下载PDF
Prezi: Enhancing Cloud-Based Platform Security with Power Rules
技术
- 基础设施即服务 (IaaS) - 云数据库
- 平台即服务 (PaaS) - 应用开发平台
适用行业
- 电网
- 国家安全与国防
用例
- 篡改检测
- 交通监控
服务
- 系统集成
挑战
Prezi是一个拥有超过1亿用户的基于云的演示平台,由于其快速增长而面临着巨大的挑战。该公司正在寻求用新的 Web 应用程序防火墙 (WAF) 取代现有的劳动密集型工具,为其 Web 应用程序提供自动化、准确的保护。在此之前,Prezi使用了开源的IDS/IPS解决方案。作为一个基于云的平台,Prezi 的主要目标是拥有具有企业级检测和反应功能的 WAF。他们需要一种解决方案,能够自动、可靠地检测网络流量的攻击模式,而不会产生噪音(数百条通知来匹配 RegEX 签名),并提供集成以获得高级见解。
关于客户
Prezi 是一个基于云的演示平台,为超过 1 亿用户提供服务。该公司经历了巨大的增长,这导致需要更高效、更有效的 Web 应用程序防火墙。 Prezi 的主要目标是拥有具有企业级检测和反应功能的 WAF。他们需要一种解决方案,能够自动、可靠地检测网络流量的攻击模式,而不会造成不必要的干扰,并提供集成以获得高级见解。 Prezi 的团队需要一种易于集成到其现有基础设施中并能够满足其隐私、安全性和可用性要求的解决方案。
解决方案
Signal Sciences 通过电源规则提供特定于应用程序的保护,为 Prezi 的挑战提供了直接的解决方案。该解决方案易于集成,并在架构级别满足 Prezi 的隐私、安全性和可用性要求。 Signal Sciences 灵活的架构可以轻松融入 Prezi 的基础设施,使 Prezi 的团队能够通过 API 集成到他们的 SIEM 中,并构建更有效的监控。 Signal Sciences 的自动警报系统和过滤器帮助 Prezi 的安全和运营团队通过减少手工工作节省时间,从而提高生产力。此外,Signal Sciences 改善了安全部门和开发人员对 DoS 和 DDoS 场景的整体反应。借助 Signal Sciences,Prezi 的安全团队能够帮助开发人员在任何情况下更快地做出反应。 Power Rules 允许 Prezi 根据 HTTP 请求的任何部分触发操作,再加上与 SIEM 的集成,使他们能够设置自定义规则作为额外的检测控件,以识别特定于应用程序的可疑操作并做出反应。
运营影响
数量效益
相关案例.
Case Study
Hydro One Leads the Way In Smart Meter Development
In 2010, Ontario’s energy board mandated that time-of-use (TOU) pricing for consumers be available for all consumers on a regulated price plan. To meet this requirement, Hydro One needed to quickly deploy a smart meter and intelligent communications network solution to meet the provincial government’s requirement at a low cost. The network needed to cover Hydro One’s expansive service territory, which has a land mass twice the size of Texas, and its customers live in a mix of urban, rural, and remote areas, some places only accessible by air, rail, boat or snowmobile. Most importantly, the network needed to enable future enterprise-wide business efficiencies, modernization of distribution infrastructure and enhanced customer service. To meet these needs, Hydro One conceptualized an end-to-end solution leveraging open standards and Internet Protocols (IP) at all communication levels. The utility drew upon industry leaders like Trilliant to realize this vision.
Case Study
Selling more with Whirlpool
Whirlpool wanted to add connectivity to appliances and transform the company's relationship with customers. Traditionally, Whirlpool interaction with customers was limited to purchases made once every ten years. Connected washer and dryers provide exciting new features like remote management of start times and inter-machine communication.
Case Study
SAS® Analytics for IoT: Smart Grid
Companies face falling revenues, rising infrastructure costs, and increasing risk of outages caused by inconsistent energy production from renewable sources. Less money is coming in as more people and organizations take steps to curb their energy use. Utilities are paying more to maintain and build infrastructure due to increasing complexity, resulting from the rising number of intermittent and variable renewable energy sources connected in the distribution grid.
Case Study
Enel Secures Italian Power Generation Network
Electric energy operators around the world are working to increase the reliability and cyber resiliency of their systems. This includes Enel, a global power company that manages and monitors the Italian power grid. This grid:• Serves 31 million customers• Has a net installed energy capacity exceeding 31 gigawatts• Includes more than 500 power generation plants,including hydroelectric, thermoelectric, and wind• Is managed and monitored by Enel 24/7/365• Is operated by Terna, the Italian Transmission System Operator (TSO)Enel is responsible for the availability of the grid’s underlying ICS and industrial network. It also manages Regional Control Centers and Interconnection Centers which connect with the TSO. The TSO manages the flow of energy to the grid plus controls and remotely regulates the power generation of power plants, increasing and decreasing power production as required. The complex system of interaction and cooperation between Enel and the TSO has strong security implications as well as operational and business challenges.
Case Study
IoT based Energy Quality Availability Monitoring Solution
There were several challenges faced:Since this data would be in the public domain, accuracy and authenticity of this data were of paramount importance. It should be able to withstand scrutiny.It is challenging to build an appliance that can withstand a wide range of voltage fluctuations from as low at 90v to as high as 320v. Since the device would be installed in remote locations, its resilience was of paramount importance.The device would have to deal with poor network coverage and have the ability to store and re-transmit data if networks were not available, which is often the case in rural India. The device could store up to 30 days of data.The platform that deals with the data should be readily available and highly reliable and never lose a packet of data.
Case Study
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.