US Federal government networks have experienced dramatic increases in "content-based" network security attacks including viruses, worms, spy-ware and Trojans as the need for multi-agency communication has increased under the Network Centric model.

Fortinet's FortiGate appliances correlate all attack instances through layer-7 of the OSI model to prevent blended, Zero-Day, application level and insider-attacks that legacy layer 3 security products cannot defend you against. Enterprise-wide, centralized and distributed policy enforcement with Fortinet's FortiManager platform and detailed logging, reporting and statistical analysis with FortiAnalyzer appliances, across single enclaves, or for multiple communities of interest, allow for intuitive security theater management.

The Problem:

• Most agencies have identified that these new application-layer attacks are introduced into their organizations via seemingly innocuous activities such as Web browsing, email correspondence and file exchanges not caught by their legacy layer 3 firewalls and VPNs.
• This trend is expected to continue as organizations turn increasingly to real-time communications including Web applications and instant messaging as the means to remain responsive and productive in the Network Centric Warfare environment supported in today's US Federal mainstream.
• Unfortunately, conventional network protection systems such as firewalls and host-based antivirus software lack the dedicated hardware processing required to perform the content reassembly and application-level screening necessary to detect these threats without imposing unacceptable delays on real-time network applications.
• As a result, most organizations are dangerously exposed to content based attacks from real-time web, email and peer to peer traffic. Their layer 3 or deep-packet-inspection firewalls cannot effectively protect them from layer 7 attacks and have been reduced to an incomplete component of a defense in depth architecture. Adding layered devices has increased network security complexity while sending the management cost and latency to all time high levels.

Solutions:

• To defend US Federal networks, Fortinet performs Complete Content Inspection - (CCI) at layers 1-7 of the OSI stack protecting vital voice, video & data network communications using Forti-ASIC acceleration to deliver secure multi-gigabit performance.
• Traffic is cleaned of any malicious content effectively eliminating application level attacks. Fortigate appliances and systems correlate attack instances using signatures, heuristics, anomaly and activity detection mechanisms to stop blended, Zero-Day, and insider attacks while blocking and logging dangerous P2P and IM traffic if desired. FortiGuard subscriptions services provide real-time updates for all signatures and attack defenses.
• The Fortinet FortiGate appliance series integrate a powerful application-proxy firewall, a dynamic intrusion prevention system (IPS) and an industry leading content filtering system with the World's fastest antivirus protection in support of U.S. US Federal Government network and host security requirements.
• By combining true "Best-of-Breed" network security technology in an award winning series of ASIC-accelerated appliances, Fortinet exacts the ultimate security posture and delivers cost effective security-policy-management and control of critical U.S. US Federal Government network and host assets across any size theater of operation.
• From the smallest enclave or "community-of-interest" protection application to large-scale, geographically-dispersed multi-agency implementations, Fortinet's products deliver scalable high-speed protection from today's more sophisticated attacks.
• Fortinet's Fortigate products have proven themselves in high-performance tactical and traditional performance applications for U.S. Department of Defense, civilian and intelligence community customers.