digitalizzazione - cyber security up...iot nac deception 5 compliance evolution nis 6 more than 1...
TRANSCRIPT
© Copyright Fortinet Inc. All rights reserved.
Digitalizzazione: maggiori opportunità o maggiori rischi?
Aldo Di Mattia
Principal System engineer
Team Leader Centre/South Italy
2
[Digital Transformation]
DXis the integration of digital technology into all
areas of a business, resulting in fundamental
changes to how businesses operate and how
they deliver value to customers.
OPPORTUNITIES
3
[Security Transformation]
SXis the integration of security into all
areas of digital technology, resulting in
a Security Architecture that provides a
Continuous Trust Assessment.
RISKS
4
VirusMalware
1980’s
Network Worm
2000
Spam Phishing
2000 2004 2018
The Threat Landscape is Continually ChangingThe expanding attack surface creates the opportunity today
Antivirus IDS/IPSSecure Email
Gateway
RansomwareWebThreats
DDoS
Attacks
ResponseReputation
Botnet
2001
Sandbox
2008 2015
Secure Web
Gateway
2016 2019
Advanced Threats
Anti-
DDoS
ATP
Insider M2M
Artificial Intelligence
UEBA
2017
IoT
NAC
Deception
5
Compliance evolution
NIS
6
More than 1 hour for
85%
Minutes Hours Days
Weeks Months Years
15%50%
27%
5%
2%
2%
Minutes Hours Days
Weeks Months Years
Dealing with today’s issues…
Areas of Greatest
Concern for Security*
Time to
Detect Breach*
Cloud
Vulnerability
in IT systems
Inside Threats
BYOD
IoT
1
2
3
4
5
* Source: Fortinet-sponsored Lightspeed GMI survey
51%OF ENTERPRISES
BREACHEDIN THE LAST 12 MONTHS*
3bnNEW DEVICES PER YEAR
THROUGH 2020
7
1990 2016 2018 2020 2030
FIREWALL
Connection basedSecurity
IT and OTConvergence Visibility &
Content based Security
FABRIC
Intent based Security
FABRICInfrastructureConverged Operations
IT, OT & BMS
Autonomic FABRICData Centric
Machine Learning Security
Serial
Isolated
19801900
Well-Positioned to Lead the 3rd Evolution of Network SecurityNetwork Security Evolution
AIFortiGuard
8
Known Protection Unknown Detection
MALICIOUS SIGNATURE
MALICIOUS
MALICIOUS EMULATION
CLEAN
MALICIOUS
SIGNATURE
ONE TO ONE SIGNATURE
ONE TO MANY
SIGNATURE
BEHAVIORAL
ANALYSISMACHINE
LEARNING
Antivirus Technology Evolution
FORTIGATE
FORTIMAIL
FORTIWEB
FORTICLIENT
FORTISANDBOX FORTIINSIGHT
FORTIWEBFORTIGUARD
FORTIEDR
FORTISOAR
9
AV AI - Features, Nodes & Weights – Multiple InstanceThe output is a result of 2.3B x 3.2B individual node computations
FEATURES FEATURES
Result
INPUT LAYER MALICIOUS LAYER CLEAN LAYER OUTPUT LAYER
File
10
Fortinet Security Fabric
Open Ecosystem
INTEGRATEDAI-driven breach prevention across
devices, networks, and applications
AUTOMATEDOperations, orchestration,
and response
FortiGate
Network Security
Device, Access, and
Application Security
Multi-Cloud Security
BROADVisibility of the entire
digital attack surface
FabricAPIs
Security Operations
Q1FY19 v1.4.4
FortiWebFortiMailFortiADC
FortiGate VMFortiCASB
FortiAnalyzerFortiSIEM
FortiSandbox
FortiAPFortiSwitchFortiToken
FortiManager
FabricConnectors
FortiClientFortiNAC
11
Fortinet End-to-End Solution
NetworkSecurity
Multi-Cloud Security
Endpoint Security
Email Security
Web Application Security
SecureUnified Access
Advanced Threat Protection
Management& Analytics
FortiGate
Enterprise Firewall
FortiGate
Cloud Firewall
Network Security
FortiClient
EPPFortiWeb
Web Application
Firewall
FortiMail
Secure Email
Gateway
FortiSandbox
ATP
FortiAnalyzerCentral Logging /Reporting
FortiManagerCentral Security Management
FortiSIEMSIEM
FortiGate
Virtual Firewall
Network Security
FortiAP
Wireless
FortiSwitch
Switching
Infrastructure
Endpoint
IoTMulti
Cloud Applications
Web Unified
AccessEmail Threat
Protection
AdvancedManagement
Analytics
FortiCASB
IPS
SWG
SD-WAN
VPN
FortiCWP
FortiInsight
UEBA
FortiEDR
EDR
FortiIsolator
Browser IsolationFortiNAC
NAC
FortiDeceptor
Deception
FortiSOAR
SOAR*the new solutions are highlighted in red
12
Fabric Ready Partners
IOT/OT/NAC
MANAGEMENTSDN ENDPOINT
Security/SIEM TECHNOLOGY
CLOUD
IDENTITY
FabricReady
Partners
13
Visibility of the entire digital attack surface5G, Edge Computing, IoT, OT
14
Visibility of the entire digital attack surface
SaaSCloud
CASB API’S
PrivateCloud
FABRIC CONNECTOR
PublicCloud
FABRIC CONNECTOR
Single
Console
Multi-Cloud
15
Visibility is Control
▪ Automate log
management & real-time
threat analysis
▪ Enterprise-ready
continuous compliance
reporting
▪ Simplify forensics and
rapid response
161
6
FortiGuard Threat Intelligence Partnerships
CISCP
& NCCIC
17
1
7
FortiGuard Threat Intelligence
Service
▪ Global threat sensor network
▪ 4.4 Million devices reporting daily
▪ Organic early-warning network
Are you ready?
Fortinet