio

n

S

e

a

m

le

ss

In

te

g

ratio

n

 Deploy secure

browser app

 Leverage MDM

capability to push

Apps

 Do not address most

common use case -

use of Apps

 Easily circumvented

Mobile Security in

an App

_Mobile

Security

as an App

 Add basic MDM

capabilities to Mobile

Security offering

 Sub-par MDM

capabilities

 Cannot support tier-1

MDM solutions

Add MDM

features to

Mobile

Security

 MDM solution can

push mobile security

VPN profile to device

 Leverage full

capabilities of tier-1

MDM solution

 Leverage full mobile

security capabilities

across all use cases

Integrate

with

Best-of-Breed

MDM

Solution

(30)

BLUE COAT AND AIRWATCH INTEGRATION

MDM & MDS FOR IOS DEVICES

 First integration of its kind

between tier 1 MDM and

Web Security vendor

 Joint engineering effort to

develop and design around

APIs

 Best-of-Breed MDM and

Mobile Security capabilities

 Seamless experience from

(31)

SCREEN SHOT - MDM SUPPORT ON MDS

 Simple pull-down menu to add MDM vendor support to

MDS accounts

(32)

SCREEN SHOT

ADDING BLUE COAT MDS TO AIRWATCH ACCOUNT

 MDS VPN profile available on AirWatch administration

page

 Simple VPN configuration of users/groups to route all

(33)