Threats to an organisation can take many forms. These threats increasingly use applications to evade and circumvent traditional firewalls and IPS solutions. Making matters worse, emerging threats can be completely customised to the target network.

Modern threat prevention requires a new approach that is application-aware, coordinates multiple threat disciplines and controls both known and unknown threats.

In order to prevent threats effectively, organisations must:

1. Reduce the avenues of attack - start controlling which applications run on the enterprise network

2. Scan allowed application traffic for threats more broadly - not limiting themselves to a strict definition of a particular type of threat (e.g., "virus" or "exploit")

The solution... Next generation threat prevention

• Provide direct analysis and visibility into unknown executables and traffic to detect new or targeted threats
• Limit traffic to approved applications while avoiding the risks from unnecessary applications
• Scan "good" applications for a wide variety of threats - exploits, viruses, spyware, even confidential data leaks - with a single pass, stream-based scan
• Integrate intelligence, policies and reporting between the firewall and threat prevention functions
• Maintain network performance and throughput while providing IPS and threat prevention
• Simplify infrastructure with a single policy, high port-count, and high performance