Secure and Enable the New InternetIM, Unified Communications and Social MediaNick Sears nsears@facetime.comFaceTime Commun...
The Internet Has Changed               • Public IM               • P2P               • Anonymizers               • VoIP   ...
The Enterprise and Web 2.0 Are Converging          Source: FaceTime Annual Collaborative Internet Surveys 2007 – 2010 & Pr...
Presenting Significant Risks When Unmanaged    Data Leakage          Incoming Threats   Compliance & eDiscovery      User ...
FaceTime Mission      FaceTime helps businesses realize the benefits of the  ‘New Internet’ by delivering enterprise solut...
FaceTime Solutions       LAN/WAN                                                                        Internet          ...
Vantage: Secure and Enable Unified Communications                      Analytics, Reporting, Visualization and Review     ...
FaceTime Solutions       LAN/WAN                                                                        Internet          ...
USG: Secure and Enable the ‘New Internet’                                                                 Analytics & Repo...
USG: Visibility & Control of More Than 4,000 Applications             Category            Number         ExampleSocial Net...
Socialite – on premise USG or SaaS    Socialite is FaceTime’s Security Management and Compliance for Social Networks solut...
Levels of Control: SN Widget Categorization                             FaceTime:                               – Control...
Levels of Control: SN feature control FaceTime:    – Control features or areas of content posting by user or group       ...
Social Networking – Content Monitoring                       FaceTime:                          – Summary of policies    ...
eDiscovery of Social Networking Posts FaceTime    – Social Networking activity and      posts captured.                  ...
Levels of Control: Moderation                           FaceTime                                – Posts to Twitter/Facebo...
Moderator work queue & transcript review FaceTime:   – Moderator queue allows bulk     approve or each post reviewed     ...
End User Experience FaceTime:   – Toolbar displayed for each site     showing user‟s post “queues”   – User can click on ...
Insight: Visualize the ‘New Internet’                   Multiple Export Capabilities (Email, HTML, PDF)    Visualizer     ...
Thank you..Questions?
USG Benefits Visualize Internet activity to assess policy & user behavior    – Birds-eye view of all Internet usage acros...
Upcoming SlideShare
Loading in …5
×

FaceTime - DSS @Vilnius 2010

813 views

Published on

Facetime did the presentation about security challenges of the new Internet (communication tools, web 2.0, p2p, social media).

Published in: Technology
  • Be the first to comment

  • Be the first to like this

FaceTime - DSS @Vilnius 2010

  1. 1. Secure and Enable the New InternetIM, Unified Communications and Social MediaNick Sears nsears@facetime.comFaceTime Communications, Inc.
  2. 2. The Internet Has Changed • Public IM • P2P • Anonymizers • VoIP • Financial IM • Social Networks • Unified Communications • Games • Web Conferencing • Virtual Worlds • VoIP • IPTV • Remote Admin Tools Source: FaceTime Annual Greynets Surveys 2007 – 2010 & Projected
  3. 3. The Enterprise and Web 2.0 Are Converging Source: FaceTime Annual Collaborative Internet Surveys 2007 – 2010 & Projected
  4. 4. Presenting Significant Risks When Unmanaged Data Leakage Incoming Threats Compliance & eDiscovery User BehaviorPersonal Employee Malware, Spyware SEC, FINRA, NFAInformation Productivity Viruses, Trojans HIPAA, FISMA, SOXIntellectual Property Bandwidth Inappropriate PCI, FOI, DOD, FSA ExplosionCredit Card, Content FRCP- eDiscovery Every employee isSSN the face of thePatient Records FERC, NERC business
  5. 5. FaceTime Mission FaceTime helps businesses realize the benefits of the ‘New Internet’ by delivering enterprise solutions that provide unified security, management, and compliance across the broadest set of applications and modalities.  Internet & Web 2.0 application usage Visibility  Social Network feature and content posted  Multi-modal highly visual reporting  Prevent viruses, malware, spIM Security  Protect IP, prevent data leakage  Block unsanctioned applications  Granular policies for sanctioned applications Management  User/Group, Time of Day, Time Quota  Content filtering, ethical walls, disclaimers  Logging, archiving, auditing of all user communications Compliance  Full compliance review and workflow  Leverage existing email archive and ECM platforms
  6. 6. FaceTime Solutions LAN/WAN Internet Vantage Secure & Enable Unified Communications Socialite Insight Secure & Enable UC Server Visualize the Social Networks ‘New Internet’ Active Directory Unified Security Gateway Secure & Enable Web 2.0 Archiving
  7. 7. Vantage: Secure and Enable Unified Communications Analytics, Reporting, Visualization and Review Granular Policy Management Corporate Directory Integration Security Management & Control Compliance Anti-Virus Usage Policies Logging & Archiving Anti-Malware File Transfer Policies 360 degree Auditing Anti-SpIM Content Monitoring Message Order Preservation Data loss prevention Call Admission Control Conversational Perspective Ethical Boundaries Compliance Workflow Real-time disclaimers Policy-Based Exporting Windows, VMware Server Public IM Enterprise UC Community Web & Messaging Networks Networks Networks Networks
  8. 8. FaceTime Solutions LAN/WAN Internet Vantage Secure & Enable Unified Communications Socialite Insight Secure & Enable UC Server Visualize the Social Networks ‘New Internet’ Active Directory Unified Security Gateway Secure & Enable Web 2.0 Archiving
  9. 9. USG: Secure and Enable the ‘New Internet’ Analytics & Reporting Unified Policy Management AD Integration, Company/Group/User, Time of Day, Bandwidth Anti-Malware URL Filtering Anti-Virus Web 2.0 & Application Control Public IM Web 2.0 Enablement Socialite Application Control & Security Application Enablement Application Control Engine
  10. 10. USG: Visibility & Control of More Than 4,000 Applications Category Number ExampleSocial Networking 936Instant Messaging 259IPTV 62Remote Admin Tools 23P2P 170VoIP 100Commercial Monitoring Software 257Anonymizer 58Web Mail 21 4000 +
  11. 11. Socialite – on premise USG or SaaS Socialite is FaceTime’s Security Management and Compliance for Social Networks solution providing granular control of Facebook, LinkedIn and Twitter. Socialite enables you to control, moderate, and log social networking activities. From granular content, features and activity control to the moderation of subject matter posted and the archiving of posts and activities, you can confidently enablevthe use of Facebook, LinkedIn and Twitter without compromising security or compliance requirements. Issue Control RequirementsData Leak Prevention/Content Protect organization from employees disclosing sensitive informationProtection Protect network against hidden Phishing/Trojan attacks throughMalware Protection applications Ensure that SarahFaceTime on Twitter, Sarah Louise Carter onIdentity Management LinkedIn & sl_carter on Skype connect back to her corporate identity Post content, status updates, allowed for marketing. Read only accessActivity Control for all other staff. John’s posts appear on Twitter or Facebook only upon approval byModerator Control Compliance Officer John can access Facebook, but not use Facebook chat, or downloadGranular Application Control and install any applications in the gaming category. Log all content posted, message sent through Web 2.0 and socialLog and Archive Activity & Content networks Export stored data with corporate identity credentials to email archive,Use Archive of Choice WORM, for single discovery location
  12. 12. Levels of Control: SN Widget Categorization  FaceTime: – Control access to individual SN sites – Allow/block application widgets on popular sites – By category or individually by searching for them
  13. 13. Levels of Control: SN feature control FaceTime: – Control features or areas of content posting by user or group – e.g., make the sites read only
  14. 14. Social Networking – Content Monitoring  FaceTime: – Summary of policies – Point-and-click policy editing for:  Features to monitor  Some features can also be moderated  Dictionaries to use – 1 match in „CorporateIdentities” dictionary AND – 1 match in “profanity” dictionary OR – 1 match in “SecretProjects” dictionary  Action to take
  15. 15. eDiscovery of Social Networking Posts FaceTime – Social Networking activity and posts captured.  FaceTime – All the captured social networking events are presented for eDiscovery and available for export to archiving platforms.
  16. 16. Levels of Control: Moderation  FaceTime – Posts to Twitter/Facebook/LinkedIn held for review by following criteria:  All  Keyword/dictionary matches  Regular expressions (e.g., credit card/social security number patterns)
  17. 17. Moderator work queue & transcript review FaceTime: – Moderator queue allows bulk approve or each post reviewed individually.
  18. 18. End User Experience FaceTime: – Toolbar displayed for each site showing user‟s post “queues” – User can click on their Queues and see a list of the messages
  19. 19. Insight: Visualize the ‘New Internet’ Multiple Export Capabilities (Email, HTML, PDF) Visualizer Flexible Modular & Reporting Dashboard Social Graphs Role Based Access Control Corporate Directory Integration Multi-Modal Reporting Engine Intelligent Reviewing Engine Data Processing Engine Unified Security Gateways Vantage Sensors
  20. 20. Thank you..Questions?
  21. 21. USG Benefits Visualize Internet activity to assess policy & user behavior – Birds-eye view of all Internet usage across multiple USGs  4,000+ apps plus social networking  55 URL categories Prevent data leakage – Real-time lexical analysis and expression matching – Block file transfers and posts over IM, webmail, blogs… – Control features and moderate content posted to Facebook, LinkedIn, Twitter Meet corporate, regulatory, and eDiscovery compliance requirements – Log, archive, and audit IM (FINRA, NASD, SEC, NFA, FERC/NERC, HIPAA, FISMA, FRCP, CIO Council, DoD, FOI Act, etc.) – Monitor, moderate, and log content posted to Facebook, LinkedIn, Twitter – Control content posted to other Web 2.0 sites and flag policy violations – Easily retrieve stored communications for eDiscovery and litigation Control inbound threats – malware AND content – Prevent malware from entering the network over real-time channels – Enforce URL filtering and granular control of Web browsing; block elements of Web content or media that fall outside of policy

×