Firewall News

Top Menu

  • Home
  • Our Blog
  • Contact Us

Main Menu

  • Software Updates
  • Alerts & Bugs
  • Out of the Box
  • Home
  • Our Blog
  • Contact Us

Firewall News

Firewall News

  • Software Updates
    • WatchGuard logo

      TDR 6.0.0 is now integrated into WatchGuard Cloud

      04/01/2021
      0
    • Sophos Logo

      XG Firewall 17.5 MR14 Released

      30/07/2020
      0
    • Sophos Logo

      Sophos Firewall Manager SFM 17.1 MR4 Released

      27/07/2020
      0
    • Sophos Logo

      Sophos Enterprise console - Endpoint Security and Control v10.8.9 for Windows has ...

      16/07/2020
      0
    • Sophos Logo

      Sophos iView v3 MR-2 Released

      07/07/2020
      0
    • Sophos Logo

      SD-RED Firmware 3.0.002 Pattern Update

      06/07/2020
      0
    • Sophos Logo

      XG Firewall 17.5 MR13 Released

      06/07/2020
      0
    • Sophos Logo

      End-of-Life (EoL) announcement for old firmware v17 and v17.1 for XG Firewall

      03/07/2020
      0
    • WatchGuard logo

      Fireware 12.5.4 Now Available

      01/07/2020
      0
  • Alerts & Bugs
    • Sophos Logo

      Advisory: Sophos Central Maintenance scheduled for Saturday, April 2nd, 2022

      29/03/2022
      0
    • Sophos Logo

      Sophos: Important Product Lifecycle Updates

      03/03/2022
      0
    • WatchGuard logo

      WatchGuard Support Alert

      23/02/2022
      0
    • Sophos Logo

      Sophos: Important Product Lifecycle Reminder

      03/02/2022
      0
    • Sophos Logo

      Sophos: Product Lifecycle Information: Extended Support for Windows 7 and Windows Server ...

      31/01/2022
      0
    • Sophos Logo

      End-of-Life (EoL) announcement for Sophos SSL VPN Client

      29/11/2021
      0
    • WatchGuard logo

      WatchGuard: macOS Monterey 12.0.1 Does Not Support the AuthPoint Logon App

      09/11/2021
      0
    • Sophos Logo

      Sophos UTM Manager (SUM) End of Distribution

      04/11/2021
      0
    • WatchGuard logo

      WatchGuard: End of Sale Notice: AP420

      01/11/2021
      0
  • Out of the Box
    • WatchGuard’s Firebox T80 Earns 5-Star Rating in SC Labs Review

      17/11/2020
      0
    • WatchGuard Wins Big in CRN 2020 Tech Innovator Awards

      16/11/2020
      0
    • Coronavirus scams: what to look for and how to stop them

      02/04/2020
      0
    • Dell SonicWALL TZ 300

      Out the Box - Dell SonicWALL TZ 300

      05/07/2016
      0
    • Dell SonicWALL TZ SOHO

      Out the Box - Dell SonicWALL TZ SOHO

      05/07/2016
      0
    • WatchGuard Firebox T50

      WatchGuard Firebox T50

      31/03/2016
      0
    • WatchGuard Firebox M200

      WatchGuard Firebox M200

      31/03/2016
      0
FortinetNews
Home›News›Fortinet›The Functional Requirements of a Security Platform

The Functional Requirements of a Security Platform

By admin
25/02/2020
1633
0
Share:

Security manufacturers increasingly refer to their solutions as a platform, with the vague implication that this gives their technology a distinct advantage. The challenge, of course, is that the term platform is rather ambiguous. It simply refers to the environment in which a piece of software is executed. It can refer to the hardware it is installed on, the operating system (OS) that runs it, or even a web browser loaded with specific APIs to execute the program code. As a result, the term often isn’t really all that useful when you are shopping for a security solution. 

However, a carefully crafted platform can provide distinct advantages for deploying, managing, and running security solutions. So, like other terms that are often overused by marketing teams – such as “cloud-ready” or even “artificial intelligence” – we need to get specific about what we mean by the term platform if it is to be of any value. The trick is to establish a uniform definition against which you can judge the merits of any solution claiming to be a platform.

So, what can we agree to as the functional requirements of a security platform? We can boil this discussion down to three specific requirements. A platform needs to be broad, integrated, and automated. Let’s look at each of these:

A platform needs to be broad 

First, a platform needs to be able to run a number of different security tools simultaneously. The NGFW is a classic case, as most include such things as firewall, IDS/IPS, web filtering, and sandboxing capabilities bundled into a single framework. But that alone doesn’t make it a platform. 

A security platform also needs to be able to run on as many environments as possible. Physical network perimeters have different requirements than data centers and branch offices. Internal virtual networks, like NFV and private cloud, have their own unique requirements. Many organizations, for example, run more than one hypervisor and they shouldn’t have to deploy a different security platform for each one. Each needs its own security platform.

The public multi-cloud complicates things further. Every major cloud provider has its own unique requirements that a platform needs to support. Cloud-native functionality allows a platform to take full advantage of an environment’s unique strengths and leverage the APIs made available to make security solutions faster and more effective. 

But operating in and across different platforms is only part of the challenge. These solutions also need to operate at the digital speeds each environment requires. In today’s digital marketplace, the delivery of data, workflows, applications, and transactions cannot afford to be slowed down by security tools that just can’t keep up. Which means that the idea of broad needs to also encompass depth as well as breadth, running at the speed of business in any environment.

A platform needs to be integrated 

Just as important as ubiquitous deployment and the support for hyperscale and hyperperformance, is the need for the various tools deployed on a security platform to function as a single, integrated solution. For example, they can’t require separate management, configuration, orchestration, or analysis consoles. By integrating these devices into a common operating system, they can see each other, share and correlate threat intelligence, and participate in any coordinated threat response.

Likewise, all management, configuration, and orchestration needs to be integrated into a single-pane-of-glass console. This not only allows for a single source of truth to support visibility and control, it also helps ensure that all configurations are compatible and that there are no gaps in terms of meeting compliance obligations. It also ensures that external feeds that provide actionable threat intelligence are distributed consistently across all security solutions.

Of course, integration shouldn’t be limited to the handful of security tools provided natively on the platform. The platform also needs to provide APIs that allow third-party solutions to build integrations between the platform fabric and their products, connect to orchestration systems to support dynamic topology changes and workflows, and even develop complimentary solutions for a stronger end-to-end security solution .

Finally, integration needs to extend between every platform deployment. A true security platform not only needs to deploy and enforce security policies consistently regardless of where the platform is located, but also coordinate activities, correlate data, and ensure consistent enforcement between platforms. This integrated network of platforms establishes a unified security fabric that can span and adapt to the entire distributed network.

A platform needs to be automated

The third essential pillar of any platform is that it needs to function at the speeds that human operators simply cannot. Transactions and threats happen at blazing speeds and require a security platform that can not only process threat intelligence gathered from across the distributed security fabric but also automatically pull the trigger on an orchestrated response in order to stop a threat in its tracks.

By augmenting traditional automated security scripts with machine learning, security platforms can enhance their ability to detect and respond to threats, while centralized orchestration tools ensure that all systems are armed with the latest intelligence. Adding Artificial Intelligence will enhance automation further by enabling platforms to perform those functions traditionally reserved for security analysts. But they will be able to process more data, correlate more threads of intelligence, and perform deeper analysis at faster speeds than any team of human analysts.

Platforms also need to support automated workflows to ensure that things like network segment access and transactions between resources are automatically secured. For example, a laptop with a virus should communicate with an access point and the security platform to prevent it from joining the network, and an automated workflow should then automatically redirect it to a quarantined environment. A unified platform enables automated workflows between devices that overcomes the challenge of interoperability created by isolated, multi-vendor deployments. 

And by driving the platform deeper into the network to perform such tasks as zero-trust network access, dynamic network segmentation, and automated workflows, the security platform will be able to monitor network behaviors and automatically adapt and scale as they evolve to prevent security from continually functioning in reaction mode.

A common set of platform requirements will simplify evaluation, save money, and shorten time to deploy

These three pillars – broad, integrated, and automated – should be a baseline against which any product claiming to be a platform should be assessed. By establishing a common set of requirements of what a platform needs to be able to do, organizations will have a much better foundation from which to evaluate solutions from different vendors, as well as determine how those solutions can secure their distributed networks and ongoing digital innovation efforts.

Find out how Fortinet’s Security Fabric platform delivers broad, integrated, and automated protection across an organization’s entire digital attack surface from IoT to the edge, network core and to multi-clouds.

Previous Article

Media Alert: SophosLabs Reports on Cloud Snooper, ...

Next Article

Harden your public cloud environment against APT-style ...

0
Shares
  • 0
  • +
  • 0
  • 0
  • 0
  • 0

Related articles More from author

  • Fortinet AWS_reinvent
    News

    Fortinet to Demonstrate Broadest Portfolio of Cloud Security Solutions at AWS re:Invent in Las Vegas

    17/11/2017
    By admin
  • NewsTrendMicro

    Trend Micro Integrates with AWS Gateway Load Balancer for Improved Security Function

    13/11/2020
    By admin
  • SonicWall Logo
    NewsSonicWALL

    SONICWALL EXPANDS BOUNDLESS CYBERSECURITY WITH NEW HIGH-PERFORMANCE, LOW-TCO FIREWALLS; COMPANY DEBUTS CLOUD-NATIVE ZTNA SOLUTION TO SECURE WORK-FROM-ANYWHERE ENVIRONMENTS

    12/11/2020
    By admin
  • NewsTrendMicro

    Trend Micro Blocks Over 61 Million Ransomware Attacks in 2019

    25/02/2020
    By admin
  • NewsSophos

    “Asnarök” Trojan targets firewalls

    26/04/2020
    By admin
  • NewsWatchGuard

    WatchGuard TDR Wins CRN Tech Innovator Award for Threat Detection Security

    12/11/2019
    By admin

  • NewsTrendMicro

    Trend Micro First to Deliver XDR Across Email, Network, Endpoint, Server and Cloud Workloads

  • NewsSophos

    Sophos Intercept X Named Best Endpoint Security Solution by CRN® for Fourth Consecutive Year

  • Sophos Leader
    News

    Sophos is named a Leader in the Gartner UTM Magic Quadrant

Timeline

  • 29/03/2022

    Advisory: Sophos Central Maintenance scheduled for Saturday, April 2nd, 2022

  • 03/03/2022

    Sophos: Important Product Lifecycle Updates

  • 01/03/2022

    Shoring up your cybersecurity posture in light of ongoing crisis

  • 23/02/2022

    WatchGuard Support Alert

  • 03/02/2022

    Sophos: Important Product Lifecycle Reminder

Sponsored Links

Latest Comments

  • Paul Sillars
    on
    21/06/2016
    I received this in an email this morning, it was the first I heard about it ...

    Dell Software Group sold to help fund looming EMC deal

  • Paul Sillars
    on
    20/06/2016
    This is going to be an interesting one to watch. Especially after today's announcement that ...

    Ingram Micro gets distribution access to Dell’s security range in Australia

Find us on Facebook

Firewall.News Logo

This site serves more as a reference point for some of the major security vendor's updates and product/press releases

It will never be a definitive list, but it helps our customers keep up to date and also allows us to express our comment and observations as well.

About us

  • PO Box 451, North Lakes, Queensland, 4509, Australia
  • [email protected]
  • Recent

  • Popular

  • Comments

  • Sophos Logo

    Advisory: Sophos Central Maintenance scheduled for Saturday, April 2nd, 2022

    By admin
    29/03/2022
  • Sophos Logo

    Sophos: Important Product Lifecycle Updates

    By admin
    03/03/2022
  • Shoring up your cybersecurity posture in light of ongoing crisis

    By admin
    01/03/2022
  • WatchGuard logo

    WatchGuard Support Alert

    By admin
    23/02/2022
  • Dell SonicWALL Supermassive

    Ingram Micro gets distribution access to Dell’s security range in Australia

    By admin
    14/06/2016
  • Francisco Partners and Elliott Management to Acquire the Dell Software Group

    Dell Software Group sold to help fund looming EMC deal

    By admin
    21/06/2016
  • WatchGuard Firebox M500 – The Cure for HTTPS Performance Headaches

    By admin
    05/03/2015
  • Sophos Logo

    Advisory: Sophos Central Maintenance scheduled for Saturday, April 2nd, 2022

    By admin
    29/03/2022
  • Paul Sillars
    on
    21/06/2016

    Dell Software Group sold to help fund looming EMC deal

    I received this in ...
  • Paul Sillars
    on
    20/06/2016

    Ingram Micro gets distribution access to Dell’s security range in Australia

    This is going to ...

Follow Me

  • Contact
  • About Us
  • Home