Finjan Bolsters Its Real-Time Web Security Solution

Finjan announced the release of Vital Security Version 8.5 for all of its web security appliances. This product has being showcased by Finjan at the Gartner IT Security Summit on June 4-6.

Key highlights of this product release include integrated “in-box” scanning of SSL traffic, scalable and secure user authentication, reporting enhancements, Skype blocking and data leakage prevention. Version 8.5 extends the real-time capabilities of Finjan’s web security solution, proven in the field to deliver the highest rate of malicious code detection.

HTTPS traffic has become an increasingly popular avenue of attack into networks. Version 8.5 provides real-time protection against potentially malicious web content in encrypted HTTPS/SSL traffic (e.g., webmail, e-commerce sites) without requiring a dedicated appliance.

Finjan decrypts SSL data at the gateway, analyzes the code using patented real-time content inspection and re-encrypts it – all within the appliance. Finjan offers a web security solution capable of truly understanding the intent of encrypted (SSL) traffic, thus delivering unmatched security with end-to-end encryption. HTTPS, HTTP and FTP traffic are managed in a consolidated manner via a unified user interface.

Finjan’s web security solution enables enterprises to block IM applications that use HTTP (AOL/ICQ, MSN, Yahoo), as well as Skype which uses a dedicated port. In the case of Skype, if an organization chooses to block Skype traffic at the corporate firewall, it will automatically revert to HTTPS.

Since Finjan is able to inspect HTTPS traffic, Skype over HTTPS can also be blocked by the web appliance. Finjan helps organizations manage risks associated with data leakage by blocking outbound MS Office documents (e.g., during uploading to a webmail server) as part of the default security policy.

Through these new features and other security enhancements, including the ability to detect potentially malicious content in audio files (e.g. mp3), Finjan Vital Security Web Appliance prevents malicious web content from entering the corporate network.

On the management side, Version 8.5 includes the addition of a secure and scalable authentication device, supporting multiple operating systems and Active Directory (AD) domains without requiring an AD server plug-in. Deployed in the '”militarized zone,” this device flexibly enables the creation and enforcement of identification policies based on port, user-selected URL, or the originating IP of the user.

These capabilities are particularly beneficial for topologies including multiple sites, different authentication methods and several AD servers or domains. The system’s extensive reporting and logging capabilities have been enhanced with a new set of management-level reports that address high level issues such as compliance, productivity and risk assessment, web security, usage of IM and P2P, IT Operations and network traffic analysis. These reports empower organizations to monitor ROI on their security solution and to track security trends.

“Finjan continues to invest major efforts to ensure that our web security solution meets the changing requirements of enterprises in terms of security, manageability, reporting and performance. Version 8.5 further strengthens the capabilities of our solution to address today’s sophisticated web threats, protecting the valuable information assets of our customers. In addition, enhanced management tools and reporting enable enterprises to make the most of their security investment, while streamlining network operations and maximizing user productivity,” said Dan Frommer, VP Products at Finjan.