• Advanced Threat Detection and Mitigation • Data Loss Protection • Malware and Botnet Security • Threat & Event Reporting

Product Brochure

iboss SWG IPDS/DLP/Threat System • Advanced Threat Detection and Mitigation • Data Loss Protection • Malware and Botnet Security • Threat & Event Reporting

www.iboss.com Phantom Technologies, Inc. DBA iboss SWG Web Filter (P) 877.742.6832 [email protected] U.S. HQ 9950 Summers Ridge Rd., Bldg. 160 San Diego, CA 92121 © 2013 All rights reserved. Phantom Technologies, Inc. DBA iboss SWG Web Filter. iboss and Phantom Technologies are trademarks of Phantom Technologies, Inc. All other trademarks are the property of their respective owners. Condential – for intended recipients only. Distribution to third party is prohibited without prior written authorization. iboss SWG IPDS/DLP/Threat System

The iboss SWG Suite Choose an all-in-one solution, or custo- iboss Network Security mize the suite to your network’s needs. There’s no doubt that cyber threats are more sophisticated • Web Filter than ever, and they’re getting more complex and covert • Malware/DLP/Threat every day. Those threats, in addition to malware, data loss • Next-Generation Firewall and the new potential for network peripherals “phoning • Threat & Event Console • MDM & EMM home,” have eroded the e ectiveness of current log-based • Mobile Security threat detection and reporting. The iboss SWG IDPS/Threat/ • Email Spam Boss DLP System changes how we approach threat identication • Email Archiver and mitigation by identifying with whom and where your network is communicating on a global map to identify About iboss Network Security, a division of Phantom Technologies, Inc. threats proactively and prevent data loss. Founded in 2003, Phantom Technologies, Inc. is a global provider of network The SWG IPDS/DLP/Threat System is a key component to security solutions. Its iboss Network Security line of products deliver network providing a secure web gateway for the organization. With trac insight and threat mitigation. Proprietary engineering powerfully iboss SWG products centrally reporting to the SWG Threat secures high-demand networks for web and Event Reporter, networks gain exclusive features such content management, intrusion, mobile device security and management, and as threat GeoMapping and heat map technology. iboss SWG email security. provides end-to-end security across all aspects of network To learn more about our services: www.iboss.com trac and presents a 360-degree view across all user activ- Main: 1-877-742-6832 ext. 1 ity. From web access to malware and threat mitigation, iboss Support: 1-858-568-7051 ext. 3 SWG products provide regulatory and auditing compliance, iboss Network Security is recognized by reducing the total cost of ownership (TCO). Gartner, the world’s leading information technology research and advisory company. In addition to Gartner, iboss has received numerous awards related to web ltering and Internet security.

OVERALL RATING Features Ease of Use Performance Documentation Support Value for Money www.iboss.com Phantom Technologies, Inc. DBA iboss SWG Web Filter (P) 877.742.6832 [email protected] U.S. HQ 9950 Summers Ridge Rd., Bldg. 160 San Diego, CA 92121 © 2013 All rights reserved. Phantom Technologies, Inc. DBA iboss SWG Web Filter. iboss and Phantom Technologies are trademarks of Phantom Technologies, Inc. All other trademarks are the property of their respective owners. Condential – for intended recipients only. Distribution to third party is prohibited without prior written authorization. SWG IDPS/DLP/Threat System Intrusion Detection/Protection, Data Loss, & Malware

FEATURES Issue: New cyber threats are emerging every second, and your network resources are under Intrusion Detection and Prevention constant attack. Threats such as Trojans, botnets, malware and exposed data like unen- • Stateful signature and heuristic-based crypted SSN and credit card information can hide among the millions of packets owing detection scan for attack patterns and through your network. These threats expose the network and communicate sensitive network anomalies. information to hosts around the world. You need a method to identify and prevent these • Thwart attacks such as network probes threats immediately and e ectively. and port scans. • Application aware-enforce Solution: iboss SWG Intrusion Detection, Prevention (IDPS) and Data Loss Prevention System policies based on applications. (DLP) actively scans your network through Layer 7 and across all 65,535 ports, utilizing Malware/Botnets/Threats signatures and heuristics to identify and prevent threats and sensitive data loss. E ortlessly • Zero-day blended malware/botnet sorting through the millions of packets owing through your network, the iboss SWG Threat signature databases. and& Event Reporter dynamically tracks threats through its exclusive GeoMapping technol- • Detect and mitigate threats at the ogy. The iboss SWG GeoMapping technology maps with whom your network is communicat- gateway. ing, allowing you to identify potential threats by viewing them on dynamic world maps. This • Instantly identify at–risk users and technology provides unmatched network insight, shortening threat responses while reduc- machines on the network. ing the time spent reviewing logs. • Deep HTML analysis prevents hidden threats embedded deep within web pages. Mobile IPS Malware DLP Security IDS Data Loss Prevention and Compliance • Scan user-generated content on key Firewall web protocols. • Prevent condential and suspect Mobile Devices information from leaking out of the organization. • Secure data leaks on blogs, wikis and Networks application sites. Virus • Mitigate data loss by blocking Internet transmission. • Detailed reports of condential and suspect information including originating user identied. iboss SWG IDPS Secure Mobile and BYOD Users • Protect against botnet, malware, DLP, Beyond Port-Based Security: Intrusion Detection, Prevention, and threats introduced by BYOD users. and Data Loss Protection • Secure mobile devices on or o premise against data loss, malware, The ever-growing need to access more of the web for essential operational functions is and threats. eroding the e ectiveness of port-based rewalls. To guarantee uninterrupted operations, SWG Threat and Event Reporter we need make sure access to “mission critical” web and applications remains uninterrupted • Integration with SWG Threat & Event while simultaneously identifying and e ectively mitigating hidden threats. The integrated Reporter. Intrusion Detection, Prevention System (IDPS), Data Loss Protection (DLP) and malware • Provide reporting based on directory. security actively combine to scan all 65,535 ports, detecting threats such as anomalies, denial • Exclusive GeoMapping technology of service attacks, botnets and data loss from the unencrypted transfer of personal informa- identies threat’s physical location. tion. In addition, the SWG Web Filter module extends HTTP/S ltering, application rewall, • Comprehensive user-based reporting bandwidth management (QoS) while the SWG Threat and Event Reporter provides packet across all network trac including level insight across all network trac and insight. web, IDPS, DLP, and Bandwidth. www.iboss.com Phantom Technologies, Inc. DBA iboss SWG Web Filter (P) 877.742.6832 [email protected] U.S. HQ 9950 Summers Ridge Rd., Bldg. 160 San Diego, CA 92121 © 2013 All rights reserved. Phantom Technologies, Inc. DBA iboss SWG Web Filter. iboss and Phantom Technologies are trademarks of Phantom Technologies, Inc. All other trademarks are the property of their respective owners. Condential – for intended recipients only. Distribution to third party is prohibited without prior written authorization. SWG IDPS/DLP/Threat System Intrusion Detection/Protection, Data Loss, & Malware

Advanced Threat Detection and Mitigation Data Loss Protections

Utilizing a signature- and heuristic-based scanning to track With increased compliances across industries, along with the known and unknown threats, iboss SWG IDPS/Threat/DLP ongoing need to protect sensitive information such as credit provides intrusion detection and prevention across all 65,535 cards and social security numbers, the need to scan trac to ports, identifying network anomalies. In addition, the blended identify potential data loss is essential. iboss SWG IDPS/Threat/ signature database uncovers malware, botnets, and emerging DLP transparently scans network trac, identifying potential threats at the gateway, optimizing network resources and inbound and outbound data loss. When the potential data loss reducing infections. Threats are identied, mapped, and is identied, it’s quarantined and reported through automation. mitigated, reducing management overhead and securing network resources.

Threat GeoMapping We’ve shift our approach in how we identify threat — it’s no Malware and Botnet Security longer about what’s on your network but rather to whom and By blending best-of-breed Bitdefender’s malware signatures where your network is connecting. This shift in threat identi- and heuristic database with Phantom Technologies database cation provides a new approach on threat mitigation. iboss at the gateway, organizations achieve a layered security SWG IDPS/Threat/DLP System’s real-time GeoMapping tracks approach to an already existing structure. Packets are scanned threats and connections globally and dynamically with a at the gateway, utilizing zero-day signatures that clears trac reverse map IP. This quickly discloses the organization owing to the workstations of potential threats and simultan- information along with its physical location. eously protects network resources from exposure to new threats.

Know Them By Name – Directory Integration Shield Critical Network Servers

With a growing number of devices (e.g., iPhones, androids, With the explosion of Trojan and malware communication etc.) inundating and accessing networks today, IP-based discreetly in the background, iboss SWG tracks communication reporting is not as eective as it once was for identifying across a global map to identify obscure communications. threats. iboss SWG IDPS/Threat/DLP integrates with directories Secure critical network infrastructure against key network including Active Directory, eDirectory, OpenLdap, Oracle ID, servers such as Mail, Web, Exchange, SQL, DNS, servers by and others, providing user- and group-based reporting and creating a virtual shield detecting speci c anomalies and alerts. behavior.

The Distributed Enterprise

By using integrated clustering and centralized consoles, iboss SWG IDPS/DLP/Threat System can be deployed across an enterprise without complex VPN or con guration. Central reporting through iboss SWG Threat & Event Console provides insight across all locations and even on o-premise mobile users.

Deployment Across an Organization Headquarters

Consolidated Management Scanning And Archiving of Remote Locations (Web/Threat/Malicious/DLP)

Firewall

Firewall Firewall

Satellite Oce Cloud Satellite Oce

MOBILE SECURITY

Mobile Devices www.iboss.com Phantom Technologies, Inc. DBA iboss SWG Web Filter (P) 877.742.6832 [email protected] U.S. HQ 9950 Summers Ridge Rd., Bldg. 160 San Diego, CA 92121 © 2013 All rights reserved. Phantom Technologies, Inc. DBA iboss SWG Web Filter. iboss and Phantom Technologies are trademarks of Phantom Technologies, Inc. All other trademarks are the property of their respective owners. Con dential – for intended recipients only. Distribution to third party is prohibited without prior written authorization. SWG IDPS/DLP/Threat System Intrusion Detection/Protection, Data Loss, & Malware

Full Feature List Security Services Services Features • Application Intelligence and Control • LDAP User & OU/Group Integration • Network Trac Visualization • Gateway Malware/botnet • Site-to-Site Clustering • LDAP/Active Directory Authentication Integration • Intrusion Prevention • Consolidated Console • Database Intrusion Detection/Prevention • AES Encryption (Distributed Enterprise) • Single Sign-On • TCP and UDP Scanning Logging • Backup & Restore Settings • ARP Spoong Detection • Connections Monitor • Voice over IP (VoIP) Security • Inspect SSH, RPC, SIP/VOIP, IMAP, POP • Malware/botnet • Port Shield Security • Sensitive Data Inspection • DLP • Integration With iboss SWG Security Suite • DNS and SSL Anomalies Detection • Anomalies • Email Alerts • System Logs Gateway Malware/Threat • SMB Backup • IPS Logs • Virus Signatures • DMZ • Deep Executable Scan Data Leakage Detection • Multiple LAN/WAN Segments • Advanced Algorithmic Virus Detection • Scan Key Protocals Diagnostics • Scan HTTP, FTP, Word Docs, Elf Files, • Unencrypted Transfers of Sensetive • CPU Monitor Information PDF, Compressed Files and More. • Active Connections Monitor • Mitigate Potential Threats • Unique Malware Threats Blocked • DNS Name Lookup • Quarantine and Detail Suspect Information • Packet Trace • Ping • Reverse Name

About iboss Network Security iboss Network Security is an industry leader in Network Security, Contact your account rep. or Bandwidth Management, Compliance based Mobile Device [email protected] Management (C/MDM) and BYOD (Bring Your Own Device) North America: 1-877-742-6832 ext. 1 Management. The iboss Secure Web Gateway line provides International: 1-858-568-7051 ext. 1 Scalable Internet access and application control, bandwidth management, and dynamic user based reporting and analytics. Our intelligent bandwidth shaping tools are all about eciency of design. We provide compliance management products to identify, manage, and secure access of the network for all users, on or o network while retaining granular controls providing the exible access needed.

www.iboss.com www.iboss.com Phantom Technologies, Inc. DBA iboss SWG Web Filter (P) 877.742.6832 [email protected] U.S. HQ 9950 Summers Ridge Rd., Bldg. 160 San Diego, CA 92121 © 2013 All rights reserved. Phantom Technologies, Inc. DBA iboss SWG Web Filter. iboss and Phantom Technologies are trademarks of Phantom Technologies, Inc. All other trademarks are the property of their respective owners. Condential – for intended recipients only. Distribution to third party is prohibited without prior written authorization.