Greg YoungI recently completed a video webcast on application inspection and the related threat environment here (note: this link is not a Gartner, Inc website) .
The Gartner materials are used with Gartner’s permission and in no way does the use or publication of Gartner research indicate Gartner’s endorsement of any vendor products and/or strategies.
Yes, I have a face made for radio.
Category: Uncategorized Tags:
2 responses so far ↓
1 Stiennon April 9, 2009 at 11:50 am
My concern about so-called “application inspection” is that it is such a tiny feature of content inspection. Of course a gateway security device should be able to identify a Skype session, or Citrix, or TweetDeck. Giving the enterprise granular control over what apps are accessed over the network is a no-brainer.
But what do you do when you want to *allow* Skype but block malware that is spread via that application? You have to apply malware filters to the traffic and that is a lot harder to do than simple application ID.
-Stiennon
2 Greg Young April 9, 2009 at 11:55 am
Indeed Richard – the IPS would pick up malware if there are filters available. APP ID as part of a next gen firewall is much more useful, and shouldn’t be viewed a s replacement.