Blue Coat will launch a malware analysis system as part of its gateway to blocks known threats, and detects and analyse zero-day and advanced malware.
Combining white listing and malware scanning for known threats with dynamic malware analysis of unknown threats at the gateway, the company said that the new system will share threat intelligence locally across the security environment and worldwide through its intelligence network of 15,000 customers and 75 million users.
The company said that it can support up to two anti-virus signature databases and it included sandboxing technology powered by Norman Shark. Blue Coat senior director of product marketing Sasi Murthy, told IT Security Guru that this allows the user to make a choice of which anti-virus to use and to remove bad threats. “It will take unknown threats and isolate them, convert it into a known threat and identify it and provide it to global intelligence so our customers can detect a known vector,” she said.
“The move from an unknown to a known begins at the gateway as we have seen the concept of focused threats as there is a notion that networks are continually attacked. We are blocking at the gateway and around advanced threats, we use the sandbox specifically to analyse the content and identify new threats.”
A part of the Blue Coat Advanced Threat Protection solution, this will be available from December. This release, along with the Advanced Threat Protection solution, uses technology from the acquisition of Solera Networks.
Murthy said that it was important to have detection and protection at every level with retrospective analysis, blocking and understanding of threats. “You are not going to be able to defend yourself if you do not do full remediation in the network, but you can shorten the time to discover and remediate in protecting yourself.”