Presentation is loading. Please wait.

Presentation is loading. Please wait.

Before: Servers Behind Firewalls Today: Servers Migrate Out Business drivers: E-Business Supply chain management CRM.

Published byAlfred Boyd Modified over 8 years ago

Similar presentations

Presentation on theme: "Before: Servers Behind Firewalls Today: Servers Migrate Out Business drivers: E-Business Supply chain management CRM."— Presentation transcript:

1

2 Before: Servers Behind Firewalls

3 Today: Servers Migrate Out Business drivers: E-Business Supply chain management CRM

4 Servers Placed in DMZ

5 Holes Punched in Firewall…

6

7 Internet Facing Servers are at Risk

8 And Through Them - Entire Network

9 Why Are Web Servers Vulnerable? Complexity Mix of software from different vendors Web masters have administrative privileges

10 How Are Web Servers Attacked? Code injected through HTTP requests –Typically using a buffer-overflow vulnerability Attack used to: –Deface web site –Install Trojan horse –Plant backdoors –Attack deeper into the organization

11 Attack Scenario

12

13

14

15

16 Solution: WaveBreaker

17 File System NetworkRegistryProcesses OS Services IIS Applications WaveBreaker Architecture

18 WaveBreaker Interception Layer File System NetworkRegistryProcesses IIS Authorizer Admin console

19 WaveBreaker Architecture File System NetworkRegistryProcesses WaveBreaker Interception Layer IIS Authorizer Admin console

20 File System WaveBreaker Interception Layer WaveBreaker Architecture NetworkRegistryProcesses OK Authorizer IIS Admin console

21 WaveBreaker Architecture File System NetworkRegistryProcesses WaveBreaker Interception Layer IIS Authorizer OK Admin console

22 WaveBreaker Architecture File System NetworkRegistryProcesses WaveBreaker Interception Layer X X Authorizer IIS WaveBreaker’s performance overhead: Approximately 5% Admin console !

23 WaveBreaker: Product Highlights Intrusion-proof protection for Microsoft®-IIS based applications Prevents: –Opening backdoors –Planting Trojan horses – Web site defacement –Attacks deeper into the corporate network Attacks are blocked in real-time Out-of-the-box security schemes provide instant protection Easily configurable to support any web application Security logs alert security administrators of attack attempts

24 Simple Management

25 Full Event Monitoring

26 Conclusion Business drivers and competitive market no longer permit keeping mission critical servers behind firewalls. Internet-facing web applications are and will be vulnerable. WaveBreaker can provide the shielding needed to deploy internet-facing servers.

27 Thank you.

Download ppt "Before: Servers Behind Firewalls Today: Servers Migrate Out Business drivers: E-Business Supply chain management CRM."

Similar presentations

Security Monitoring & Management Security Control Panel Sensors & Detection Devices $ $ $ $ $ $ Physical Security Monitoring.

Security Monitoring & Management Security Control Panel Sensors & Detection Devices $ $ $ $ $ $ Physical Security Monitoring.
 The Citrix Application Firewall prevents security breaches, data loss, and possible unauthorized modifications to Web sites that access sensitive business.

 The Citrix Application Firewall prevents security breaches, data loss, and possible unauthorized modifications to Web sites that access sensitive business.
ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
The Case for Tripwire® Nick Chodorow Sarah Kronk Jim Moriarty Chris Tartaglia.

The Case for Tripwire® Nick Chodorow Sarah Kronk Jim Moriarty Chris Tartaglia.
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
Cloud Computing Part #3 Zigmunds Buliņš, Mg. sc. ing 1.

Cloud Computing Part #3 Zigmunds Buliņš, Mg. sc. ing 1.
Access Control Chapter 3 Part 5 Pages 248 to 252.

Access Control Chapter 3 Part 5 Pages 248 to 252.
IT security Are you protected against hackers?. Why are we in danger?  The Internet is worldwide, publicly accessible  More and more companies and institutes.

IT security Are you protected against hackers?. Why are we in danger?  The Internet is worldwide, publicly accessible  More and more companies and institutes.
Web Defacement Anh Nguyen May 6 th, 2010. Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.

Web Defacement Anh Nguyen May 6 th, Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.

A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
Chapter 12 Network Security.

Chapter 12 Network Security.
Firewall Ercan Sancar & Caner Sahin. Index History of Firewall Why Do You Need A Firewall Working Principle Of Firewalls Can a Firewall Really Protect.

Firewall Ercan Sancar & Caner Sahin. Index History of Firewall Why Do You Need A Firewall Working Principle Of Firewalls Can a Firewall Really Protect.
Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.

Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.
INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.

INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
Securing Instant Messaging Matt Hsu. Outline Introduction Instant Messaging Primer Instant Messaging Vulnerabilities and Exploits Securing Instant Messaging.

Securing Instant Messaging Matt Hsu. Outline Introduction Instant Messaging Primer Instant Messaging Vulnerabilities and Exploits Securing Instant Messaging.
Implementing ISA Server Caching. Caching Overview ISA Server supports caching as a way to improve the speed of retrieving information from the Internet.

Implementing ISA Server Caching. Caching Overview ISA Server supports caching as a way to improve the speed of retrieving information from the Internet.

Similar presentations

Ads by Google