Fortinet Fortinet Security Fabric - Zastita.info
1y ago
17 Views
1 Downloads
5.44 MB
31 Pages
Report/dmca
Download PDF

Transcription

Fortinet – Fortinet Security FabricTomislav TucibatMajor Accounts Manager Adriatics Copyright Fortinet Inc. All rights reserved.

A Global Leader and Innovator in Network SecurityFortinet Quick FactsGlobal presence and customer base Customers: 280,000 Units shipped: 2.65 Million Offices: 80 worldwideRevenuePlatform Advantage built on key innovations FortiGuard: industry-leading threat research FortiOS: tightly integrated network security OS FortiASIC: custom ASIC-based architecture Market-leading technology: 320 patents, 258 pending20032015CashFounded November 2000, 1st product shipped 2002, IPO 2009HQ: Sunnyvale, CaliforniaEmployees: 4600 worldwideConsistent growth, gaining market shareStrong positive cash flow, profitable20032 / 312016

A Global Leader and Innovator in Network SecurityFortinet Rapid Innovation Sets The Pace Constant platform innovation - new ASICs, OS versions, integrations, and integratedfunctions Rapidly expanding product portfolio Industry firsts, industry 015FortinetFoundedBeganGlobal SalesFortiManagerNamedWW UTMLeaderFortiOS 3.0FortiWiFiFortiOS 4.0FortiAPFortiOS 5.0& SoC21st 40GbEPort SecurityApplianceNew HQInternalNetworkFirewall(INFW)FortiASIC NP61Tbps Firewall3.0FortiOS 2.0FortiGate &FortiOS 1.02.0FG-5000(ATCA)4.05.01st FortiASICNetworkProcessorIPONP1st FortiASICSystemOn A Chip1M UnitsShippedNP61st FortiASICContentProcessorFortiSandboxAWS UtilitySupportSoCCP1st 100GbEPort SecurityAppliance3 / 31

Fortinet aquires AccelOps4 / 31

FortiSIEMConfiguration, Policy & VisualizationFNDNFortiViewPerformance, Compliance & Security AnalyticsFortiManagerFortiCloudHolistic Threat Intelligence& Security OperationsFortiAnalyserSandboxFortiSIEMAPIFortinet DevicesCloudNon Fortinet DevicesCloud5 / 31

A Global Leader and Innovator in Network SecurityFortinet’s Proven Advantages Accelerating your business FAST» Custom ASICs radically increase throughput 5 – 10X other solutions» Security is no longer a bottleneck» Your critical information flows quickly, your users are satisfied Protecting your business SECURE» Our own global threat research team all in-house security technologies rapid and coordinated response to threats» Independently validated as highly effective vs. today’s advanced threats Simplifying your business GLOBAL»»»»»Unmatched coverage for all deployment scenariosConverged networking and security, consolidated security functionsOne scalable and versatile security platform one management consoleGlobal presence and infrastructure to support customers everywhereFaster deployment, lower admin burden, fewer security gaps worldwide6 / 31

Fortinet Advantage – FASTFortiASICs Dramatically Boost Performance6Gbps2Gbps3.5Gbps7 / 3110Gbps9GbpsIPSVPNCP 8BaselineNP 6FWFWVPNIPS40Gbps25GbpsIPS 10X data center firewall performanceFW 5X NGFW performance Security that keeps up withVPNgrowing bandwidth requirements

Fortinet Advantage – SECUREFortiGuard Labs Is An Industry Leader in Threat ResearchAwards & CertificationsPartnerships & Industry35 AwardsFounded by Fortinetadditional members include Palo Alto Networks, McAfee and Symantec8 / 31

Fortinet Advantage – SECUREFortiGuard Labs Threat ResearchPer Minute72,000Spam emails intercepted210,000Network Intrusion Attempts resisted68,000Malware programs neutralized310,000Malicious Website accesses blocked67,000Botnet C&C attempts thwarted34 millionWebsite categorization requestsPer Week53 millionNew & updated spam rulesTotal Database100Intrusion prevention rules150Terabytes of threat samples920,000New & updated AV definitions17,000Intrusion Prevention rules1 millionNew URL ratings5,800Application Control rules8,000Hours of threat research globally250 millionRated websites in 78 categories151Zero-day threats discoveredBased on Q4 2014 dataImage: threatmap.FortiGuard.com9 / 31

CPRL – SECURECompact Pattern Recognition Language Spots patterns in functionality and behavior (rather than justpatterns of bytes) 50% new malware detectedAUTO CPRL Created 200 signatures/day comparing to 2signatures/day done by the analyst10 / 31

Fortinet Advantage - GLOBAL InfrastructureBuilt To Support Enterprises WorldwideHQ & Development CenterDev. & Escalation CenterSupport CenterFDN server sitesSales OfficeIn-country Sales/Support38%EMEA Built to serve truly global customers Follow-the-sun support Balanced revenue across regions proves it41%Americas21%APACRevenue by Region, Q4 201411 / 31

EMEA Support Team (TAC)Sophia AntipolisDubaiPragueFrankfurt12 / 31BangaloreLondon

Unparalleled Independent 3rd Party CertificationFortinetCheck PointCiscoPalo AltoNetworksJuniperFireEyeNSS - Firewall NGFWRecommendedRecommendedRecommended& NeutralCautionCautionxNSS - Firewall DCRecommendedxxxxxNSS - Breach DetectionRecommendedxRecommendedxxCautionNSS - IPS (DC) xxCautionxNSS - IPS (Enterprise) xRecommendedxCautionxRecommendedxxxxxRecord High - 95xxPoor - 53xxICSA Firewall x xICSA IPS xxxxICSA Antivirus xxxxxICSA WAF xxxxxVB 100 CautionxxxxAV Comparative xxxxxCommon Criteria FIPS DescriptionNSS - WAFBreakingPoint ResiliencyContains results from the latest published NSS Labs reports as of Sept. 30 2014X did not participate, not certified13 / 31

NGFWNSS Labs NGFW 201614 / 31

Enterprise firewallE-mail securityGartnerWeb application firewallSIEMWifi15 / 31UTM

#1 in Network Security AppliancesUnit ShareFTNTCSCOCHKPJNPRPANW Gaining overallmarket share Gaining share inhigher-endmarketsFortiGate – most deployed security appliance16 / 31IDC Worldwide Security AppliancesTracker, March 2015 (based on annualunit shipments)

Security vision Copyright Fortinet Inc. All rights reserved.

The Attack Surface Has Increased DramaticallyToday’s Security is BorderlessMobile NetworkEndpoint ApplicationsCampus Data PeopleNGFWData CenterBranchOfficeDCFWUTMPoSIoTInternal18 / 31External

Fortinet Security Fabric – Protecting from IoT to CloudScalableGlobal IntelligenceAwareSecureActionableAlliance PartnersClient SecurityOpenIoTCloud SecurityFortinetSecurity FabricApplicationSecuritySecure LAN AccessLocalIntelligenceSecure WLAN AccessNetwork Security19 / 31

New OS 5.4 Copyright Fortinet Inc. All rights reserved.

Focus AreasISFAPTW21 / 31360o

APTSTANDALONE SANDBOXLIMITED INTEGRATIONTime to Protect: ?Play Safe!FORTINET ANTI-VIRUSTime to Protect: 4 Hours.5.4: FORTIGATE/WEB/MAIL FORTISANDBOXTime to Protect: 2-3 minutes.OutofBoundsDrive to ERCall Ambulance5.4: ENDPOINT FORTISANDBOXTime to Protect: 022 / 31

Dynamic Protection EcosystemAPTFORTISANDBOXQUERY1File Submission24File SubmissionDetailed Status ReportFile Status result for autoFile Hold & QuarantineFSA DynamicThreat DBUpdateFSA DynamicThreat DB Update11File submission for AnalysisRespective analysis results are returned223aR E M E D I AT I O N4Auto File Quarantine on Host with option to3a hold file until result3b Manual Host Quarantine by AdminManual Source IP Quarantine usingReal-time engine & intelligence updates3c FirewallFORTIGATEFORTICLIENTPROTECTION3b Control Host Quarantine43cEnforce Network Quarantine23 / 31Proactive dynamic Threat DB update togateway and host

a lot like a walled city People establishcommerceForm interactionsBuildingsRoadsEgress point24 / 31

Modern attacks happenINSIDE the city25 / 31

ISFBuilding BlocksWSECURCloudCloudE CESSEdgeGatewayLANAccessHome OfficeBranchOfficeWAN26 / 31CloudCloud

FortiView27 / 31

Product guide Copyright Fortinet Inc. All rights reserved.

Complete Network Security ENTATIONSECURITYSECURITYTHREAT INTELLIGENCE29 / 31NETWORKAPPLICATIONDATA

SECURITY OPERATING CENTER DATA CENTERUser IDMgmt.Central Log& reportCentralDevice mgmt.FileAnalysisCloud basedMgmt.DB ServersDB SecurityFortiCloudFortiAuthenticator FortiAnalyzer FortiManagerFortiWiFiMail SecurityGatewayFortiTesterSite-tosite VPNSecure WiFiAccessApp rtiSandBoxMail ServersSecuritygatewayFortiWANFortiMailLink LoadBalancerSecure WebCaching eVPNWiFiAccessIP Cam.RecorderIP PBXWeb iGateVoiceFortiTokenFortiClientFortiBridgeL7 D/DOSMitigator2 Factor OTPTokenMOBILEFortiCamera30 / 31FortiFoneFortiDDoSFortiWebFortiADCWeb Servers

Thank you!ttucibat@fortinet.com Copyright Fortinet Inc. All rights reserved.

Load Balancer WiFi Access Device IP PBX L2 Remote Switching VPN Endpoint Security Site-to-Secure WiFi site VPN Access Link Load Balancer DB Servers App Servers Mail Servers Web Servers FortiWiFi Failopen FortiBridge File Analysis User ID Mgmt. Central Log & report Central Device mgmt. FortiTeste r IP Cam. Recorder Network Tester L7 D/DOS Mitigator

Related Books

featuring SISU COLLECTION BY - Art Gallery Fabrics

featuring SISU COLLECTION BY - Art Gallery Fabrics

Improve Security Operations Across the Security Fabric - Fortinet

Improve Security Operations Across the Security Fabric - Fortinet

Wavelink's Fortinet Overlay Partner Program

Wavelink's Fortinet Overlay Partner Program

FortiGate 1800F Series - Fortinet Enterprise Security Without Compromise

FortiGate 1800F Series - Fortinet Enterprise Security Without Compromise

The Network Leaders Guide to Secure SD-WAN

The Network Leaders Guide to Secure SD-WAN

Big Data Fabric Architecture

Big Data Fabric Architecture

Brocade 6.4.0 Fabric OS MIB Reference - s.dell

Brocade 6.4.0 Fabric OS MIB Reference - s.dell

Partner Program Brochure North America - Fortinet

Partner Program Brochure North America - Fortinet

Fortinet Transceivers Datasheet - Beyaz

Fortinet Transceivers Datasheet - Beyaz

Fortinet Recommended Security Best Practices

Fortinet Recommended Security Best Practices

FortiGate/FortiWiFi 60F Series Data Sheet - OIXIO

FortiGate/FortiWiFi 60F Series Data Sheet - OIXIO

PopularTags

Recent Views