Cisco is climbing fast, Fortinet faster, PaloAlto still leading and filling their gaps in portfolio and Check Point released finally the R80 for gateways. I predict 4 Leaders next year, it will be a nice race to watch!
Full Report on Report Magic Quadrant for Enterprise Network Firewalls 2017
Working a lot around Response Policy Zone (RPZ) these days, it’s better to start collecting some valuable tools, whitepapers, research, best practises, etc
||The most widely used DNS software on the Internet
||Integrated authoritative DNS and DHCP server (the continuation of the BIND 10)
||A lightweight, easy to configure DNS forwarder and DHCP server
||Knot DNS is a high-performance authoritative-only DNS server
||A versatile nameserver which supports a large number of backends
How can we detect and mitigate a kill chain in encrypted traffic without breaking users privacy and same time with minimal false positives? Cisco Catalyst 9k is the newest platform with this capability which is called Encrypted Traffic Analysis (ETS). Machine Learning & metadata seems to be the right ingredients to make the wheel work.
Read here for more detail.
Cisco announced a new platform, Catalyst 9k (fixed and modular), a new hit for the Enterprise Architecture.
Some of the benefits i’ve captured:
- Secure segmentation with SD-Access
- Unmatched 60W POE on every access port
- DNA Center
- IoT readiness
- Cloud readiness
- UADP 2.0
- StackWise Virtual
- Encrypted Traffic Analysis (ETA)
- Licensing mode changed (no info yet)
You can check here the CPX 2017 Presentations, for exclusive access to full slide decks from each presentation, please log into your Check Point CheckMates account.
An interesting read about TLS and DTLS Best practises…
A misinterpretation from browser perspective which can lead to a phishing attacks, read here https://nakedsecurity.sophos.com/2017/04/19/phishing-with-punycode-when-foreign-letters-spell-english-words
Chrome is fine now (v58+) but Firefox not, so stay sharp!