FaceTime Unified Security Gateway

Secure and Enable the New Internet

FaceTime's Unified Security Gateway (USG) 3.0 is the first secure Web gateway to combine content monitoring, management and security of Web 2.0 applications such as social networking, instant messaging, and Unified Communications, with URL filtering, malware and Web antivirus protection.

USG 3.0 provides granular control of not only Web sites and applications but also the content posted to blogs, wikis, webmail and social networking sites such as Twitter, Facebook and YouTube. Such content can be monitored, secured and recorded – reducing outbound data leakage and enabling compliance with industry regulations, legal discovery requirements, and corporate policy standards.

Today's Internet is dominated by connectivity and collaboration. As organizations and users alike are utilizing a combination of enterprise and publicly available tools, applications and communities, the Internet and corporate networks are awash with Web 2.0 applications such as social networks, instant messaging, VoIP, gaming and sharing applications. In a corporate environment these are deployed alongside enterprise Unified Communication platforms such as Microsoft Office Communications Server and IBM Lotus Sametime, adding complexity to management, security and compliance issues.

USG Appliance

New and enhanced features in USG 3.0:

Monitoring, control and recording of content posted to social networks, Twitter, blogs and sent via webmail
Inbound Web content controls – block elements of Web content or media that fall outside of policy
Market-leading application coverage for over 4,000 native and Web-based applications.
Insight Reporting Engine aggregates data from multiple USGs and provides a “birds-eye” view of user traffic across all Internet channels – including Web, IM, P2P and more
Onboard antivirus engine from Sophos scans content received over HTTP/HTTPS, FTP, IM and UC channels
ICAP-based Web proxy connector to augment existing security infrastructures
Fully customizable modular dashboard
Custom URL filtering categories with import capabilities from existing URL filtering solutions

While traditional security tools, such as URL filtering, firewalls and Intrusion Prevention Systems, continue to play an invaluable role in perimeter defenses, they do not provide for, secure or manage these new, highly evasive applications. Designed specifically to communicate, these applications - from social networks, to instant messaging applications and web conferencing tools - bypass traditional corporate network security protection measures.

In today's Internet connected environment, simple URL filtering is no longer sufficient to provide for the challenges of Web 2.0. Organizations need a comprehensive secure Web gateway that includes URL filtering along with malicious-code detection and application controls for instant messaging (IM), Skype, P2P file sharing, social networking and other Web 2.0 applications to protect their network and their business.

Unified Security Gateway: The Secure Web Gateway for Web, Real-time and Unified Communications Traffic

Unified Security Gateway (USG) 3.0 enables management, security and compliance of the New Internet with the ability to set custom policies across multiple communications modalities - from IM, peer to peer networks, social networking applications and Web traffic. USG integrates with LDAP and Active Directory servers to provide simplified policy setting at the company, group or employee level, by time of day or bandwidth across all real-time communications modalities. A highly visual reporting engine gives an innovative birds-eye view of user behavior across Web, IM, P2P, Unified Communications, and social networks.

Integration of Sophos' anti-virus scanning technology in combination with USG's URL filtering and malware engine reduces the risk of Internet-borne malware and viruses. Automated updates from Sophos' and FaceTime's anti-malware and URL filtering databases ensure up-to-the-minute protection. And USG's easy to use interface provides administrators with straightforward policy management, statistics, system information and reports.

Key Features:

Security

Control content posted to social networks, Twitter, blogs and sent via webmail to prevent leakage of confidential information
Virus scan content received over HTTP/HTTPS, FTP, IM and UC channels
Dynamically filter millions of websites and URLs using predefined and customizable categories
Enforce corporate acceptable web policies through allow, block or “coach” access to categories or individual web sites
Gain visibility and control more than 4000 web applications across a wide range of categories including social networks, IM, P2P, IPTV and Virtual Worlds
Real time protection against malware, rootkits and botnets
Stop access to malware-infected websites
Prevent web-based threats propagating through social networks
Secures real time content across all communications channels, preventing data leakage and malware infection.

Instant Messaging & Unified Communications

Gain visibility and control over dozens of IM applications, including aggregators
Apply security policy and management controls to both UC messaging and public IM
Block day-zero worms with challenge response and message throttling
Prevent data leakage with granular filtering and file transfer blocking
Real time alert reporting on disallowed content transfers
Block risky, bandwidth-consuming SpIM
Scan file transfers over IM using existing antivirus infrastructure
Location-aware policy enforcement using endpoint IP addresses
Map public IM buddy names to user names in enterprise directory

Compliance

Monitor, control and record content posted to social networks, Twitter, blogs and sent via webmail
Block elements of Web content or media that fall outside of corporate policy or compromise compliance with regulatory requirements
Record Public IM chats conducted over UC clients in federated environments
Tamper-proof logging and archival for compliance and e-discovery requirements
Archive actual files transferred over IM for comprehensive review and audit process
Leverage and integrate with existing message archiving solutions (.e.g EMC, Enterprise Vault, etc)for comprehensive enterprise messaging insight
Create ethical boundaries by setting policies at user/group level for IM usage
Apply IM disclaimer messages to educate users and meet legal, audit and regulatory requirements
Configure rich compliance workflow to easily retrieve stored information.

Management

Manage productivity through time and bandwidth quota setting and allocation controls by group or user - across web access, P2P usage, social networks and instant messaging.
Granular control (with LDAP and AD support) at group and user levels for location-independent policy enforcement across all modalities
Insight Reporting Engine aggregates data from multiple USGs and provides a “birds-eye” view of user traffic across all Internet channels – including Web, IM, P2P, social networks and more
Protects investment in UC platforms like Microsoft OCS and IBM Lotus Sametime, by preventing access to native public IM tools.
Unified policy management and enforcement for all real-time Internet activities
Simple installation and integration with existing network infrastructure with zero latency
Customisable multi-format reporting by employee browsing, application usage, time spent, data downloading and IM content transferred
Secure management console for centralized configuration, management, and reporting
Supports use of external database for policies, logging and archival for scalability and availability

Deployment:

USG 3.0 may be integrated with a Web/FTP proxy server, such as Blue Coat, through an ICAP-based connector or deployed in simple pass-by mode - a plug and play deployment which requires no change to existing network configurations. See the feature sets available for each to determine the deployment that best suits your environment.

Documentation:

Download the FaceTime Unified Security Gateway Datasheet (PDF).