The Websense Approach

In the past, most Web content was static and predictable. But today’s reality is that Web content—even from so-called “trusted” sites—is constantly changing with end-users encouraged to post, edit, or manipulate content. The most popular and heavily-trafficked sites that make the most use of dynamic Web 2.0 content, are also the most vulnerable to attack. In fact, according to Websense® research covering the first half of 2008, over 60 percent of these top 100 sites either hosted malicious content or contained a masked redirect to an illegitimate site.*

The Web security landscape is changing: heavily-trafficked sites contain
the most dynamic content, which bypasses most legacy security systems.

Websense understands both the content and the context of the Internet landscape through its industry-leading ThreatSeeker Network, and feeds this intelligence into all its security solutions. Websense is the first security vendor to address the risks of Web 2.0 by deploying ThreatSeeker analytics inline at the customer’s gateway, providing dynamic, adaptive protection against new threats and uncategorized content.

Websense customers can now harness the power of Web 2.0, while keeping security risks in check by examining the content of both inbound and outbound HTTP and SSL-encrypted traffic. Real-time content analysis is combined with powerful anti-malware, Web reputation, and URL filtering protection to proactively block malicious content before other security solutions even know it exists. This approach keeps networks secure, while still enabling the latest Web-based tools, applications, and legitimate content.

Websense ThreatSeeker Network

The Websense ThreatSeeker™ Network adaptive security technology uses more than 50 million real-time data collecting systems that continuously monitor Internet content—including new and dynamic content—for emerging threats. The Websense ThreatSeeker Network feeds this intelligence into its Web security, messaging security, and data loss prevention solutions. As a result, Websense is able to adapt to the rapidly changing Internet at speeds not possible by traditional security solutions and basic email filtering solutions.

The ThreatSeeker Network:

• Analyzes more than 40 million Web sites per hour
• Assigns reputation to more than 2 million domains, networks, IP addresses, and hosts every hour
• Scans nearly 10 million emails for unwanted content and malicious code every hour
• Captures more than 10 million unsolicited spam, phishing, or exploit campaigns every day

* Websense Security Labs Threat Report, July 2008

The Web 2.0 Challenge:

The Internet is rapidly evolving and Web 2.0 technologies are dramatically changing the way people communicate and work. As the powerful, collaborative nature of Web 2.0 is creating a new way of doing business, it also introduces unprecedented security risks. Web 2.0 applications are rapidly appearing on the desktop, from Web-based mashups to hosted services to user-generated content and applications.

The dynamic, user-generated content common to Web 2.0 cannot be monitored with legacy security models, such as reputation databases or URL filtering. This presents IT security teams with conflicting challenges—how to tap the enormous potential of Web 2.0 while keeping networks, end-users, and sensitive data secure.

The changing desktop: Web mashups, user-generated content, widegets
and hosted applications present new security challenges.

Say Yes to Web 2.0

As new capabilities made possible by Web 2.0 enter the business mainstream, simply denying access and blocking the use of these technologies is no longer a viable option. To take advantage of the business opportunities of Web 2.0, organizations need to know that essential corporate information is being protected.

With Websense, IT professionals can provide access to the latest Web-based tools and applications while still keeping the enterprise safe from attack. With the unrivaled knowledge of the threat landscape, real-time analysis of dynamic content, and comprehensive inbound and outbound security found in Websense Web security solutions, IT professionals can now say Yes to Web 2.0.

Web Security Products:

 

 

Websense Web Security Gateway

Websense Web Security Gateway analyzes and secures Web traffic in real-time, enabling safe use of the latest Web 2.0 sites and tools. The Web Security Gateway adds on-premise, proxy-based content analysis of Web and SSL traffic to the robust Websense Web Security and Websense Web Filter platform. This allows instant categorization of new sites and dynamic content, while proactively discovering security risks and blocking dangerous malware. The Websense Web Security Gateway includes:

• The Active Security module deploys state-of-the-art ThreatSeeker analytics at the gateway to detect, block, or strip malicious code before it enters the network. Using advanced heuristics, rules, signatures, and behavior detection, these analytics are integrated with the global ThreatSeeker Network providing continuous updates and fine-tuning to detect the latest threats.

• The Content Gateway module provides inline classification of new content, along with decryption and scanning of SSL traffic. Built on a robust Web proxy and caching platform, the Content Gateway module can identify proxy avoidance, adult, hacking, and many other types of content, protecting users from the potential risks of new, unknown Web content.

Websense Web Security Gateway combines powerful security with unrivaled ease-of-use. An intuitive management dashboard provides immediate feedback on network security, threat detection, traffic loads, and user activity. Combined Integrated policy management, reporting, and delegated administration saves time and effort while reducing errors that can lead to security breaches.

Websense Web Security Gateway components.

Websense Web Security

Websense Web Security (formerly Websense Web Security Suite) combines industry-leading URL filtering with extensive security capabilities. The solution includes Web reputation services and comprehensive security categories, such as spyware, phishing, keylogging, and malicious mobile code. Websense Web Security minimizes exposure to threats by applying updates from the ThreatSeeker Network within minutes of discovery. It provides control over instant messaging (IM) and IM attachments, which can be a major source of data leaks and malicious attacks. Websense Web Security is easy to manage with a Web-based GUI and security dashboard, intuitive policy controls, delegated administration, and flexible, integrated reporting.

Websense Web Security includes Web Protection Services™, which continuously watches the organization’s Web sites, brands, and associated URLs for malicious activity to prevent them from being used in fraudulent attacks.

Websense Web Filter

Websense Web Filter (formerly Websense Enterprise®) is the world’s leading Web security solution to improve employee productivity, decrease legal liability, and optimize use of network resources. It allows for customized policies to meet specialized needs and minimizes administrative overhead with an intuitive Webbased GUI and flexible integrated reporting. In addition to controlling access to Web sites, Websense Web Filter provides policy-based control over more than 100 network protocols protecting against blended security threats and bandwidth drains. The solution is highly scalable with a distributed architecture, and offers extensive integrations with third-party network devices.

Also available from Websense

Websense Express

Websense Express provides the industry’s leading content filtering and Internet security capabilities in a simple and affordable solution. It allows organizations under 250 users to quickly and easily protect their employees from Internet risks by controlling access to inappropriate content and proactively blocking security threats before they have a chance to infect their systems.

Websense Hosted Web Security

Websense also offers an alternative for distributed organizations with many remote locations or roaming users. Websense Hosted Web Security (formerly SurfControl® WebDefense®) proactively discovers and blocks threats at the Internet level, eliminating the need to deploy on-premise software or hardware. This hosted service centralizes Web protection across multiple gateways, locations, and roaming user sites, eliminating threats before they reach the network. Websense data centers are certified to ISO 27001 standards, and the service is backed by industry-leading SLAs to guarantee uptime and competitive disaster recovery provisions.

Optional Add-ons:

The capabilities of Websense Web security products can be extended with optional add-on modules:

• Websense Content Gateway is a central gateway for controlling Web content. Websense Content Gateway integrates with Websense Web Filter and Websense Web Security to further increase the level of security for the Web. The Websense Content Gateway provides visibility into SSL encrypted Web traffic, to ensure that malicious content cannot enter your network. It also enables real-time categorization of dynamic Web 2.0 content, as well as identifying previously unvisited sites that might only exist for a very short period of time such as those used for phishing attacks and proxy avoidance Web sites.
   
• Websense Remote Filtering extends Web filtering and security protection to remote offices and mobile laptop users. Remote Filtering extends protection to users and equipment when used outside the network and ensures safe and secure Internet use anytime and anywhere.

Documentation:

Download the Websense Web Security Solutions Datasheet (PDF).