CyberGuard raises the standard for SSL scanning with seamless, end-to-end client certificate support

CyberGuard Corporation, a global provider of security solutions that protect the critical components of the largest and most complex information networks for Global 2000 enterprises and government organizations, recently announced the latest enhancements to its powerful Webwasher CSM Suite that extend phishing, pharming, virus, worm and spyware protection to encrypted Internet traffic. Webwasher 5.3 enables the secure, bi-directional transmission of signed, encrypted data between clients and servers and effectively blocks sophisticated phishing and pharming attacks.

As an increasing number of large businesses are using a combination of Secure Sockets Layer (SSL) and digital certificates to secure communications with their customers, partners and employees, there have been two major challenges. First, the emergence of sophisticated phishing and pharming attacks, which utilize fake digital certificates; and second, the lack of the seamless and secure end-to-end client certificate support which is needed to implement robust SSL-based extranets for partner access to corporate data. First generation SSL scanning did not address this adequately due to its inability to decode and content-check SSL connections with client authentication.

The Webwasher CSM 5.3 SSL Scanner overcomes these limitations by managing and controlling those connections in such a way that it is able to stop phishing and pharming attacks even as an end user is attempting to connect to the phishing site and enable secure, granular extranet application access for partners and end-users.

"Phishing and pharming attacks have become much more widespread and destructive. These attacks are so sophisticated that it was often difficult to detect them on time. However, Webwasher's 5.3 SSL Scanner can detect these attacks and stop them dead in their tracks, and our end-to-end client certificate support adds new flexibility to SSL-based applications."

said Sami Mulla, Vice President, Middle East & North Africa, CyberGuard.

"Although phishing and pharming attacks are not too common in the Middle East at present, these enhancements to CyberGuard's Webwasher CSM Suite will prepare IT users in the region for any future attacks of this nature.

Also included in the new Webwasher 5.3 SSL Scanner are full policy integration, customizable expired certificate grace periods, wildcard certificate support, category-based SSL tunneling and cluster support. Customers in Asia who need extended multi-byte support will benefit from Webwasher 5.3 for filter settings and "localized" notifications that are displayed to users in their preferred language.

The comprehensive updates to Webwasher Proactive Security technology in Version 5.3 include advanced trojan downloader detection and the new "stated intention check" technology, making Webwasher the weapon of choice to fend of spyware, viruses and worms entering the network through the corporate gateway. Non-Webwasher customers can benefit from an added level of protection by deploying SSL-Scanner in parallel with any existing third party management application or anti-virus solution which is ICAP-enabled.