Virtualization Solutions from Check Point Software ... - Stallion

Installing the MX-Edit VST Hardware Plug-In...................................................35Connecting the MX200 .....................................................................................35Software Configuration .....................................................................................36Using the MX200 Plug-In Window....................................................................36Controls.............................................................................................................36MIDI Port Error Message ..................................................................................37CC Mapping .............................................................................................................37MIDI Implementation Chart ......................................................................................37Specifications ...........................................................................................................38Appendix ..................................................................................................................39Program List.............................................................................................................40

Check Point Stays Ahead…Defined 3 domains:Endpoint and data, network andgateway, managementTotal security solutionsComprehensive gateways,including appliancesSoftware BladesThe architecture that changes security200720082009More, Better, Simpler SecurityA holistic approach where endpoint and network areintegrated and DLP, IPS impact all domains of security2010©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |7

Agenda1 Who are we?2 Virtualization and Clouds3 Security at Virtualized Core4 Desktop Virtualization©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |8

Data Center Trends‣ The New Computer‣ Data center capacity, not server capacity,is the new metric‣ Consolidation‣ High Computational Density‣ Physical Location Consolidation‣ Green‣ Efficient Power Management‣ Virtualization‣ On Demand Provisioning‣ Hardware Independence / High Availability‣ Location Independence‣ Network / Storage Convergence©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |9

Next Generation Data CenterIP-netAutomated Metering and BilllingService ManagementAutomated Orchestration and ProvisioningServersServersVirtual InfrastuctrureStorage NetworkPhysical InfrastructureStorage NetworkFacilitiesConfiguration Management Database (CMDB)©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |10

Different Services from CloudIaaSPaaSSaaSStaaSInfrastructureas a Service• Servers• Network• Storage• Managedservices (FW)Platform as aService:• ApplicationbuildingblocksSoftware as aService:• Applications• ASPStorage as aService:• Primary• Backup andarchieve• DisasterrecoveryMultipleServiceProvidersAmazon EC2 Salesforce.com Amazon S3Capacity / Utility Based Computing, Delivered from NGDCCloud = IT as a Service (ITaas)Cloud Computing = Business Model for Delivering ITaaSVirtualization = Techology that Enables Cloud Computing©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |11

Virtualization Overview• Virtualizationdecouples physicalresources from theOS & applicationsVirtualization Layer• Machines areencapsulated asfiles©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |13

Agenda1 Who are we?2 Virtualization and Clouds3 Security at Virtualized Core4 Desktop Virtualization©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |14

Virtualization, Like Every NewTechnology, Presents New Risks• New attack vectors• Loss of segmentation• New managementrequirements• Operational teams willbe mixed (Server,Security, Network…)©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |15

Security Challenges In VirtualEnvironmentsVirtualization BenefitsEasy machine creationSecurity and Compliance ConcernsVulnerabilities on a VM are not detected by externalscannersMultiple apps/servers consolidatedinto VM’s on single ESXExternal security devices on physical LAN can’tautomatically detect events on virtual devicesVM’s operating and communicatingentirely within virtual environmentVisibility gap; Lack of inter-VM visibility formonitoring and enforcementVMotion (live migration) - Mobilityenables high availability, dynamicresource optimizationHypervisor enables consolidationMaintain security and isolationAccess to sensitive data in VM©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |16

Check Point Security Gateway VE R70Total SecurityFor Virtual Environments• Best-in-class security for virtual applications• Separates virtual machines and protects inter-VM traffic• Protects against external threats with full IPS & UTM functionality• Unified management of physical and virtual environment©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |18

Firewall Security at Layer 2 with VMPktESX Server2.1.1.1 sendspacket to 2.1.1.32.1.1.1 2.1.1.2 2.1.1.3 2.1.1.4 2.1.1.5PktAgent Agent Agent Agent AgentSecurity APIPacket continues intercepted the in flow the Packet is notvSwitchfrom Agent where and it forwarded was intercepted to inspected the againGateway for inspectionR70 VEPktPacket passed firewallinspection and is sent back tothe Agent©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |19

Protecting the Virtualized Data CenterVMware ESX Topology with VPN-1 VECheck Point VPN-1 VESecurity GatewayWeb ServersApplication ServersDatabase ServersCardholder dataVMVMVMInternetvSwitchIntranetvSwitchWebvSwitchAppvSwitchDBvSwitchServiceConsoleNICTeamsVMwareESXInternetProductionLANCheck Point UTM-1Security GatewayManagementLANVMwarevCenter©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |20

Security Gateway VE with VMsafe• Protect the VM by inspection from inside the vSwitch• Complete integration and awareness of VMotion, Storage VMotion, HA, etc.Web ServersApplication ServersDatabase ServersCardholder dataCheck Point VESecurity GatewayVMVMVMInternetvSwitchInternalvSwitchServiceConsoleNICTeamsVMwareESXInternetProductionLANManagementLANCheck Point UTM-1Security GatewayVMwarevCenter©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |21

R70 VE BenefitsBest SecurityFull CoverageManagementConsistencyFirewall, IPSand UTMintegrated inthe VM-kernelProtectionagainst inter-VM andexternal threatsInteroperablewith VMware V-SphereManagementConsoleUnified securitypolicy insideand out of thevirtual zoneV-CenterManagement©2010 ©2010 Check Check Point Point Software Software Technologies Technologies Ltd. Ltd. | | [Unrestricted] [Restricted]—ONLY For Everyone for designated groups and individuals | | 2222

Agenda1 Who are we?2 Virtualization and Clouds3 Security at Virtualized Core4 Desktop Virtualization©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |23

Remote Workforce ChallengesWorking—and Accessing Files—from HomeExamples► Isolate and protect yourcorporate data while usingyour family PC“42% of US employers allowedstaff to work remotely thisyear—up from 30%.”—World at Work 2009(Survey of 2,288 U.S. employers)► Avoid unintentional data lossduring home PC usage byfamily members bysegregating corporate data©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |24

Business Continuity ChallengesThe Case of the Icelandic VolcanoExamples► Maintain productivity evenwhen large numbers of yourworkforce are stranded due toa volcanic eruption or othernatural disaster“Companies prepared forbusiness interruptions… arethe ones most likely to be keepthemselves operating.”—AP Report, Iceland Volcano 2010► Sustain business continuitywhen a snow-day forces theclosure of your office©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |25

3rd-Party Workforce ChallengesPartners, Contractors and Shared EnvironmentsExamples► Prevent contractors fromexposing your sensitiveinformation to 3 rd parties“Over 44% of all cases in thisyear’s data-breach studyinvolved third-party mistakes.”—Ponemon Institute 2009► Maximize assets usage inshared environments - suchas call centers - whileproviding personal workspaceto all employees©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |26

Introducing Check Point AbraCheck Point AbraPut your office in your pocketInstantly turn any PC into your own corporate desktopVirtual workspace that keeps mobile data secureIdeal for mobile workers, contractors and disaster recovery©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |27

Standard Windows EnvironmentAccessencryptedfiles on USBdriveAccess toIntranet andapprovedwebsitesLaunchapprovedapplicationsTogglebetweensecureworkspaceand host PC©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |28

Plug-and-Play Solution toFit Any PCWork Off-LineWork On-LineAccess working files anddata from thevirtual workspaceSeamless and secureconnectivity to thecorporate network©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |29

Let’s see how it works!©2010 Check Point Software Technologies Ltd. | [Unrestricted] For Everyone |30