Bloxx Web Filtering
The Bloxx range of Web filtering appliances
are powered by its revolutionary and patented
Tru-View Technology. Bloxx Web Filters perform
live analysis of web content with contextual
understanding to not only stop nasty web
material from hitting your users' desktops but
to also give you complete control over access to
other types of websites that impact on user
productivity, such as shopping, gaming, auction
The Bloxx Web Filters automatically track and classify more effectively than first and second generation filters and remove the inherent weaknesses in using human-only classification giving you the most up-to-date URL blocking and control.
To maintain user productivity and organisational efficiency during working hours, Bloxx Web Filters tracks both disruptive 'inoffensive' traffic and illegal and offensive content like porn giving you complete Internet control. And it operates 24/7, meaning that the Bloxx database is fluid and current, rather than being based on out-of-date lists.
With 50 categories covering everything from dating to military to hacking, unique algorithms developed by Bloxx Researchers allow websites that aren't in Bloxx's database to be identified and categorized immediately. They are then blocked or allowed depending on the user's access rights to that particular category. The Bloxx Sensitivity Manager allows you to adjust the sensitivity of each category according to your organisation's level of tolerance to the content in question.
Bloxx views the hidden depths of the Internet that other filters miss so that you can be entirely confident you have up-to-the-minute web control over the traffic through your network.
SSL Web Content Filtering
With the rapid adoption of cloud-based
services and the push to Always-On SSL
connections, networks are experiencing
exponential growth of encrypted (SSL) traffic.
Industry Analysts are predicting that within a
few years encrypted traffic levels will exceed
unencrypted traffic. However, SSL encryption
continues to be the weapon of choice for hackers
to penetrate corporate networks and steal
confidential data without detection. For users,
SSL also provides an easy way for them to bypass
enterprise security policies and devices,
predominately by using SSL Anonymous Proxies.
Bloxx Web filtering appliances include certificate based SSL Filtering as standard, providing protection for the vast majority of SSL security threats. However, if you need additional levels of protection and want to ensure that you have solutions in place to deal with emerging threats, you can optionally add Microdasys SCIP, an SSL Content Proxy to the Bloxx Web Filter.
The combination of Microdasys SCIP and Bloxx Tru-View Technology (TVT), a patent-applied-for real-time content categorisation engine, delivers unsurpassed levels of security and protection against even the most sophisticated of SSL threats.
The number of available SSL Anonymous Proxies is on the increase, and once accessed users are free to browse the Web unfiltered and unprotected against security risks and threats. This can affect user productivity, expose your organisation to risk and reputational damage and expose your network and users to increased security risks. The unique combination of SCIP and TVT provides best in class protection against SSL Proxies, blocking access in real-time at the point of request.
How it operates.
When an SSL request is made, SCIP intercepts
the request and checks the validity of all
server, intermediate, root server certificates
within the chain, ensuring that the URL and
common name match, the expiration date and the
revocation status are valid and whether or not
an official certificate authority has issued the
certificate. If the certificate fails, the
connection will be denied..
If the certificate passes, SCIP decrypts the request and hands off the full URL to the Bloxx Web Filter engine for further checking against URL, spyware and phishing databases. If the requested URL is not blocked, it is re-encrypted to SSL by SCIP and the request proceeds.
When the requested Web page is returned, SCIP decrypts the page and passes this to the Bloxx Web Filter engine for analysis and categorisation by TVT to determine the category of Web page that has been requested and applies the user’s usage policy. The page is also passed to a malware detection engine to check and block potential security threats. If the user is permitted access to the requested page, SCIP then re-encrypts the page for delivery to the user’s browser.
To eliminate decryption of SSL requests that may contain users’ personal information, for example online banking sites, SCIP can be configured to only check the certificate for validity and not decrypt the traffic.