Organizations should defend their networks and trust that their first line of protection can cease refined threats. By choosing a firewall built-in with present, world menace intelligence, organizations can shortly determine and block each superior assaults and exploits of widespread vulnerabilities. Enter Cisco Safe Firewall 4225, which demonstrated distinctive efficiency in SE Labs’ rigorous Superior Safety Take a look at, scoring 100% in safety accuracy.
Rapidly detect and cease assaults
SE Labs tried a full breach the place testers simulated assaults orchestrated by infamous hacking teams like APT29 and Scattered Spider. These teams are recognized for his or her relentless and complex assault methods, usually concentrating on high-profile sectors resembling authorities, navy, and telecommunications. Testers tried to maneuver throughout the assault chain to steal delicate data, harm techniques, or transfer laterally and hook up with different community techniques.
In all circumstances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain. It detected and neutralized all simulated threats earlier than they might execute any malicious actions or trigger hurt, leading to 100% safety accuracy. This rating was achieved with TLS decryption enabled, demonstrating the highly effective efficacy of our industry-leading decryption capabilities that enhance safety with out compromising efficiency. As a result of testers had no visibility into their goal to probe for vulnerabilities, they might not use the goal as a launch pad for lateral motion.
In all circumstances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain.
Award-winning menace detection
To attain 100% safety accuracy, Safe Firewall was scored based on a factors system that counted its skill to detect and block each assault with optimum effectivity. For instance, throughout testing, if malware runs on the goal (even for a short while) earlier than it’s detected and blocked, the safety accuracy rating drops.
Benign recordsdata have been interspersed with threats to measure false constructive charges, an indicator of how effectively a vendor has tuned its detection engine. Out of 75 samples, 74 have been precisely recognized as benign. With three labeled as unknown, and based on SE Labs’ weighting system, Safe Firewall achieved a score of 91%.
The firewall’s spectacular Whole Accuracy Score of 95% earned it the distinguished AAA award from SE Labs. This report follows our current Finest Subsequent Technology Firewall Award from SE Labs for Cisco Safe Firewall, our second yr in a row receiving this glorious recognition.
Balancing safety with enterprise continuity
Cisco has spent the previous couple of years creating and optimizing firewall capabilities for an encrypted world. Our Discipline Programmable Gate Array (FPGA) element implements an industry-first move offload engine to decrypt and encrypt TLS site visitors in {hardware}.
For TLS periods that can not be decrypted, Cisco provides one other layer of safety with its Encrypted Visibility Engine (EVE). EVE leverages behavioral analytics and machine studying to detect malicious outbound communications even inside encrypted site visitors. Our prospects see worth in these improvements as a result of they will implement safety finest practices for encrypted site visitors whereas guaranteeing operational effectivity.
A proactive strategy to stopping threats
Fortified by the intelligence of Cisco Talos, one of many largest industrial menace intelligence groups on the earth, Cisco Safe Firewall stays forward of recent threats. Talos identifies rising threats and vulnerabilities, then integrates these findings into Cisco merchandise like Safe Firewall.
With Snort 3 and ClamAV detection engines from Talos, Safe Firewall can flag malicious domains, IPs, and file hashes, offering vital intelligence to safety controls. Talos’ fame instruments enable Safe Firewall to detect model spoofing, malicious senders, and determine phishing campaigns or malware.
Additional enhancing the efficacy of Cisco’s firewall, Talos now presents SnortML, a menace detection engine designed to proactively determine zero-day vulnerabilities. The system finds patterns in widespread vulnerability varieties which might be usually utilized by menace actors for preliminary entry: command injection, code injection, and SQL injection. SnortML identifies when payloads match a specific vulnerability class, even when there are variations (which beforehand would have labeled it as a zero-day assault).
View the SE Labs Report
Cisco Safe Firewall is without doubt one of the enforcement factors of Cisco’s Hybrid Mesh Firewall, a extremely distributed safety material with clever centralized administration that makes it simple for organizations to guard their functions wherever they dwell. For an in-depth have a look at the real-world threats and techniques our firewall was examined in opposition to, discover the report.
Expertise our firewall in motion
Wish to give it a attempt? Be part of the Cisco Safe Firewall Take a look at Drive, an instructor-led 4-hour safety course, permitting you to realize firsthand expertise with Cisco firewalls, and uncover the brand new methods of attackers which have modified the community safety wants.
We’d love to listen to what you suppose. Ask a Query, Remark Beneath, and Keep Linked with Cisco Safe on social!
Cisco Safety Social Channels
Share:
