Recommended
More Related Content
What's hot
What's hot (20)
Viewers also liked
Viewers also liked (10)
Similar to Casablanca a Cloud Security od HP – Miroslav Knapovský
Similar to Casablanca a Cloud Security od HP – Miroslav Knapovský (20)
Recently uploaded
Recently uploaded (20)
Casablanca a Cloud Security od HP – Miroslav Knapovský
- 1. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Enterprise Security Products HP TippingPoint Miroslav Knapovsky CISSP, CEH HP ESP; Central Europe knapovsky@hp.com Mobile: +420 603 200 258
- 2. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.2 Threat Landscape Why we do 4.5.2015
- 3. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.3 Network Security Application Security Security Intelligence HP Security Performance Suite Pillars Security Performance SuiteHP Enterprise Security HP ESP – What we do
- 4. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.4 HP Security Research Innovative Research Driving ESP Security Strategy Actionable Security Intelligence • Experts in vulnerability, malware, threat actor, and software security research • ZDI and other communities • Globally-distributed team from top universities • Content powers ArcSight, Fortify, and TippingPoint • Intelligence delivered direct to end-users and the public • Bi-weekly threat briefings on the web and iTunes Publication • Publications on research spanning the ESP portfolio • Speaking at top security conferences / tradeshows • Trusted-source for advice on enterprise security On Critical Topics Today HP ESP – What we do
- 5. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.5 TippingPoint: A Triple Threat Against Attacks 1. Weekly Digital Vaccine filters prevent software vulnerabilities from being exploited 2. Reputation feed prevents infiltration, exfiltration and command and control traffic with IP and DNS blacklists 3. Anti-malware filters detect infiltration, exfiltration and command and control traffic with filter technology Weekly Digital Vaccine Anti-Malware Reputation
- 6. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.6 Zero day filters by company in 2014 and 2015 TippingPoint DVLabs is simply the best On average in 2014, we had coverage for zero-day vulnerabilities 50 days in advance of the vulnerability becoming public. TippingPoint customers implement these patches. Remember: EVERY SECOND MATTERS!!! In 2014, we shipped 379 pre-disclosed (zero-day) filters. 43 7 30 1
- 7. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.7 14.4.2015 MS Vulnerability Bulletin # TippingPoint Filter # ********************************************************* MS15-032 *19322,*19324,*19325,*19326,*19327,*19332,*19334,*19336,*19440,19683,19701 MS15-033 19693,19695,19704,19707 MS15-034 19690 MS15-035 19688 MS15-036 19696 MS15-039 *13855 MS15-041 19691 ********************************************************* Filters marked with * shipped prior to this DV, providing zero-day protection. PS: MS15-034 was critical. Covered by HP same day, 2 hour after Microsoft announcement.
- 8. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.8 Advanced Threat Appliance (ATA) • Superior detection via multiple scanning techniques across over 80 protocols • Enhanced defense against “patient zero” infection and subsequent lateral spread HP TippingPoint Product Family Integrated Policy Next-Generation Firewall (NGFW) • NGIPS with enterprise firewall • Granular application visibility and control In-line Threat Protection with Next- Generation Intrusion Prevention (NGIPS) • Inspects network traffic and blocks against known vulnerabilities • Reliable network uptime track record Security Management System (SMS) • Centralized management across NGIPS and NGFW • Single console to deploy devices and policies Digital Vaccine Labs (DV-Labs) • Industry-leading security intelligence • Delivers zero-day coverage TP = Network Security since 2001!
- 9. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.9 TippingPoint NGIPS Platform Automated, Scalable Threat Protection IPS Platform Designed for future security demands and services Proactive • In-line reliability • In-line performance • Filter accuracy NGIPS Sensors SMS – Security Management System Security • Leading security research • Fastest coverage • Broadest coverage Costs • Quick to deploy • Automated threat blocking • Easy to manage Dirty Traffic Goes In Clean Traffic Comes Out HP ESP – How we do
- 10. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.10 NX Platform 3-20Gbps Bypass Modules - 4x 1GbE 10/100/1000 (Copper) - 2x 1GbE SFP (Fiber) - 2x 10GbE SFP+ Market Leading 2U Port-Density with Swappable Modules
- 11. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.11 HP TippingPoint & integrations WebInspect
- 12. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.12 HP ESP Integration with Vulnerability Scanners & Nessus, Rapid7, … Native VA scan import
- 13. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.13 Why HP TippingPoint? Simple Easy-to-use, configure and install with centralized management Reliable NGIPS with 99.99999% network uptime track record Effective Industry leading security intelligence by DVLabs updates Integrated Policy Next Gen IPS Next Gen Firewall Security Research DVLabs, Reputation and feeds User and App policy
- 14. © Copyright 2015 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Thank you stay in touch: knapovsky@hp.com
Editor's Notes
- HP TippingPoint’s solution portfolio is very focused around real-time network defense and premiered in 2001 with the worlds first commercially successful network based Intrusion Prevention System - and is since then leading the industry in protecting against well-known and especially against yet unknown attacks against software vulnerabilities – so called zero-day-attacks or zero-Day-Exploits. Whereas the new Advanced Threat Appliance is focused on yet unknown malware, which is a very important aspect in fighting against sophisticated and targeted attacks.
- Main Points to Emphasize: NX is an extension of N The N Platform has been a great seller for TP but had some deficiencies which have kept us out of a lot of network core projects, particularly with increased adoption of 10GbE The NX isn’t here to replace the N – it’s here to augment a strong IPS line with models that have new feature benefits that will help us access even larger projects Same software features, and same support of DVLabs security intelligence feeds – just new HW features Slide detail 2 models, same chassis (and more models to come in the future) 4 slots, 4 module types The chassis picture represents just one possible combination of modules – but we’ve shown one of each type for reference