2018年2月27日,中国北京 – 专门为网络安全和监测应用提供流量可视化解决方案的领导厂商Gigamon近日宣布推出业界首个针对100Gb和40Gb网络支持SSL/TLS解密的可视化解决方案。作为GigaSECURE 安全交付平台的组成部分,这一方案助力企业实现对数据的解密和再加密,并借助多个先进安全工具对其进行检测。此外,这一方案有助于发现隐藏于SSL/TLS会话中的威胁、降低安全工具负载、提高现有安全工具的使用价值和投资回报率。
最近几年,流经企业网络的数据流量大幅增加,很多中国企业都已升级到40Gb和100Gb网络。同时,在这些高速网络上传输的加密数据在数量上陡然提升,主要原因是包括Microsoft Office365和Dropbox在内的大量SaaS服务投入使用。据市场调研公司Gartner预测,到2019年,超过80%的企业网络流量将采用加密方式。
Gigamon产品副总裁Ananda Rajagopal 表示,“传统网络安全架构已经无法支撑高速流量的爆炸性增长,更重要的是,无法识别并阻截那些使用了加密技术的恶意软件和数据泄露事件。在100Gb网络环境中,许多安全和监测工具出现过载现象,人们对安全监测新方法的需求迫在眉睫。Gigamon最新方案帮助企业将边缘网络的安全工具重新部署于核心网络中,避免了求大求全,从而更加专注于发现横向攻击并快速识别威胁。”
恶意软件利用SSL/TLS加密来隐藏自己、逃避监测。根据一份2017年受信软件报告估算,有36%的恶意软件样本采用了某些加密方式。在40Gb和100Gb网络中,解密、揭露并且识别加密流量里的隐藏威胁,难度越来越大,因为大多数安全和监测工具并不支持如此高的网速。此外,“工具连工具”方式太过复杂、成本较高、效率较差。来自NSS Labs的研究显示,当安全工具在解密流量并发挥特定安全功能时,性能下降高达80%。
Check Point Software 业务和公司发展总监Jason Min表示,“借助Check Point能够管理全球下一代威胁防御网管的Infinity架构,Gigamon提供全球领先的性能和弹性安全架构,可实现对大型客户部署的串接SSL保护。我们与Gigamon的合作,可提供独一无二的性能表现和高级威胁防御,助力企业用户应对隐藏网络威胁。”
Arrow Electronics 企业计算解决方案业务单元安全业务组副总裁Matt Rochford表示,“Gigamon将‘一次解密多次检测’架构方法引入串接SSL解密,这一做法相当有效,可帮助我们的客户以及方案提供商社区充分利用安全方案带来的好处,满足业务需要,对此我们深感振奋。”
GigaSECURE安全交付平台的扩展,是对2015年开始执行的Gigamon安全战略的延续。2016年,该战略扩展至元数据和公有云可视化。2017年,Gigamon公布串接SSL/TLS解密方案并推出Defender Lifecycle Model。该模块部署后,可帮助安全从业人员使用持续性网络可视化功能实现对工具间任务的管控和自动更新,实现防御、检测、预测以及抑制阶段的持续运行。此外,2017年Gigamon推出了公有云服务以及Splunk和Phantom全新应用来实现对Defender Lifecycle Model的支持。Gigamon将继续为公有云和本地基础设施提供或扩展安全服务。
About Gigamon
Gigamon® (NYSE: GIMO) provides active visibility into physical and virtual network traffic, enabling stronger security and superior performance. The Gigamon Visibility Platform and the GigaSECURE® Security Delivery Platform, deliver advanced intelligence so that security, network, and application performance management solutions in enterprise, government, and service provider networks operate more efficiently and effectively. Learn more at www.gigamon.com, the Gigamon blog or follow Gigamon on Twitter, LinkedIn or Facebook. See What Matters. ™
# # #
Legal Notice Regarding Forward Looking Statements
This press release contains forward-looking statements within the meaning of Section 27A of the Securities Act of 1933 and Section 21E of the Securities Exchange Act of 1934. Forward-looking statements generally relate to future events or our future financial or operating performance. In some cases, you can identify forward-looking statements because they contain words such as "may," "will," "should," "expects," "plans," "anticipates," "could," "intends," "target," "projects," "contemplates," "believes," "estimates," "predicts," "potential" or "continue" or the negative of these words or other similar terms or expressions that concern our expectations, strategy, plans or intentions. Forward-looking statements in this press release include, but are not limited to, potential benefits for a customer of the new product offerings, and goals and expectations for the GigaSECURE Security Delivery Platform, and the Defender Lifecycle Model. Our expectations and beliefs regarding these matters may not materialize, and actual results in future periods are subject to risks and uncertainties that could cause actual results to differ materially from those projected. These risks include our ability to continue to deliver and improve our products and general market, political, economic and business conditions. The forward-looking statements contained in this press release are also subject to other risks and uncertainties, including those more fully described in our filings with the Securities and Exchange Commission, including our Annual Report on Form 10-K for the period ended December 31, 2016 and most recent Quarterly Report on Form 10-Q. The forward-looking statements in this press release are based on information available to Gigamon as of the date hereof, and Gigamon disclaims any obligation to update any forward-looking statements, except as required by law.
i Source: Gartner “Predicts 2017: Network and Gateway Security”, Lawrence Orans, Adam Hils, Jeremy D’Hoinne, Eric Ahlm, December 13, 2016
ii Source: 2017 Trustwave Global Security Report
iii Source: NSS Labs Analyst Brief: SSL Performance Problems