iPrism Web Filter

Antivirus and Malware Protection:

Spyware Filter, Malware Protection & Antivirus Stops Malicious Threats
No one has to tell you how time-consuming and dangerous spyware and malware infections can be. Once they invade your network, they are notoriously difficult to defeat. Ads, pop-up windows or malicious agents can be delivered via a number of routes - the Internet, email or IM. These malicious agents can damage your networks and workstations or slow operations to a crawl. They can turn your PCs into "zombies" that spew spam from your company to other victims, causing your domain to be blacklisted. Overworked IT administrators are left to deal with employee complaints and the degradation of network performance.

These destructive agents can enter your network via your Internet access in number of ways:

• Spyware/Malware Infected Sites - employees or students visiting infected sites can unwittingly download destructive agents.
• Instant Messaging (IM) - The popularity of IM has made it an easy vehicle for the delivery of viruses, spyware, phishing scams and other malicious Internet-based threats
• Peer-to-Peer Networking (P2P) - P2P can deliver damaging agents as well as provide a way for someone to export proprietary customer, product, and financial data
• Device Hacking - One of the easiest ways for hackers to gain access to your network is to find a vulnerable point/device on your network and focus the attack there.

iPrism with Multilayered Antivirus is the Best Defense

The iPrism Web Filter, powered by the high-performance h-Series appliances defends against Internet-based threats at the perimeter, before they can get near your network.

Blocks IM and P2P
iPrism blocks IM and P2P applications and has a spyware filter to ensure you have malware protection. Trojans and phishing are blocked long before they can harm your networks and systems. In addition, iPrism keeps proprietary data and sensitive customer information from leaving your company. Your intellectual property and customer records are always secure.

iPrism has Never Been Hacked
The iPrism h-Series of appliances, with its proprietary hardened and optimized technology, has never been hacked by either external or internal agents. And iPrism doesn't require you to patch the OS or the application on a monthly basis to ensure this high standard of security

Multi-layered Antivirus
iPrism Web Filter offers onboard Antivirus for robust, accurate and comprehensive defense against viruses and gives you malware protection. Even if you are already using an antivirus solution, iPrism antivirus adds another layer of security by scanning all incoming HTTP traffic and blocking malware before it can reach your end-users. The iPrism antivirus runs "on-box", meaning simple deployment and management, and no extra hardware is required. Plus, you get even more protection because the powerful and proprietary iGuard database also has a spyware filter and built-in malware protection.

Real-time scanning -- With millions of users worldwide, iPrism antivirus is continually scanning to identify and block malicious agents. To date, more than 450,000 agents have been identified and blocked.

Unsurpassed Accuracy - the iPrism antivirus engine uses a four-factor detection system that virtually eliminates false positives and false negatives, streamlining performance in critical high-throughput environments

Four Factor Detection:

• Signatures -- iPrism antivirus signature database is the largest on record with well over 450,000 discrete pieces of malicious code identified.
• Advanced Heuristics -- iPrism antivirus scans virus files for program instructions and notes that represent the essential damaging behavior. iPrism antivirus advanced heuristics technology helps to limit the size of antivirus definition files and keeps iPrism ahead of the virus creators.
• Emulation - iPrism antivirus can simulate execution of a program and see which Windows operating system calls the program attempts. This allows our Antivirus engine to identify malicious behavior in a safe environment separate from the host operating system.
• Neural Network Detection -- iPrism antivirus works intelligently, learning from the behaviors and characteristics of identified malware code to identify and block new threats.

The four factor detection works to make sure the spyware filter, malware protection and antivirus stop threats from entering the network perimeter.

Employee Productivity:

Business Internet Filters Increase Employee Productivity
"Video snacking", job search, IM chat, webmail, blogging, file sharing, shopping, streaming music/video, online gaming... there are a lot of ways for your employees to waste time at work and each of them is a compelling reason for your organization to have a business internet filtering solution. However, if you rely only on an AUP, you can set an expectation, but it does nothing to enforce the internet policy and combat productivity loss.

The iPrism Web Filter is a powerful business internet filter that enforces your AUP, ensuring that the resources you provide your users help them achieve business goals, not undermine them through loss of productivity. Employee Internet abuse is not going away. According to a recent poll by the Computer Security Institute, 78 percent of companies surveyed reported employee abuse of Internet privileges.

Non-Business Related Surfing -- Using the Internet for personal pursuits erodes productivity and can consume network bandwidth. Every new "Tube Storm" that has half your employees watching the same video at their desks can cripple your network. And "video snacking" means that lunch time now equals down time for your business applications.

Inappropriate Content -- Web sites with pornographic, racist, violent or hostile subject matter can have serious consequences when accessed by employees at work. Many companies have had to deal with lawsuits brought as the result of employees downloading objectionable material. Schools are required by CIPA (Child Internet Protection Act) to protect students from harmful content or risk losing critical e-Rate funds.

Spyware/Malware -- These threats have been highly successful at draining system resources and even crippling machines. Maximizing your users' productivity with a business internet filter becomes impossible when their systems are struggling to open applications. They can also drain your IT resources trying to repair the damage they inflict.

Anonymizer Sites -- These sites allow users to cloak their identity by accessing the internet through special sites that give them anonymity, and more importantly, attempt to subvert your acceptable use policy. Schools must contend with students' attempts to bypass Internet filters via anonymizer sites.

Peer-to-Peer Networking (P2P) -- While it is relatively easy to set up a P2P network, it's difficult to track down that song or movie you are looking for. Users can spend hours finding and downloading their media wish lists, putting your business goals at risk.

iPrism Prevents Productivity Loss

The iPrism Web Filter gives you the tools you need to enforce your AUP and assure that your sensitive data and intellectual property are protected from employee threat whether intentional or accidental. Only iPrism delivers the flexibility and power you need in a business internet filter to keep your employees and students on-task while protecting your network:

• Stops threats from spyware, malware, P2P and inappropriate content
• iPrism offers the best anonymizer defense in the industry with unrivalled proxy blocking and real time anonymizer detection
• Exclusive four-factored antivirus keeps your network safe from both inadvertent and/or intentional virus and malware attacks
• Comprehensive on-box reporting and real-time monitoring give you visibility into online behavior with views of both historical and real time Internet activity across your organization. Learn more about Employee Monitoring.

Anonymizer Defense:

Block Anonymous Web Surfing and Proxy Sites

The Only Multi-Layered Solution that Stops Proxy Sites and UltraSurf
The iPrism Web Filter employs an unparalleled multi-layered approach that combines human-reviewed URL classification, deep packet inspection and unique proxy site blocking to deliver the most effective way to block anonymous web surfing protection on the market.

iPrism Web Filter's powerful anonymous web surfing and proxy site defense surpasses all competitors:

• Spoofed SSL: iPrism detects and blocks anonymous internet traffic that tries to spoof secure traffic. This can occur because HTTPS (SSL) traffic on Port 443 is strictly enforced by default.
• Dynamic Proxy Site Detection: With iPrism's on-the-fly proxy site detection administrators can run reports to show what anonymizers were blocked including proxy blocking of:
  • UltraSurf domain
  • The Google-web-accelerator domain
  • The http-proxy domain
• Real-time Updates: Proxy URLs are collected and message groups are monitored daily for new anonymizers. These results are distributed via iGuard URL database updates as prequalified websites.
• Active Domain IP Address Mapping: The ability to circumvent iPrism using IP addresses is blocked with this mapping feature. iPrism dynamically cross-references each IP address to its corresponding domain thwarting even the most sophisticated attempts to obscure Web surfing and access forbidden sites.

Stronger Defense with Deep Packet Inspection
iPrism Web Filter employs artificial intelligence agents in the iPrism operating system to analyze patterns in the request URL. When the data forensics detects a suspicious pattern, it dynamically blocks access to the proxy site. The iGuard team also actively identifies unique and consistent patterns to assist in dynamic real-time classification. iGuard's current pattern list provides excellent coverage for proxy packages such as PHPProxy and CGIProxy. Pattern updates are published in the critical hourly filter updates to all iPrism customers.

iPrism's Unrivalled URL Blocking
iPrism's multilayered approach includes the powerful iGuard 100% human-reviewed database, which includes thousands of anonymous web sites that you can block through a simple category check. And because the iGuard database is continuously being updated, new anonymizer sites are identified and downloaded to your iPrism daily.

What are Anonymizers?

Anonymizers are web-based proxy servers that forward client requests to other servers. Their popular appeal lies in the fact that they remove identifying information of the user before they take them to a site.

The Threats Posed by Anonymizers

• In schools and libraries, anonymizers are the most popular tool students use to access top social Web destinations such as YouTube, MySpace and Facebook, typically blocked by school IT staffs
• CIPA violations resulting from anonymizer use by students can jeopardize a school qualifying for critical e-Rate funds
• In the workplace, anonymizers give employees access to offensive or illegal content by making end-runs around corporate network defenses. Even if these events are isolated, they can precipitate costly and public lawsuits if co-workers are exposed to harmful content
• Violations of acceptable use and security policies can have serious legal and regulatory consequences for organizations that fail to protect their workers from inappropriate content or data theft
• Anonymizers create huge network security holes, hacker portals for data theft, spyware, viruses and worms
• Anonymizer sites and fringe sites that offer illegal or offensive content often covertly deliver malware. Even if the original computer user logs off, the machine can start delivering offensive popups to other users who log on to that computer.

Legal Liability:

Acceptable Use Policies (AUP) protect against Legal Liability

With a clear and concise Acceptable Use Policy (AUP), your organization establishes rules on how resources such as the Internet are to be used. As Internet-based threats have grown over the years, so has the risk of legal liability. It's no longer a game of controlling only one kind of communication (HTTP traffic), because now there are more ways to connect your employees with the world outside your network. This has given rise to growing legal concerns - enough to warrant state and federal legislation requiring compliance.

You could be contending with both internal and external forces in trying to manage your employees' Internet habits. External forces use blended threats to try and lure users to inappropriate Web surfing, while a lack of internal vigilance leads to Internet abuse inside your organization. Your risk of liability has consequences extending from the financial losses of legal fees and fines to the sting of negative publicity and/or scandal. The resulting damage can last indefinitely. That's why the best way to protect yourself is with a comprehensive acceptable use policy (aup).

The iPrism Web Filter is a powerful and reliable solution that allows you to protect your organization from both internal and external risks of liability associated with Internet access. iPrism is a tool that can help you enforce your acceptable use policy (aup).

Non-Business Related Surfing
Employees accessing offensive or illegal content are not only wasting time, their actions can result in lawsuits. These sites may also deliver spyware or adware applications that are difficult to eradicate. Often even if the offending user logs off, the machine can start delivering offensive pop-ups to other users who log in. Acceptable use policies (aup) help to make it clear to employees about what is and isn't allowed when it comes to Internet use.

Spyware and Malware
Most state/federal compliance legislation mandates severe consequences for the failure to protect sensitive and proprietary data. Spyware and malware are threats because all it takes is one key-logger to provide an outside entity with the login and password to your systems for your legal headaches to begin. Browser hijackers can easily send unsuspecting users to sites containing inappropriate content - a particularly dangerous liability risk for organizations that serve minors. Learn more about iPrism's mult-layered Antivirus protection.

Peer-to-Peer
If users are using P2P networks to store and traffic copyright software or media, your organization is responsible for their actions. If you are subject to state/federal legislation that requires you to be compliant with securing your customer, patient, user, and other data from being exploited, P2P networking represents a huge liability as it gives external agents a direct route into your network where they can commit cyber vandalism or theft.

e-Policy Enforcement:

An Effective Internet Use Policy Begins with a Comprehensive AUP

The damage caused by Internet-borne attacks or the abuse of electronic protocols can have a huge impact on your bottom line. These risks can be in the form of viruses and malware delivered via Web, email or P2P programs or it can involve legal liability associated with objectionable content. In addition, without an internet policy, the loss of intellectual property, whether intentional or not, can cost companies millions in lost revenue, while jeopardizing confidential customer data can result in lawsuits, or at the least, substantial regulatory fines.

The threats posed by e-communications can be varied and complex requiring that your defense strategies be multi-layered to assure you are protecting your organization at all levels of entry and exit. You want to stop damaging attacks to your networks, systems and employees while you block exits portals for intellectual property or sensitive customer data.

Writing an Effective Internet Policy
Writing a comprehensive internet policy is the essential first step in developing an e-communications defense that works. Without an internet use policy on paper, signed by everyone in your organization with access to the Internet, email or IM, you won't have any leverage if security breaches occur. An AUP also serves as a deterrent and a warning to users that intentional misuse of e-communications protocols will not be tolerated.

Get the ePolicy Guide with Free AUP Templates
Our comprehensive ePolicy Guide can help you formulate the precise AUP, or internet policy, your company requires and even includes templates you can use to create an AUP or update the one you have. Here are some highlights from this important internet use policy guide:

• Putting Best Practices to Work with the 3-Es of Electronic Risk Management
• Banning Inappropriate Sites & Prohibit Wasted Resources and Productivity
• Battling People Problems With Technology Solutions
• Managing P2P Risk with Policy and Technology
• Controlling Email Risk By Controlling Written Content
• Monitoring IM To Manage Risk, Prevent Disasters
• Enforcing Language Guidelines to Limit Sexual Harassment Claims
• The Do's & Don'ts of Strategic Electronic Management

Mobile Filtering:

The ability to filter your employees' Internet access whether they are working in the office, telecommuting from home, on the road or in a remote location, has made mobile filtering more critical than ever. The growth of mobile devices and a movement toward more flexible work environments has influenced a trend that was already well underway. Now, it is expected that employees and students can log on to your corporate or school networks from anywhere they might be - at home, in a coffee shop or waiting for a plane. This can enhance productivity, communications and convenience but it won't work unless you can insure that your Web access policies are enforced no matter where users are located.

Mobile Filter for Remote Users

Making sure your Acceptable Use Policy (AUP) is enforced for employees and fulfilling school CIPA requirements is easy with the iPrism Web Filter. By proxying your users through a VPN (virtual private network) they can access your network and the Internet and their session will be monitored and blocked the same as if they were at your location. Setting up a proxy to the iPrism from mobile users is easy using your corporate or school VPN. Below is an illustration of proxying to iPrism.

Mobile Filter Proxy Diagram

• Mobile device establishes an HTTP Proxy connection to the iPrism mobile filter. iPrism is configured to present the web proxy via the external interface. Customer firewall rules must be modified to allow proxy connections.
• Only Web traffic is filtered (HTTP, HTTPS) through the remote filter, not IM/P2P
  iPrism mobile filtering and remote filtering is supported for both Transparent-Mode (Bridge) and Proxy-Mode

Regulatory Compliance:

Legislative Regulations are Here to Stay

Regulatory legislation is here to stay because the majority of data gathered and compiled by organizations is now in electronic format. While this has made storage and transmission of this information more efficient, it has also provided more opportunities for data to be lost, stolen or corrupted. In order to protect sensitive customer and patient data and safeguard intellectual property, the US Congress has passed a number of laws governing how this data is to be secured. These laws are applicable to almost every industry including financial institutions, medical organizations, government entities and businesses of all kinds. In addition to protecting data, these organizations must be able to document that they are in compliance.

The onus for assuring compliance typically falls on IT professionals who must prove that their systems and networks are secure and that client/patient data, accurate financial statements, intellectual property and other sensitive records can be secured and transmitted in pristine condition and protected from internet-based threats such as viruses and worms.

Some regulations provide detailed requirements for the written security and privacy policies an organization must provide, while other regulations are less specific, requiring only that safeguards be "appropriate" depending on the size of the organization and the type of activity it conducts.

iPrism Web Filter Helps Your Organization Comply with Regulations:

No matter what regulations govern your organization's activities, the ability to protect your sensitive and proprietary records is paramount to your fiscal health. Lack of compliance carries serious consequences including substantial fines and litigation that can directly affect your bottom line. The iPrism Web Filter not only secures your network against Internet-based threats to your data from malware, P2P and IM, it provides comprehensive drill-down and real time monitoring and reporting that can help you document your compliance and consistently stay within the boundaries of the legislation affecting your organization

The following is a table that contains a list of key regulations, the industries they affect and their general policy requirements: