Themes & Channels
Blue Coast adds a real-time anti-phishing protection to its appliance
By Christophe Elise, Tue, October 9th, 2007
Jump right to our comments
Analyzing each url "on the fly" is for Blue Coat the only way of be effective against phishing sites.
Checking a Web URL request against a database of known phishing sites is not the better anti-phishing method. At least Blue Coat Systems doesn't think so. That's why the provider of WAN Application Delivery and Secure Web Gateway added an anti-phishing feature to its ProxySG appliances.
The new feature, called Real-Time Anti-Phishing protection, doesn't rely on database of known phishing but examine each URL "on the fly" based on proprietary algorithms. As soon as an user tries to access a web page, the appliance looks for it in the WebFilter database. If not, a query is sent to the Blue Coat Labs where the page is analyzed, categorize as a phishing site or not. If so, the appliance will block the resquest and/or warn the user. Blue Coat assures the process takes between 250 and 750 milliseconds.
Actually, this technology is quite similar to the web filtering one - WebFilter - Blue Coat already uses in their appliances. WebFilter is based on a proxy database of over 15 millions website ratings representing billions of web pages and on a technology called Dynamic Real-Time Rating.
Our comments :
Enterprises should seriously benchmark this Real-Time Anti-Phishing protection as performance and false positives may be a big concern. We look forward to see if there will be any latency during web surfing.
Print this news
Into IAM ?
The IAM 2008 Series
SecurityNewsletter interviews major Identity & Access Management players to give you the lead on what IAM will be in 2008.