Organizations should shield their networks and have faith that their first line of protection can cease refined threats. By choosing a firewall built-in with present, international risk intelligence, organizations can rapidly establish and block each superior assaults and exploits of widespread vulnerabilities. Enter Cisco Safe Firewall 4225, which demonstrated distinctive efficiency in SE Labs’ rigorous Superior Safety Take a look at, scoring 100% in safety accuracy.
Rapidly detect and cease assaults
SE Labs tried a full breach the place testers simulated assaults orchestrated by infamous hacking teams like APT29 and Scattered Spider. These teams are recognized for his or her relentless and complicated assault methods, usually focusing on high-profile sectors comparable to authorities, navy, and telecommunications. Testers tried to maneuver throughout the assault chain to steal delicate info, harm methods, or transfer laterally and hook up with different community methods.
In all instances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain. It detected and neutralized all simulated threats earlier than they might execute any malicious actions or trigger hurt, leading to 100% safety accuracy. This rating was achieved with TLS decryption enabled, demonstrating the highly effective efficacy of our industry-leading decryption capabilities that enhance safety with out compromising efficiency. As a result of testers had no visibility into their goal to probe for vulnerabilities, they might not use the goal as a launch pad for lateral motion.
In all instances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain.
Award-winning risk detection
To realize 100% safety accuracy, Safe Firewall was scored in keeping with a factors system that counted its means to detect and block each assault with optimum effectivity. For instance, throughout testing, if malware runs on the goal (even for a short while) earlier than it’s detected and blocked, the safety accuracy rating drops.
Benign information had been interspersed with threats to measure false constructive charges, an indicator of how properly a vendor has tuned its detection engine. Out of 75 samples, 74 had been precisely recognized as benign. With three categorised as unknown, and in keeping with SE Labs’ weighting system, Safe Firewall achieved a ranking of 91%.
The firewall’s spectacular Whole Accuracy Score of 95% earned it the celebrated AAA award from SE Labs. This report follows our current Greatest Subsequent Technology Firewall Award from SE Labs for Cisco Safe Firewall, our second 12 months in a row receiving this wonderful recognition.
Balancing safety with enterprise continuity
Cisco has spent the previous couple of years creating and optimizing firewall capabilities for an encrypted world. Our Area Programmable Gate Array (FPGA) element implements an industry-first circulate offload engine to decrypt and encrypt TLS site visitors in {hardware}.
For TLS periods that can not be decrypted, Cisco provides one other layer of safety with its Encrypted Visibility Engine (EVE). EVE leverages behavioral analytics and machine studying to detect malicious outbound communications even inside encrypted site visitors. Our prospects see worth in these improvements as a result of they will implement safety finest practices for encrypted site visitors whereas guaranteeing operational effectivity.
A proactive method to stopping threats
Fortified by the intelligence of Cisco Talos, one of many largest industrial risk intelligence groups on the earth, Cisco Safe Firewall stays forward of recent threats. Talos identifies rising threats and vulnerabilities, then integrates these findings into Cisco merchandise like Safe Firewall.
With Snort 3 and ClamAV detection engines from Talos, Safe Firewall can flag malicious domains, IPs, and file hashes, offering important intelligence to safety controls. Talos’ popularity instruments permit Safe Firewall to detect model spoofing, malicious senders, and establish phishing campaigns or malware.
Additional enhancing the efficacy of Cisco’s firewall, Talos now affords SnortML, a risk detection engine designed to proactively establish zero-day vulnerabilities. The system finds patterns in widespread vulnerability varieties which can be usually utilized by risk actors for preliminary entry: command injection, code injection, and SQL injection. SnortML identifies when payloads match a selected vulnerability class, even when there are variations (which beforehand would have categorised it as a zero-day assault).
View the SE Labs Report
Cisco Safe Firewall is likely one of the enforcement factors of Cisco’s Hybrid Mesh Firewall, a extremely distributed safety material with clever centralized administration that makes it simple for organizations to guard their purposes wherever they stay. For an in-depth take a look at the real-world threats and techniques our firewall was examined in opposition to, discover the report.
Expertise our firewall in motion
Wish to give it a attempt? Be a part of the Cisco Safe Firewall Take a look at Drive, an instructor-led 4-hour safety course, permitting you to achieve firsthand expertise with Cisco firewalls, and uncover the brand new methods of attackers which have modified the community safety wants.
We’d love to listen to what you assume. Ask a Query, Remark Under, and Keep Related with Cisco Safe on social!
Cisco Safety Social Channels
Share: