Bloxx Web Filtering

The Bloxx range of Web filtering appliances are powered by its revolutionary and patented Tru-View Technology. Bloxx Web Filters perform live analysis of web content with contextual understanding to not only stop nasty web material from hitting your users' desktops but to also give you complete control over access to other types of websites that impact on user productivity, such as shopping, gaming, auction sites.

The Bloxx Web Filters automatically track and classify more effectively than first and second generation filters and remove the inherent weaknesses in using human-only classification giving you the most up-to-date URL blocking and control.

To maintain user productivity and organisational efficiency during working hours, Bloxx Web Filters tracks both disruptive 'inoffensive' traffic and illegal and offensive content like porn giving you complete Internet control. And it operates 24/7, meaning that the Bloxx database is fluid and current, rather than being based on out-of-date lists.

With 50 categories covering everything from dating to military to hacking, unique algorithms developed by Bloxx Researchers allow websites that aren't in Bloxx's database to be identified and categorized immediately. They are then blocked or allowed depending on the user's access rights to that particular category. The Bloxx Sensitivity Manager allows you to adjust the sensitivity of each category according to your organisation's level of tolerance to the content in question.

Bloxx views the hidden depths of the Internet that other filters miss so that you can be entirely confident you have up-to-the-minute web control over the traffic through your network.

SSL Web Content Filtering

With the rapid adoption of cloud-based services and the push to Always-On SSL connections, networks are experiencing exponential growth of encrypted (SSL) traffic. Industry Analysts are predicting that within a few years encrypted traffic levels will exceed unencrypted traffic. However, SSL encryption continues to be the weapon of choice for hackers to penetrate corporate networks and steal confidential data without detection. For users, SSL also provides an easy way for them to bypass enterprise security policies and devices, predominately by using SSL Anonymous Proxies.

Bloxx Web filtering appliances include certificate based SSL Filtering as standard, providing protection for the vast majority of SSL security threats. However, if you need additional levels of protection and want to ensure that you have solutions in place to deal with emerging threats, you can optionally add Microdasys SCIP, an SSL Content Proxy to the Bloxx Web Filter.

The combination of Microdasys SCIP and Bloxx Tru-View Technology (TVT), a patent-applied-for real-time content categorisation engine, delivers unsurpassed levels of security and protection against even the most sophisticated of SSL threats.

The number of available SSL Anonymous Proxies is on the increase, and once accessed users are free to browse the Web unfiltered and unprotected against security risks and threats. This can affect user productivity, expose your organisation to risk and reputational damage and expose your network and users to increased security risks. The unique combination of SCIP and TVT provides best in class protection against SSL Proxies, blocking access in real-time at the point of request.

How it operates.

When an SSL request is made, SCIP intercepts the request and checks the validity of all server, intermediate, root server certificates within the chain, ensuring that the URL and common name match, the expiration date and the revocation status are valid and whether or not an official certificate authority has issued the certificate. If the certificate fails, the connection will be denied..
 
If the certificate passes, SCIP decrypts the request and hands off the full URL to the Bloxx Web Filter engine for further checking against URL, spyware and phishing databases. If the requested URL is not blocked, it is re-encrypted to SSL by SCIP and the request proceeds.

When the requested Web page is returned, SCIP decrypts the page and passes this to the Bloxx Web Filter engine for analysis and categorisation by TVT to determine the category of Web page that has been requested and applies the user’s usage policy. The page is also passed to a malware detection engine to check and block potential security threats. If the user is permitted access to the requested page, SCIP then re-encrypts the page for delivery to the user’s browser.

To eliminate decryption of SSL requests that may contain users’ personal information, for example online banking sites, SCIP can be configured to only check the certificate for validity and not decrypt the traffic.