With detailed SaaS—based reporting and granular control of SaaS usage, Palo Alto Networks Aperture builds upon the existing SaaS visibility and granular control capabilities of the Palo Alto Networks Next—Generation Security Platform provided through App—ID. Adding visibility and control within SaaS applications with Palo Alto Networks Aperture provides a full end to end security solution without any additional software, hardware or network changes required. Visibility and control of data exposure that doesn’t just look at data in—line but from the creation of the SaaS account itself, no matter how long ago that was. The Palo Alto Networks next—generation security platform provides you with a way to safely enable the applications your users need by allowing access while preventing cybersecurity threats. One of the risks of a SaaS application, especially one that syncs files with users automatically, is that it presents a new insertion point for malware.
Palo Alto Networks Aperture extends the visibility and granular control of our security platform into SaaS applications themselves—an area traditionally invisible to IT. Palo Alto Networks Aperture solves this problem by looking into SaaS applications directly, providing full visibility into the day—to—day activities of users and data. Granular controls ensure policy is maintained to eliminate data exposure and threat risks. Advanced threat prevention with Palo Alto Networks WildFire threat intelligence cloud integration with Palo Alto Networks Aperture provides advanced threat prevention to block known malware and identify and block unknown malware. This extends Palo Alto Networks WildFire’s existing integration to prevent threats from spreading through the sanctioned SaaS applications, preventing a new insertion point for malware. New malware discovered by Palo Alto Networks Aperture is shared with the rest of the next generation security platform, even if it is not in line with the SaaS applications.
Palo Alto Networks Next Generation Firewall
Fundamental shifts in application usage, user behavior, and complex, convoluted network infrastructure create a threat landscape that exposes weaknesses in traditional port based network security. Your users want access to an increasing number of applications, operating across a wide range of device types, often with little regard for the business or security risks. Meanwhile, data center expansion, network segmentation, virtualization, and mobility initiatives are forcing you to rethink how to enable access to applications and data, while protecting your network from a new, more sophisticated class of advanced threats that evade traditional security mechanisms. Historically, you were left with two basic choices—either block everything in the interest of network security, or enable everything in the interest of your business. These choices left little room for compromise. The Palo Alto Networks next—generation security platform provides you with a way to safely enable the applications your users need by allowing access while preventing cybersecurity threats.
Palo Alto Networks Aperture SaaS Security
Palo Alto Networks next—generation security platform allows you to empower your business with policies that revolve around applications, users and content. It uses a positive control model, a design unique to our platform that permits you to enable specific applications or functions and block all else (implicitly or explicitly). The Next—Generation Firewall performs a full stack, single pass inspection of all traffic across all ports, thus providing complete context of the application, associated content, and user identity as the basis for your security policy decisions. Classify all traffic, across all ports, all the time. Today, applications and their associated content can easily bypass a port based firewall using a variety of techniques. Palo Alto Networks next—generation security platform natively applies multiple classification mechanisms to the traffic stream to identify applications, threats and malware. All traffic is classified, regardless of port, encryption (SSL or SSH), or evasive techniques employed.
Palo Alto Networks Aperture
Allowing you to define granular, context—aware policy control, Palo Alto Networks Aperture gives you the ability to drive enforcement, and the quarantine of users and data, as soon as a violation occurs. This enables you to quickly and easily satisfy data risk compliance requirements, such as PCI and PII, while still maintaining the benefits of cloud—based applications. The use of SaaS applications is creating new risks and gaps in security visibility for malware propagation, data leakage and regulatory non—compliance.
Palo Alto Networks Aperture delivers complete visibility and granular enforcement across all user, folder and file activity within sanctioned SaaS applications, providing detailed analysis and analytics on usage without requiring any additional hardware, software or network changes. Palo Alto Networks Aperture provides complete visibility across all user, folder and file activity, providing detailed analysis that helps you transition from a position of speculation to one of knowing exactly what’s happening at any given point in time. This gives you the ability to view deep analytics into day—to—day usage, which enables you to quickly determine if there are any data risk or compliance related policy violations.
Preventing successful cyber attacks—the end goal of security is to enable your operations to flourish and keep your organization out of the headlines associated with cyber breaches. This means reducing the likelihood of a successful attack. By focusing on preventing successful attacks, the Palo Alto Networks next—generation security platform reduces cybersecurity risk so that it is manageable and quantifiable, allowing organizations to compartmentalize their biggest threats and focus on business operations.
The Palo Alto Networks next—generation security platform protects your digital way of life by safely enabling applications and preventing known and unknown threats across the network, cloud, and endpoints. The native integration of the platform delivers a prevention architecture that can provide superior security at lower total cost of ownership. Palo Alto Networks Panorama network security management lets you view all firewall traffic, manage device configuration, push global policies, and generate reports on patterns or incidents—all from one central location. Palo Alto Networks Panorama network security management provides static rules and dynamic security updates in an ever—changing threat landscape.
With a few clicks, you gain visibility into the application bandwidth and session consumption, the associated threats, as well as the source and destination of the application traffic. With this knowledge, you can proactively align application usage with your business requirements. Palo Alto Networks malware protections reduce the number of available attack vectors by terminating malware downloads. The blocked malware name, malicious URL or application, and the victim user are logged within the UI, so you have the contextual information needed to apply additional policies, if necessary.
Palo Alto Networks IPS, available within the threat prevention subscription, prevents exploits at the network level, using targeted vulnerability and exploit kit based signatures to thwart multiple variations of exploits and a wide variety of exploit kits. The Palo Alto Networks skilled threat research team, whose job it is to continuously investigate and reverse engineer network and application vulnerabilities, creates these protections and automatically pushes them to all subscribed devices on a weekly and emergency basis, fortifying your network against the latest exploits.
Defined as an environment in which you are responsible for the management of all aspects of the virtualization, hardware, compute, networking and security, a private cloud is often considered to be synonymous with your data center, and in fact, many data centers are 100 percent virtualized using VMware, Microsoft Hyper—V, KVM or other private cloud technologies. The Palo Alto Networks VM—Series allows you to protect your private cloud infrastructure using application enablement policies while simultaneously preventing known and unknown threats.
The Palo Alto Networks VM—Series supports the following private cloud environments: VMware ESXi and NSX, Citrix NetScaler SDX, Microsoft Hyper—V and KVM/OpenStack. In a public cloud, ensuring your applications and data are kept safe from attackers is your responsibility, and that is where the Palo Alto Networks VM—Series can help. The Palo Alto Networks VM—Series protects your public cloud infrastructure using application enablement policies while simultaneously preventing known and unknown threats. The Palo Alto Networks VM—Series supports the following public cloud environments: VMware vCloud Air, Amazon Web Services (AWS) and Microsoft Azure.