Cloud Web Security Gateway by Websense
The most effective web security for any location.
Websense® Cloud Web Security Gateway analyzes web content and detects threats with inline, real-time composite defenses. Global data centers are ISO 27001 certified and provide high availability, easy provisioning and lower costs for users in any location. An optional cloud-assist appliance can be deployed to improve local control over traffic flow to the cloud, ideal for deployment in countries with national firewalls.
Web Security Gateway Anywhere by Websense
Comprehensive real-time protection against the latest advanced threats.
Websense® Web Security Gateway Anywhere protects on-site and remote employees from the latest threats in a unified, hybrid solution. You can add Websense TRITON® ThreatScope™ to get file sandboxing and detailed forensic and behavioral reporting.
Web Security Gateway by Websense
Real-time, in-line protection against today's advanced threats.
Websense® Web Security Gateway provides the defenses you need to defend against advanced attacks: real-time threat analysis at web gateways, plus forensic reporting. You can easily upgrade to Web Security Gateway Anywhere when desired to get Websense TruWeb DLP™ capability and other advanced features.
Web Security Suite by iboss Network Security
Unrivalled Protection across all Data Channels
The growth of Web 2.0 introduced the need to protect traffic outside standard Web data channels such as Ports 80 and 443. New applications such as anonymizers, torrents, and chat applications like Yahoo and Google Chat must use non-standard ports for communication, creating hidden data channels that traditional solutions can’t see, making them ideal for exploitation.
Only iboss Secure Web Gateway gives you comprehensive visibility over all 131,070 data channels on your network combined with latency-free SSL scanning for unrivalled protection against advanced persistent threats (APTs), malware and zero-day attacks.
HTTPS/SSL Traffic Scanning
Many standard solutions attempt to secure HTTPS traffic but their approach creates network latency and risks man-in-the-middle attacks (MiTM) because they must decrypt all traffic at the gateway. iboss’ innovative, granular SSL scanning includes selective decryption that assures protection against threats embedded within HTTPS leading to costly data loss, while maintaining data integrity and optimal network performance.
Advanced Application Management
There are a wide range of applications that require proprietary signatures and ports to communicate properly and organizations rely on some of them to conduct business, but others may introduce advanced threats that can lead to data loss. iboss advanced application scanning with deep packet inspection secures the gateway from unwanted applications and threats with multi-layered security that includes torrent and file-sharing protection, dynamic proxy circumvention detection, advanced protocol management and trigger-based alerts.
Centralized Threat and Event Reporting
The iboss Threat and Event Reporting Console delivers powerful network insight and forensic intelligence that includes geo-mapping, drill-down access and usage reporting, enabling you to identify threats in real-time and enforce AUP and regulatory compliance requirements across your organization. With real-time actionable intelligence on who, where and how your network is being accessed, you have time to mitigate problems before they cause data loss, ultimately lowering your total cost of ownership (TCO).
Intelligent Bandwidth Management / QoS
iboss Intelligent Bandwidth Management assures maximum network efficiency with flexible stream-based technology that is directory-aware, enabling granular control of bandwidth during peak usage hours. Unlike standard stateful shaping technology, which continuously applies policy per domain or IP, iboss enables dynamic throttling, giving you the flexibility required to support critical business processes while maintaining optimal network performance.
Bring Your Own Device (BYOD) Management
The iboss Secure Web Gateway integrates BYOD management to extend advanced threat protection and DLP to all the BYOD users on your network, while assuring that increases in bandwidth demand don’t affect mission critical traffic. iboss also identifies BYOD users not using a NAC and provides a captive portal that binds them to your network directory or LDAP automatically, assuring accurate policy enforcement across all users. iboss BYOD tools include advanced application controls and High Risk Auto Quarantine, enabling you to lock users engaged in high-risk online behavior such as illegal file downloads or circumvention attempts.
McAfee Web Gateway by McAfee
McAfee offers the advanced security, control, and flexibility organizations need to take full advantage of the web.
Unparalleled threat protection — The No. 1-rated anti-malware solution for web threats, McAfee Web Gateway analyzes the nature and intent of all content and code entering the network from requested web pages, providing immediate protection against malware and other hidden threats. With layered security that combines local and cloud-based protection, powered by McAfee Global Threat Intelligence, you can count on McAfee Web Gateway for instant, advanced protection to stop zero-day threats, spyware, and targeted attacks — without a signature. Learn more about McAfee Web Gateway's latest threat protection enhancements that provide state-of-the-art behavior-based emulation and detection techniques.
Granular application discovery and control — Get point-and-click control for nearly 1,000 web applications and granular function control within those applications. From social and streaming media to file sharing and anonymizing, enable the applications you want, manage how they are used, and control what information is shared. Powerful reporting tools identify unknown or rogue applications, giving you the power to block potential security or productivity threats represented by applications that are not consistent with enterprise policy.
Powerful safeguards against data loss — Scan user-generated content on all key web protocols, using state-of-the-art DLP technology, and prevent confidential or suspect information from leaking out of your enterprise through blogs, wikis, and other Web 2.0 applications and sites. Protect sensitive data that is transferred to cloud storage with inline encryption, preventing users from downloading or reading files without the protections of Web Gateway.
Web identity management — McAfee Web Gateway includes optional single sign-on (SSO) connectors for more than 500 popular SaaS applications. Use SSO to improve end-user convenience, enhance security, and reduce expensive password-related help desk calls.
Easy, efficient management — With McAfee Web Gateway, you can stop deploying and managing multiple standalone web products. Web Gateway integrates numerous protections, from web filtering and anti-malware to SSL scanning and content control, all with a simplified management footprint and a flexible policy engine. Share a single security policy across protections and protocols, and meet the needs of your entire organization, enhancing protection while saving time and money.
Agile infrastructure and performance — McAfee Web Gateway includes high-performance, enterprise-strength, forward- and reverse-proxy software that provides the flexible authentication, administration, and authorization controls required by today's most demanding enterprises and service providers. Numerous deployment options — including purpose-built appliances or blades, a virtualized platform, or integration with cloud-based McAfee SaaS Web Protection — ensure Web Gateway scales to meet the needs of your unique enterprise.
McAfee SaaS Web Protection by McAfee
McAfee SaaS Web Protection offers exceptional web security through a reliable, flexible Software-as-a-Service (SaaS) deployment model. It’s an effective way to keep your company connected while taking charge of online security. With no on-premises hardware to purchase or install, SaaS Web Protection is easy to implement. Simply redirect your web traffic to our load-balanced data centers, where it is scanned with our state-of-the-art security technologies to provide comprehensive protection.
Near-zero latency, industry-leading uptime, global availability, and enterprise-class scalability ensure the performance and reliability you need to secure even the most distributed environments. If you already have on-premises web filtering, our service seamlessly adds additional layers of protection, including the highest-rated anti-malware engine, and secures branch offices and mobile users.
Complete inbound and outbound protection — Traffic that contains malware or violates your Internet-use policies is blocked before it can enter your network. Inbound traffic is analyzed to provide immediate protection against zero-day malware and other exploits.
Security for web applications — McAfee SaaS Web Protection uses multiple, layered sophisticated technologies to analyze the nature, intent, and behavior of a web page’s active content. This deep analysis proactively protects against unknown malware, blended threats, phishing sites, and targeted attacks.
Enhanced security powered by McAfee Global Threat Intelligence (McAfee GTI) —
McAfee GTI is a comprehensive cloud-based threat intelligence service. Already integrated into McAfee security products, it works in real time, 24 hours a day, to protect customers against cyber threats across all vectors — file, web, message, and network. McAfee GTI offers the broadest threat data, most robust data correlation, and most complete product integration in the industry. It allows enabled products to evaluate threats on multiple vectors in real time, leading to faster identification of threats and higher capture rates. McAfee SaaS Web Protection also uses the McAfee GTI web categorization services to identify sites hosting undesirable content (such as pornography or gaming).
Unmatched web filtering — With 100 categories to choose from, our web filtering provides flexibility along with accuracy and security. Pair our categories with your unique user communities to set policies against offensive, undesired, and unproductive web use.
Part of McAfee Web Protection — Includes the flexibility to deploy comprehensive web security in the cloud, on premises, or as a hybrid combination to meet an enterprise’s unique changing needs.
Easy integration with other McAfee products — Combine McAfee SaaS Web Protection with McAfee SaaS Email Protection and McAfee SaaS Email Archiving to defend against blended online threats and meet your growing email storage and compliance needs. For the ultimate in flexibility, McAfee Web Protection offers the control of an onsite solution, the ease of management associated with Software-as-a-Service, or the option of hybrid deployments.
Symantec Web Gateway by Symantec
Web content filtering software
Symantec Web Gateway protects organizations against multiple types of Web-borne malware and gives organizations the flexibility of deploying it as either a virtual appliance or on physical hardware. Powered by Insight, Symantec’s innovative reputation based malware filtering technology, Web Gateway relies on a global network of greater than 210 million systems to identify new threats before they cause disruption in organizations.
Powered by Symantec Insight providing proactive protection against new, targeted, or mutating threats
Integration with Symantec Data Loss Prevention Network Prevent for Web allows for a robust Web and Data Loss prevention solution from a single vendor
Virtual appliance deployment option
Proxy and caching capability meets the needs of customers who:
Secure Web Gateway Virtual Appliance by Blue Coat Systems
Secure Web Gateway with the flexibility of virtualization
Blue Coat expands its unified security portfolio of enterprise appliances and cloud service to include a virtual appliance for branch offices. The Blue Coat Secure Web Gateway Virtual Appliance (SWG VA) combines the market-leading security capabilities of Blue Coat ProxySG with the flexibility of virtualization to provide a cost-effective enterprise branch office solution. With the new Blue Coat Secure Web Gateway Virtual Appliance, businesses can support Web security and other critical remote office infrastructure on a common platform, reducing costs and IT resource requirements.
SWG Virtual Appliance extends the same depth of protection and control delivered by the Blue Coat ProxySG appliances to small branch office locations with space limitations and limited IT resources. The SWG VA is backed by the WebPulse Collaborative Defense of more than 75 million users which delivers a Negative Day Defense through blocking of malnets. In addition, SWG VA offers all the Blue Coat security capabilities enterprise customers expect, including a wide selection of user authentication, granular and accurate web filtering with multi-dimensional categories and high-performing inspection of SSL traffic. These combined capabilities deliver unbeatable efficiency to help enterprises optimize IT resources and reduce physical footprint.
InterScan Web Security by Trend Micro
Deeper Visibility for Maximum Control
Faced with today's advanced Internet threats and the growing use of cloud-based consumer applications in the workplace, application visibility is essential to understanding network risks. InterScanTM Web Security is a software virtual appliance that combines application control with zero-day exploit detection, advanced anti-malware scanning, real-time web reputation, and flexible URL filtering to provide superior Internet threat protection.
Delivers unparalleled visibility and control
Superior Threat Protection and Control Over Cloud-based Applications
InterScan Web Security is a software virtual appliance that dynamically protects against the ever-growing flood of advanced threats at the Internet gateway—exclusively designed to secure you against traditional and emerging blended threats at the Internet gateway.
Application control combines with industry leading zero-day exploit detection, anti-malware scanning, real-time web reputation, URL filtering and enhanced anti-botnet detection to protect systems and keep users productive.
Trustwave Secure Web Gateway by Trustwave
Cyber criminals treat the web as their preferred launching pad for data-stealing malware. Users can become infected through malicious links contained in emails or on social networks, through exploits masquerading as software updates or through simply navigating to a website that automatically installs malware.
With Trustwave's award-winning and industry-leading Secure Web Gateway, organizations can detect malware on the fly without relying on signatures, gain zero-day protection against advanced threats and enable the safe and secure use of applications such as Facebook, Twitter and Gmail — all while minimizing confidential data loss and ensuring productivity and compliance.
Using patented technology that offers the most accurate and proactive protection from next-generation threats and the most flexible deployment options in the industry, Trustwave Secure Web Gateway delivers advanced and constant protection against malware and data loss. Why do customers choose Secure Web Gateway to defend them against malware and allow them to securely use the latest web applications?
Sophos Web Appliance by Sophos
Dedicated or Unified
With Sophos, you have your choice of a dedicated purpose-built web appliance, or a secure web gateway integrated into your UTM.
Our Sophos Web Appliance is ideal if you want an appliance dedicated to web security with streamlined workflow and policy tools. However, if you’re interested in consolidating your network security into a single appliance, our UTM with integrated web protection is for you.
Both offer all the great features below, including our unique Web and Endpoint integration to provide complete web protection everywhere.
Web Threat Protection
With our Secure Web Gateway, you get the most advanced web threat protection:
Real-Time Reputation Filtering
SophosLabs identifies over 30,000 newly infected websites daily. You’re protected from all of them.
Real-time reputation filtering protects you from newly infected websites as soon as they come online. We do this using our ever-growing, cloud-hosted database of malicious sites.
Customizable Web Filtering
Select from billions of sites in 56 categories to create safe web browsing policies. You can minimize legal concerns around inappropriate content and maximize productivity.
You can set policy by users and time, using a variety of authentication options including IP Address, Active Directory SSO, eDirectory SSO and LDAP.
Dynamic App Control
With our UTM web protection, you get complete control to block, allow, shape and prioritize web applications like file sharing, IM clients, streaming media and games.
Deep Layer-7 inspection identifies over 900 applications. And, you'll get feedback on unclassified applications too.
Monitor your web traffic in real time. In just a couple clicks you can maximize the bandwidth for what’s important, and minimize it for what’s not. For example, you can control YouTube and Facebook while accelerating Salesforce.
Our endpoint protection integrates with both our Sophos Web Appliances and UTMs, providing a unique and elegant solution for protection everywhere.
We’ve integrated the full power of our web protection into our endpoints. When users leave the office, they’re fully protected on the web without having to backhaul or use a VPN to get online safely.
Policy and reporting syncs through the cloud, so it’s like they never left.
At Sophos, simplicity is our mantra. You’ll have complete control over all the security features you need all in one place, with none of the complexity.
We've invested heavily in streamlining our interface. This way you won't have to reach for the manual every time you need to update a policy or change a setting. So you're never more than a couple clicks from completing your task.
Complete On-Box Reporting
Our built-in reporting means you’ll know exactly what's happening with your users. Fix problems fast and shape your policies, keeping your users secure while boosting network performance. And, you get detailed reports as standard, stored locally with no separate tools required.
At-a-glance flow graphs show usage trends with predefined and customizable reports, providing key web activity. Report anonymization hides user names, requiring the four-eyes-principle to unhide them.
ContentKeeperSecure Internet Gateway by ContentKeeper
Web Filtering, Application Controls, Mobile Device Filtering, Proactive Malware Security & Integrated Reporting
ContentKeeper Secure Internet Gateway is an advanced, multifaceted Web filtering, threat protection and security reporting system for organizational networks and mobile devices. It integrates the most sophisticated and robust Web content analysis and proactive threat detection technologies available to provide a total solution for today’s and tomorrow’s Web security needs.
ContentKeeper Secure Internet Gateway unifies three critical Web security functions into a single cohesive, easy to manage next-generation solution.
ContentKeeper Secure Internet Gateway automatically maintains a safe and productive work or study environment. ContentKeeper ensures no harmful or offensive content is accessible to users via a comprehensive Website category database, dynamic Web content classification and application controls. ContentKeeper also provides extensive policy controls and flexible exceptions to prevent annoying over-blocking of legitimate Web resources.
Advanced Threat Protection
Streaming Malware Defense – high
performance signature-based anti-virus with fast, real-time packet inspection. SMD identifies known viruses and spyware.
Cloud Sandbox – a virtualized test computer environment where suspicious samples are executed and analyzed for any signs of malicious behavior. CSB analyses files that pass the previous layers of anti-malware inspection.
ContentKeeper Secure Internet Gateway provides comprehensive enterprise-class reporting capabilities covering Web traffic, user activity, policy compliance and security events. Management-friendly and forensic drilldown reports are provided as well as roles-based reporting access, scheduled report generation and automated email delivery or HTML publishing. Reports can be output in a range of formats giving you the flexibility to deliver reports how and when you want them. Formats include:
ContentKeeper provides a complete solution to address the myriad of Web-based threats and many of the challenging IT compliance requirements of the healthcare industry. ContentKeeper helps you secure the borderless network and the mobile / cloud environment with next-generation Web Security.
ContentKeeperWeb Filter Pro by ContentKeeper
Web Filtering, Granular Application Controls and BYOD Support
ContentKeeper Web Filter Pro is an advanced, high-performance Web filtering, compliance enforcement and security reporting system for organizational networks and mobile devices. It integrates with directory policies to provide granular control over Web URL categories, Web applications and Social Media.
ContentKeeper Web Filter Pro automatically maintains a safe and productive work or learning environment. ContentKeeper ensures no harmful or offensive content is accessible to users via a comprehensive Website category database, dynamic Web content classification and application controls. ContentKeeper also provides extensive policy controls and flexible exceptions to prevent annoying over-blocking of legitimate Web resources.
Web Filter Pro can be augmented with high-speed streaming anti-virus scanning or full protection with the Advanced Threat Protection Suite.
Web Filter Pro provides comprehensive default reporting and dashboard monitors, and can be augmented with powerful Syslog reporting with the Advanced Reports Module.
Cloud Web Security by Zscaler
Complete cloud-based antivirus, anti-spyware, URL filtering and browser control
Traditional web security gateway appliances were designed to protect data on the corporate network. But in today’s dynamic business environment, users are everywhere, and applications and data are moving to the cloud.
Cloud Web Security Features
Zscaler’s Cloud Web Security enables organizations to embrace new cloud applications and social media technologies, while gaining the industry’s most advanced protection from accidental data loss, malicious attacks and emerging threats. With Zscaler Cloud Web Security, you get the key capabilities you need to securely enable business beyond the corporate network, including:
Advanced Threat Protection: With Zscaler’s Cloud Web Security solution, you get advanced protection against today’s sophisticated, emerging threats including botnets, malicious active content, phishing, cross site scripting (XSS) attacks and more guaranteeing safe browsing for all users and all devices. Read more about our Advanced Persistent Threats Solution.
Anti-Virus and Anti-Spyware: With no software or agents to install, Zscaler Cloud Web Security provides the industry’s most complete, inline protection from viruses and spyware. Because Zscaler’s patented inline protection sits between the user and the Internet, your policy and protection is consistent across devices and locations.
Dynamic URL Filtering: Zscaler provides flexible and granular URL categories, organized in a hierarchy that enables better analysis and control. Further, organizations can also create their own categories and manage access based on keywords in URLs or page content. With its dynamic content classification, Zscaler’s Cloud Web Security solution can detect liable content and enforce policy on individual pages versus entire domains.
Browser Control: To secure browsers, Zscaler enforces policy in four areas:
Browser Versions: Companies can enforce policy based on which browsers and versions of that browser are permissible.
Browser Patches: Zscaler can help your IT organization enforce a policy that all employees install these patches.
Plug-ins/Extensions: Companies can determine which plug-ins are allowed to be installed.
Applications: Companies can enforce which applications can run in the browser.
AWF Series Web Application Firewall by Array Networks
Array AWF Series next-generation Web application firewalls extend beyond traditional firewalls and intrusion detection systems (IDSs) to provide comprehensive protection for business-critical Web applications.
The AWF Series not only detects the complex Web application attacks of today, but also blocks the attack traffic in real time without affecting the normal flow of business data traffic.
In addition, The AWF Series provides extremely fine-grained attack detection and analysis capabilities while protection against the most common Web application threats including SQL injection attacks, Web page tampering, Web site malicious code, and disclosure of sensitive information.
Barracuda Web Filter by Barracuda Networks
Filters Content, Malware, Social Media and Rogue App Threats
The Barracuda Web Filter lets organizations benefit from online applications and tools without exposure to web-borne malware and viruses, lost user productivity, and misused bandwidth. As a comprehensive solution for web security and management, it unites award-winning spyware, malware, and virus protection with a powerful policy and reporting engine. Advanced features ensure that organizations adapt to emerging requirements like social-network regulation, remote filtering, and visibility into SSL-encrypted traffic.
Unlimited remote user licenses are included to enforce content and access policies for mobile devices outside of the corporate network. The Barracuda Web Filter is also available as a virtual appliance. For hosted web security, see Barracuda Web Security Service.
Barracuda Web Filter Vx by Barracuda Networks
Filters Content, Malware, Social Media and Rogue App Threats
The Barracuda Web Filter Vx virtual appliance delivers powerful web security and policy enforcement for virtual environments. Backed by award-winning antivirus and anti-malware technology, organizations can protect users on and off the network against today’s aggressive web-based malware, phishing, and virus threats, while enforcing corporate user policies. With a fully integrated reporting engine, organizations have full visibility into its web security posture and user activities. Advanced features ensure that organizations adapt to emerging requirements like social-network regulation, remote filtering, and visibility into SSL-encrypted traffic.
Barracuda Web Security Service by Barracuda Networks
Protect Distributed Locations and Remote Users Against Web-Borne Threats
As a cloud-based service, the Barracuda Web Security Service provides a convenient option to deploy Barracuda's powerful web security technology for organizations looking to leverage the scalability and flexibility of the cloud. Ideal for safeguarding users on and off the network, the solution unites award-winning spyware, malware, and virus protection with a powerful policy and reporting engine.
Cisco Web Security Appliance by Cisco
One Appliance - Complete Web Security
Get advanced threat defense, advanced malware protection, application visibility and control, insightful reporting, and secure mobility. The Cisco Web Security Appliance (WSA) combines all of these forms of protection and more in a single solution. The WSA also helps to secure and control web traffic, while simplifying deployment and reducing costs.
Features and Capabilities
Advanced Threat Defense
The Cisco WSA is powered by Cisco Security Intelligence Operations (SIO), our industry-leading threat intelligence organization. Cisco SIO detects and correlates threats in real time using the largest threat detection network in the world. It monitors 100 TB of daily security intelligence, 1.6 million deployed security devices, 13 billion daily web requests, and 35 percent of worldwide email traffic.
The Cisco WSA uses multiple layers of anti-malware technologies and intelligence from SIO updated every three to five minutes. It protects against hidden threats by analyzing every piece of web content accessed by the user, from HTML to images and Flash graphics.
Advanced Malware Protection
The Cisco WSA now includes Advanced Malware Protection (AMP), a malware-defeating solution that takes advantage of Cisco SIO and the vast cloud security intelligence network of Sourcefire (now a part of Cisco).
It delivers protection across the attack continuum—before, during, and after an attack—with malware detection and blocking, continuous analysis, and retrospective alerting. Users can block more attacks, track suspicious files, mitigate the scope of an outbreak, and remediate faster.
Granular Acceptable Use Controls
Our WSA gives businesses complete control over how end users access the Internet. By identifying hundreds of applications and more than 150,000 micro-applications, the WSA helps administrators create policies that match the nuanced business needs of today. Specific features such as chat, messaging, video, and audio can be allowed or blocked, according to the requirements of businesses and users—without the need to block entire websites.
Vital Data Loss Prevention (DLP)
Using onboard DLP capabilities, administrators can create content control rules based on context. The Cisco WSA also integrates, using Internet Content Adaptation Protocol (ICAP), with DLP solutions from leading vendors. This helps to ensure consistent enforcement of DLP policies and deep content analysis.
Cisco currently delivers the broadest set of web security deployment options in the industry. The Cisco WSA simplifies security with a high-performance, dedicated appliance. The Cisco Web Security Virtual Appliance (WSAV) helps businesses deploy web security wherever and whenever it's needed.
The WSAV offers all the same features as the WSA, with the added convenience and cost savings of a virtual deployment model. That includes instant self-service provisioning.