Content Analysis

prevention and event control are closely linked

Content analysis integrates and prevents advanced threats in real time by applying whitelists, various anti-malware technologies, and static code analysis. Most importantly, unlike passively deploying traditional sandbox processing providers on the network, Blue Coat content analysis provides an integrated environment in which Blue Coat or sandbox processing from third-party providers can be comprehensively utilized as embedded and real-time inspection technologies.

Content analysis can be implemented:

• in-depth and thorough intelligence defensecollaborative use of application whitelists, malware scanning (supports many different anti-malware engines), and static code analysis to prevent threats from the simplest to the highest level. Our efficient approach ensures that sandbox operations can be reserved for the most complex threats, so that scaling can be achieved even in the largest environments.

• malware analysis is carefully plannedAs a proxy between multiple sandboxes, content analysis synchronizes unknown or suspicious files to Blue Coatmalware analysisfacilities and third-party sandboxes. It then waits for the behavior analysis performed in the sandbox before submitting the file to the user, so that you can expand a deep and thorough line of advanced malware defense while optimizing your existing environmental investment.

• Endpoint integrationcontent analysis sends compromise indicators (IOC) to a variety of supported endpoint detection and response (EDR) technologies. These techniques can verify the presence of threats at the target endpoint, search these IOC in all other systems and send information back to content analysis to generate reports, and then send links to suspected devices. This saves your security team time and sets alarm priorities.

• Advanced threat protection solutionsThe content analysis is Blue CoatAdvanced Threat Protectionthe key components of the solution. It integrates a variety of technologies to achieve comprehensive defense. Specifically, it builds a network defense line by preventing unknown threats, actively detecting unknown and existing malware in advance, and automatically completing post-intrusion event control.

resources

• features

• Product Description

• Solution

• Top Four Reasons to Migrate to Content Analysis System - Solution Brief

  Updated: Feb 27, 2015 (663.55KB)

• Block Known Threats, Analyze the Unknown for Advanced Threat Protection at the Gateway - Solution Brief

  updated: Mar 06, 2014 (291.69KB)