• Home

  • Documents

  • MacProStorage02: 2019CLF:Bitdefender-Whitepaper-Hard
4
Solution Brief Browser Isolation tempfile_10932930 1 09/05/2019 15:37

MacProStorage02: 2019CLF:Bitdefender-Whitepaper-Hard

  • Upload
    others

  • View
    3

  • Download
    0

Embed Size (px)

Citation preview

Page 1: MacProStorage02: 2019CLF:Bitdefender-Whitepaper-Hard

Solution Brief

Browser Isolation

tempfile_10932930 1 09/05/2019 15:37

Page 2: MacProStorage02: 2019CLF:Bitdefender-Whitepaper-Hard

[2]

Solution Brief

That the web is a dangerous place will not surprise any IT administrator. Web browsers, and their associated plug-ins, constitute a significant part of the threat profile of organizations. By their very nature, browsers are designed to consume and execute an extremely wide variety of code to locally render web content. The threats are myriad, including ransomware, cryptojacking, and more insidious attacks that lead to full-blown data breaches, such as file-less attacks which occur entirely within memory. At the same time, the productivity of end-users often depends on access to web resources.

Attackers continue to take advantage of browser vulnerabilities.

Isolate the greatest risk to your network - web browsers – not usersJust as end-user systems are isolated from critical servers, web browsers must be isolated from end-user systems, and the exe-cution environment of those browsers must be secured.

Bitdefender Browser Isolation combines the seamless end-user experience of Citrix Virtual Apps (formerly XenApp) to isolate browsers with unique and proven Bitdefender security. This creates a virtual air-gap between end-user systems and the web while ensuring attempted breaches can neither gain a foothold in, nor escape from, the execution environment of the virtualized browsers.

Bitdefender Browser Web Resources

End-user Systems

What matters is where web content executes, and how the isolated browser environment is secured, regardless of the type of threat or the source.

Users will keep clicking, so you must contain and secure browsers When a user clicks on a link, a malicious payload may be downloaded and executed by the browser. The URL itself need not be suspicious; sophisticated attackers continue to find ways to embed malicious content in otherwise legitimate websites – in-cluding malvertizing, DNS hijacking, compromising publishing platforms such as WordPress, etc. - or craft URLs which appear legitimate. Attackers are creative, and even the most highly trained end-user can fall prey to sophisticated, targeted attacks.

In file-less attacks, while the payload is executed by the browser to gain a foothold on the system by exploiting a vulnerability, no malware is written to disk. These sophisticated attacks reside entirely in memory, providing not artifacts on disk for traditional anti-virus to detect.

Unleash the full security potential of Citrix virtualized browsersCitrix Virtual Apps delivers exceptional end-user experience which is the product of years of Citrix leadership in application virtualization. To secure virtualized browsers, Bitdefender leverages unique Citrix Hypervisor (formerly XenServer) features in ways which no other security vendor has.

Isolated from the isolated browsersAttackers often seek to subvert security which runs in the same server as virtualized applications. Bitdefender Browser Isolation is itself isolated from the execution environment of virtualized browsers since it leverages the hypervisor, which operates in hard-ware-enforced isolation from the browser execution environment.

tempfile_10932930 2 09/05/2019 15:37

Page 3: MacProStorage02: 2019CLF:Bitdefender-Whitepaper-Hard

[3]

Solution Brief

Beyond detectionLooking for known bad, in the form of malware signatures or blacklisted URLs, is a limited approach. Malware defeats signatures at an ever-accelerating pace, and signatures are powerless against novel threats. Bitdefender Brows-er Isolation defeats attacks by monitoring memory for attack techniques including buffer overflows, code injection, and heap spray, which are used to gain an initial foothold on systems, including in file-less attacks.

Avoid virtual lockdownThe inverse of blocking known-bad is allowing only known-good. This approach includes lock-ing-down browsers and limiting access to only whitelisted URLs.

The lockdown approach unravels as end-users demand additions and exceptions to the point that whitelists become unmanageable, something which is familiar to users of ad-blockers or password managers. It can also provide false hope as what appear to be safe browsers, plug-ins, and web sites, can be leveraged for attacks faster than administrators are able to react. Bitdefender Browser Iso-lation blocks the techniques which attackers use to gain a foothold in your environment, effectively eliminating many of the tools on-which attackers rely.

Defeat invisible threatsBitdefender Browser Isolation leverages unique capabilities of the Citrix Hypervisor (formerly Xen-Server) to eliminate common in-memory exploit techniques from the toolkits of attackers. The ap-proach, which is available from only Bitdefender, leverages an API in the Citrix Hypervisor to monitor the execution environment of virtualized browsers, reporting on and/or blocking malicious activity.

By looking for attack techniques, the solution requires no prior knowledge of the exploit being used or the vulnerability being attacked. It is true zero-day protection for the web.

Make a Difference with Bitdefender Browser Isolation

Execute web content in isolated, virtualized browsers

Protect virtualized browsers with unique, proven Bitdefender security

Unleash the full potential of Citrix Virtual Apps and Hypervisor

ENGAGE USCitrix environments : https://www.bitdefender.com/business/citrix.html

Call: (US) 800-388-8062

Explore: https://www.bitdefender.com/business/enterprise-products/enterprise-security.html

tempfile_10932930 3 09/05/2019 15:37

Page 4: MacProStorage02: 2019CLF:Bitdefender-Whitepaper-Hard

tempfiee_10

93091

Bitdefender is a global cybersecurity leader protecting over 500 million systems in more than 150 countries. Since 2001, Bitdefender innovation has consistently delivered award-

winning security products and threat intelligence for the smart connected home, mobile users, modern businesses and their networks, devices, data centers and Cloud infrastructure.

Today, Bitdefender is also the provider of choice, embedded in over 38% of the world’s security solutions. Recognized by industry, respected by vendors and evangelized by customers,

Bitdefender is the cybersecurity company you can trust and rely on.

All Rights Reserved. © 2019 Bitdefender. All trademarks, trade names, and products referenced herein are property of their respective owners.

7058

5

Bitdefender is a global security technology company that delivers solutions in more than 100 countries through a network of value-added alliances, distributors and reseller partners. Since 2001, Bitdefender has consistently produced award-winning

business and consumer security technology, and is a leading security provider in virtualization and cloud technologies. Through R&D, alliances and partnership teams, Bitdefender has elevated the highest standards of security excellence in both its number-

one-ranked technology and its strategic alliances with the world’s leading virtualization and cloud technology providers. More information is available at http://www.bitdefender.com/.

All Rights Reserved. © 2018 Bitdefender. All trademarks, trade names, and products referenced herein are property of their respective owners. FOR MORE INFORMATION VISIT: enterprise.bitdefender.com.

tempfile_10932930 4 09/05/2019 15:38


LivePersLivePerson Security Whitepaper 2014on Security Whitepaper 2014

LivePersLivePerson Security Whitepaper 2014on Security Whitepaper 2014

Documents
GOS Whitepaper

GOS Whitepaper

Documents
Metrics Whitepaper

Metrics Whitepaper

Business
Msso Whitepaper

Msso Whitepaper

Documents
TAD Whitepaper

TAD Whitepaper

Documents
GVP Whitepaper

GVP Whitepaper

Documents
WHITEPAPER: COLLABORA WHITEPAPER: COLLABORA Video ... · Video Collaboration & the Future Workplace ... WHITEPAPER: COLLABORA WHITEPAPER: COLLABORA ... Video conferencing …

WHITEPAPER: COLLABORA WHITEPAPER: COLLABORA Video ... · Video Collaboration & the Future Workplace ... WHITEPAPER: COLLABORA WHITEPAPER: COLLABORA ... Video conferencing …

Documents
Mem Whitepaper

Mem Whitepaper

Documents
Glass & Hard Plastic ontrol - Safefood 360°safefood360.com/resources/Glass-Plastic-Control.pdf · Glass & Hard Plastic ontrol 2 Safefood 360º Whitepaper (March, 2013) The production

Glass & Hard Plastic ontrol - Safefood 360°safefood360.com/resources/Glass-Plastic-Control.pdf · Glass & Hard Plastic ontrol 2 Safefood 360º Whitepaper (March, 2013) The production

Documents
Whitepaper gamification

Whitepaper gamification

Software
SaaS Whitepaper

SaaS Whitepaper

Documents
OTN Whitepaper

OTN Whitepaper

Documents
Gop Whitepaper

Gop Whitepaper

Documents
H3E Whitepaper

H3E Whitepaper

Documents
G DATA Whitepaper Vorlage · G DATA WHITEPAPER PUP’S 6 G DATA WHITEPAPER PUP’S 7 Whitepaper PuP EN 04-2015 • 3210110515 Whitepaper PuP EN 04-2015 • 3210110515 ARE POTENTIALLY

G DATA Whitepaper Vorlage · G DATA WHITEPAPER PUP’S 6 G DATA WHITEPAPER PUP’S 7 Whitepaper PuP EN 04-2015 • 3210110515 Whitepaper PuP EN 04-2015 • 3210110515 ARE POTENTIALLY

Documents
Ale Whitepaper

Ale Whitepaper

Documents
Whitepaper SFA

Whitepaper SFA

Software
Pangolin whitepaper

Pangolin whitepaper

Technology
SMS Whitepaper

SMS Whitepaper

Documents
Ethanol whitepaper

Ethanol whitepaper

Business
whitepaper (1)

whitepaper (1)

Documents
Example Whitepaper

Example Whitepaper

Technology
STIX Whitepaper

STIX Whitepaper

Documents
Healthcare Whitepaper

Healthcare Whitepaper

Health & Medicine
LTE Whitepaper

LTE Whitepaper

Documents
AGIS Whitepaper

AGIS Whitepaper

Documents
HSPA Whitepaper

HSPA Whitepaper

Documents
Assessments whitepaper

Assessments whitepaper

Technology
KF4D Whitepaper

KF4D Whitepaper

Documents
Whitepaper GettingStartedwithActiveXAutomationUsingVBNET

Whitepaper GettingStartedwithActiveXAutomationUsingVBNET

Documents