WIXLIB

Data SheetMcAfee Web GatewaySecurity. Connected Intelligence. Performance.McAfee Web Gateway Common criteria EAL2 and FIPS 140-2 Level 2certified.Available in multiplehardware models and as avirtual machine supportingVMware and MicrosoftHyper-V.Integrated withcomplementary Intel Security solutions includingMcAfee Advanced ThreatDefense and McAfee ThreatIntelligence Exchange.Rated number-one antimalware in a secure webgateway (AV-TEST).Organizations can do more over the web today than ever before. Today’sweb offers a dynamic, real-time user experience. However, the web has alsobecome a more dangerous place, with increasingly sophisticated attacksreleased every day. McAfee Web Gateway is a critical defense for anyorganization to protect against emerging malware threats. It empowersorganizations with secure Internet access while greatly reducing risk throughan advanced security approach that combines powerful, local intent analysiswith cloud-based protection powered by McAfee Labs.As Internet use and sophistication increases,so does the need for advanced web security.Even seemingly ‘safe’ sites can be targeted formalware distribution.In today’s world, simply blocking known virusesor restricting access to ‘known bad’ websitesis not enough. Reactive techniques, such assignature-based antivirus and category-onlyURL filtering—while necessary—are insufficientto protect access to cloud applications orcombat today’s exploits.Since these solutions focus on known contentand malicious objects or executables, they can’tprevent today’s attacks that hide malicious codewithin seemingly trustworthy HTTP or HTTPStraffic, or provide protection against unknown oremerging threats. The ability to enable secure,granular access to cloud applications, whileproactively blocking unknown as well as knownthreats, is crucial.Comprehensive Inbound and OutboundProtectionMcAfee Web Gateway delivers comprehensivesecurity for all aspects of web traffic inone high-performance appliance softwarearchitecture. For user-initiated web requests,McAfee Web Gateway first enforces anorganization’s Internet use policy. For allallowed traffic, it then uses local and globaltechniques to analyze the nature and intentof all content and active code entering thenetwork via the requested web pages, providingimmediate protection against malware andother hidden threats. And, unlike basic packetinspection techniques, McAfee Web Gatewaycan examine SSL traffic to provide in-depthprotection against malicious code or controlapplications that have been hidden throughencryption.

Data SheetInbound protection also mitigates risks fororganizations hosting websites that accept dataor document uploads from external sources.In reverse-proxy mode, McAfee Web Gatewayscans all content before it is uploaded, securingboth the server and the content.To secure outbound traffic, McAfee WebGateway uses industry-leading Intel SecurityData Loss Protection technology to scan usergenerated content on all key web protocolsincluding HTTP, HTTPS, and FTP. It alsoprotects against loss of confidential, sensitive,or regulated information leaking from theorganization through social networking sites,blogs, wikis, or online productivity tools suchas web-based mail, organizers, and calendars.McAfee Web Gateway further safeguards againstunauthorized data leaving the organizationthrough ‘bot-infected’ machines attempting tophone home or transmit sensitive data. McAfee Web Gateway Delivers theIndustry’s Best ProtectionAs the number one-rated1 web security solutionin malware protection, McAfee Web Gatewayuses a patented approach to signaturelessintent analysis with the McAfee Gateway AntiMalware Engine. Proactive intent analysis filtersout previously unknown, or zero-day maliciouscontent from web traffic in real time. Byscanning a web page’s active content, emulatingand understanding its behavior, and predictingits intent, McAfee Web Gateway prevents thedelivery of zero-day malware to endpoints,dramatically reducing the costs associated withsystem cleanup and remediation.We combine this analysis with Intel Securityantivirus and global reputation technologiesfrom McAfee Labs to quickly block knownmalware and malicious sites. Use of multipletechnologies enables McAfee Web Gateway toprovide greater protection while optimizingsecurity on a single platform with different, yetcomplementary, technologies—somethingmany organizations demand for their defensein-depth security approaches.McAfee Web Gateway McAfee Antivirus with real-timeMcAfee Global Threat Intelligence(McAfee GTI) file reputation: Cloudbased McAfee GTI file reputationlook-up closes the gap betweenvirus discovery and system update/protection.McAfee GTI web reputation and webcategorization: McAfee Web Gatewaydelivers web filtering functionalityand protection through the powerfulcombination of both reputation andcategory-based filtering. McAfee GTIcreates a profile of all Internet entities—websites, email, and IP addresses—based on hundreds of differentattributes gathered from the massive,global data-collection capabilitiesof McAfee Labs. It then assigns areputation score based on the securityrisk posed, enabling administrators toapply very granular rules about what topermit or deny.Geolocation: McAfee Web Gatewayfeatures geolocation, enablinggeographic visibility and policymanagement based on the web trafficand user’s originating country.For both web categorization and webreputation, organizations can choosebetween on-premises and cloud lookups, or acombination of both. Cloud lookups eliminateprotection gaps between discovery/change andsystem updates, along with delivering broadcoverage through data on hundreds of millionsof unique malware samples.Advanced Threat Defense integrationMcAfee Web Gateway integrates with McAfeeAdvanced Threat Defense—the advancedmalware detection technology from IntelSecurity that combines customizablesandboxing with in-depth static code analysis.Advanced Threat Defense together with thein-line scanning capabilities of the GatewayAnti-Malware Engine in McAfee Web Gatewayprovide the strongest protection solutionavailable for Internet-delivered threats.2

Data SheetThreat Intelligence sharingToday, many organization’s security architectureexists in silos, not built to share threatintelligence between each other despite keyintelligence existing at the endpoint, network,security information and event management(SIEM) solution, gateway, and more. Whenshared, this intelligence can be utilized forbetter protection against threats, detectionof existing breaches, and efficient correctionof compromised systems. However, throughMcAfee Threat Intelligence Exchange, IntelSecurity solutions—including McAfee WebGateway—share intelligence with each otherto bridge these gaps. McAfee Web Gatewaydelivers immense value in this process bycreating and sharing new file reputations forzero-day malware discovered by the GatewayAnti-Malware engine, allowing, for example,endpoint devices to be protected before a newDAT is released. Additionally, more threatsare stopped by McAfee Web Gateway withexpanded threat intelligence delivered fromMcAfee Threat Intelligence Exchange.Protection for encrypted trafficSophisticated cybercriminals have turned toSSL traffic (HTTPS) as a back door through theenterprise security barrier. Ironically, a protocoldesigned to provide security must also beassessed for risk. McAfee Web Gateway is thefirst security product to fully integrate malwaredetection, SSL inspection, and certificatevalidation. There’s no need to route encryptedtraffic to a separate box for SSL inspection.McAfee Web Gateway directly scans all SSLtraffic to ensure the complete security, integrity,and privacy of encrypted transactions.Data loss preventionMcAfee Web Gateway protects organizationsfrom outbound threats—such as leakageof confidential information—by scanningoutbound content over all key web protocols,including SSL. This makes it a powerful tool forpreventing intellectual property loss, ensuringand documenting regulatory compliance, andproviding forensic data in the event of a breach.McAfee Web GatewayLeveraging the power of the McAfee Data LossPrevention (DLP) solution set, McAfee WebGateway includes built-in, predefined DLPdictionaries and enables custom dictionaries tobe created through keyword matching and/orregular expressions.For organizations that utilize cloud-basedstorage, built-in file encryption protects datathat is uploaded to file sharing/collaborationsites against unauthorized access. Users cannotretrieve and view the data without goingthrough the Web Gateway.Protection for off-network usersAs the workforce becomes more distributedand mobile, the need for web filtering andprotection while seamlessly transitioning fromthe office to the road becomes increasinglyimportant. McAfee Client Proxy, a tamperresistant client agent, enables roaming users toseamlessly authenticate and redirect to eitheran on-premises Web Gateway located in a DMZor the McAfee Web Gateway Cloud Service. Thisenables Internet access policy enforcement andfull security scanning to be applied to roamingor remotely located users, even if their Internetaccess is via a public portal, such as at a coffeeshop, hotel, or other Wi-Fi hotspot.McAfee Web Gateway also allows enterprisesto extend and enforce their security policieson mobile devices by directing web trafficto McAfee Web Gateway. Through standarddevice management and security controls,Web Gateway ensures that mobile devicesare secured with advanced anti-malwareprotection and corporate web filtering policies.It also extends protection to mobile devicesaccessing content that is traditionally availableon internal corporate servers such as intranets,wikis, Microsoft SharePoint servers, and otherweb-based solutions. While this information isgenerally not made available to certain mobiledevices due to security concerns, McAfee WebGateway deployed as a reverse proxy canenable controlled and secure access to theseinternal resources.3