Date post: | 15-Aug-2015 |
Category: |
Technology |
Upload: | casablanca |
View: | 73 times |
Download: | 0 times |
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
HP Enterprise Security Products
HP TippingPoint
Miroslav Knapovsky CISSP, CEH
HP ESP; Central Europe [email protected]
Mobile: +420 603 200 258
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.2
Threat LandscapeWhy we do 4.5.201
5
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.3
Network Security
Application Security
SecurityIntelligence
HP Security Performance Suite Pillars
Security Performance SuiteHP Enterprise Security
HP ESP – What we do
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.4
HP Security Research
Innovative ResearchDriving ESP Security Strategy
Actionable Security Intelligence
• Experts in vulnerability, malware, threat actor, and software security research
• ZDI and other communities
• Globally-distributed team from top universities
• Content powers ArcSight, Fortify, and TippingPoint
• Intelligence delivered direct to end-users and the public
• Bi-weekly threat briefings on the web and iTunes
Publication
• Publications on research spanning the ESP portfolio
• Speaking at top security conferences / tradeshows
• Trusted-source for advice on enterprise security
On Critical Topics Today
HP ESP – What we do
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.5
TippingPoint: A Triple Threat Against Attacks1. Weekly Digital Vaccine
filters prevent software vulnerabilities from being exploited
2. Reputation feed prevents infiltration, exfiltration and command and control traffic with IP and DNS blacklists
3. Anti-malware filters detect infiltration, exfiltration and command and control traffic with filter technology
Weekly Digital Vaccine
Anti-Malware Reputation
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.6
Zero day filters by company in 2014 and 2015
TippingPoint DVLabs is simply the best
On average in 2014, we had coverage for zero-day vulnerabilities 50 days in advance of the vulnerability becoming public. TippingPoint customers implement these patches. Remember: EVERY SECOND MATTERS!!!In 2014, we shipped 379 pre-disclosed (zero-day) filters.
43
730
1
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.7
14.4.2015 MS VulnerabilityBulletin # TippingPoint Filter #
*********************************************************
MS15-032 *19322,*19324,*19325,*19326,*19327,*19332,*19334,*19336,*19440,19683,19701
MS15-033 19693,19695,19704,19707
MS15-034 19690
MS15-035 19688
MS15-036 19696
MS15-039 *13855
MS15-041 19691
*********************************************************
Filters marked with * shipped prior to this DV, providing zero-day protection.
PS: MS15-034 was critical. Covered by HP same day, 2 hour after Microsoft announcement.
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.8
Advanced Threat Appliance (ATA)• Superior detection via multiple
scanning techniques across over 80 protocols
• Enhanced defense against “patient zero” infection and subsequent lateral spread
HP TippingPoint Product Family
IntegratedPolicy
Next-Generation Firewall (NGFW)• NGIPS with enterprise firewall• Granular application visibility
and control
In-line Threat Protection with Next-Generation Intrusion Prevention (NGIPS)• Inspects network traffic and
blocks against known vulnerabilities
• Reliable network uptime track record
Security Management System (SMS)• Centralized management across
NGIPS and NGFW• Single console to deploy devices
and policies
Digital Vaccine Labs (DV-Labs)• Industry-leading security
intelligence• Delivers zero-day coverage
TP = Network Security since 2001!
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.9
TippingPoint NGIPS Platform Automated, Scalable
Threat Protection
IPS PlatformDesigned for future security demands and services
Proactive
• In-line reliability
• In-line performance
• Filter accuracy
NGIPS Sensors
SMS – Security Management System
Security
• Leading security research
• Fastest coverage
• Broadest coverage
Costs
• Quick to deploy
• Automated threat blocking
• Easy to manage
Dirty Traffic Goes In Clean Traffic Comes Out
HP ESP – How we do
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.10
NX Platform 3-20Gbps
Bypass Modules
- 4x 1GbE 10/100/1000 (Copper)
- 2x 1GbE SFP (Fiber)
- 2x 10GbE SFP+
Market Leading 2U Port-Density with Swappable Modules
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.11
HP TippingPoint & integrations
WebInspect
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.12
HP ESP Integration with Vulnerability Scanners
& Nessus, Rapid7, …
Native VA scan import
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.13
Why HP TippingPoint?
Simple
Easy-to-use, configure and
install with centralized
management
Reliable
NGIPS with 99.99999%
network uptime track
record
Effective
Industry leading security
intelligence by DVLabs updates
IntegratedPolicy
Next Gen IPS
Next GenFirewall
Security ResearchDVLabs,
Reputationand feeds
User and Apppolicy
© Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Thank you stay in touch: [email protected]