Organizations should defend their networks and have faith that their first line of protection can cease subtle threats. By deciding on a firewall built-in with present, international risk intelligence, organizations can shortly establish and block each superior assaults and exploits of widespread vulnerabilities. Enter Cisco Safe Firewall 4225, which demonstrated distinctive efficiency in SE Labs’ rigorous Superior Safety Take a look at, scoring 100% in safety accuracy.
Rapidly detect and cease assaults
SE Labs tried a full breach the place testers simulated assaults orchestrated by infamous hacking teams like APT29 and Scattered Spider. These teams are recognized for his or her relentless and complex assault methods, usually concentrating on high-profile sectors similar to authorities, army, and telecommunications. Testers tried to maneuver throughout the assault chain to steal delicate info, harm programs, or transfer laterally and connect with different community programs.
In all instances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain. It detected and neutralized all simulated threats earlier than they might execute any malicious actions or trigger hurt, leading to 100% safety accuracy. This rating was achieved with TLS decryption enabled, demonstrating the highly effective efficacy of our industry-leading decryption capabilities that enhance safety with out compromising efficiency. As a result of testers had no visibility into their goal to probe for vulnerabilities, they might not use the goal as a launch pad for lateral motion.
In all instances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain.
Award-winning risk detection
To attain 100% safety accuracy, Safe Firewall was scored in accordance with a factors system that counted its capability to detect and block each assault with optimum effectivity. For instance, throughout testing, if malware runs on the goal (even for a short while) earlier than it’s detected and blocked, the safety accuracy rating drops.
Benign information have been interspersed with threats to measure false optimistic charges, an indicator of how effectively a vendor has tuned its detection engine. Out of 75 samples, 74 have been precisely recognized as benign. With three categorised as unknown, and in accordance with SE Labs’ weighting system, Safe Firewall achieved a score of 91%.
The firewall’s spectacular Complete Accuracy Ranking of 95% earned it the distinguished AAA award from SE Labs. This report follows our current Finest Subsequent Technology Firewall Award from SE Labs for Cisco Safe Firewall, our second yr in a row receiving this glorious recognition.
Balancing safety with enterprise continuity
Cisco has spent the previous couple of years creating and optimizing firewall capabilities for an encrypted world. Our Discipline Programmable Gate Array (FPGA) part implements an industry-first circulation offload engine to decrypt and encrypt TLS site visitors in {hardware}.
For TLS classes that can’t be decrypted, Cisco provides one other layer of safety with its Encrypted Visibility Engine (EVE). EVE leverages behavioral analytics and machine studying to detect malicious outbound communications even inside encrypted site visitors. Our clients see worth in these improvements as a result of they will implement safety finest practices for encrypted site visitors whereas guaranteeing operational effectivity.
A proactive strategy to stopping threats
Fortified by the intelligence of Cisco Talos, one of many largest business risk intelligence groups on the planet, Cisco Safe Firewall stays forward of contemporary threats. Talos identifies rising threats and vulnerabilities, then integrates these findings into Cisco merchandise like Safe Firewall.
With Snort 3 and ClamAV detection engines from Talos, Safe Firewall can flag malicious domains, IPs, and file hashes, offering important intelligence to safety controls. Talos’ fame instruments enable Safe Firewall to detect model spoofing, malicious senders, and establish phishing campaigns or malware.
Additional enhancing the efficacy of Cisco’s firewall, Talos now gives SnortML, a risk detection engine designed to proactively establish zero-day vulnerabilities. The system finds patterns in widespread vulnerability varieties which are usually utilized by risk actors for preliminary entry: command injection, code injection, and SQL injection. SnortML identifies when payloads match a selected vulnerability class, even when there are variations (which beforehand would have categorised it as a zero-day assault).
View the SE Labs Report
Cisco Safe Firewall is without doubt one of the enforcement factors of Cisco’s Hybrid Mesh Firewall, a extremely distributed safety material with clever centralized administration that makes it simple for organizations to guard their purposes wherever they reside. For an in-depth have a look at the real-world threats and techniques our firewall was examined in opposition to, discover the report.
Expertise our firewall in motion
Need to give it a attempt? Be part of the Cisco Safe Firewall Take a look at Drive, an instructor-led 4-hour safety course, permitting you to realize firsthand expertise with Cisco firewalls, and uncover the brand new strategies of attackers which have modified the community safety wants.
We’d love to listen to what you suppose. Ask a Query, Remark Beneath, and Keep Linked with Cisco Safe on social!
Cisco Safety Social Channels
Share: