Palo Alto Networks
Palo Alto Networks, Inc. is a network and enterprise security company based in Santa Clara, California. The company’s core products are a platform that includes advanced firewalls designed to provide network security, visibility, and granular control of network activity based on application, user, and content identification and cloud-based offerings that extend those firewalls to cover other aspects of security.
Palo Alto Networks was founded in 2005 by Nir Zuk, a former engineer from Check Point and NetScreen Technologies. Zuk served in the elite Unit 8200 of the Israel Defense Forces and was the principal developer of the first stateful inspection firewall and the first intrusion prevention system. When asked why he started Palo Alto Networks, Zuk cited his objective of solving a problem enterprises were facing with existing network security solutions: the inability to safely enable employees to use modern applications, which entailed developing a firewall that could identify and provide fine-grained control of applications.
The Palo Alto Networks Next-Generation Security Platform has four key characteristics that enable the prevention of successful cyberattacks:
Company Fast Facts
Prevent Security Breaches
Preemptively block known and unknown malware, exploits and zero-day threats with the unique multi-method prevention approach of Traps™ advanced endpoint protection from a single, lightweight agent.
Automatically reprogram your endpoints to block known and unknown threats – without human intervention – using threat intelligence gained from our global community of customers and partners across endpoints, networks and SaaS applications.
Protect and Enable Users
Empower users to use web-, mobile- and cloud-based applications without fearing cyberthreats. Protect users from inadvertently compromising their systems without depending on burdensome virus scans.
Traps Secures Endpoints With a Unique Multi-Method Prevention Approach
Traps replaces legacy antivirus and secures endpoints with a multi-method prevention approach that blocks malware and exploits, both known and unknown, before they compromise endpoints, such as laptops, desktops and servers.
Multi-Method Malware Prevention
Traps prevents malicious executables rapidly and accurately with a unique, multi-method approach to prevention that maximizes coverage against malware while reducing the attack surface area and increasing the accuracy of malware prevention. This approach combines several prevention methods to instantly block known and unknown malware from infecting a system.
Multi-Method Exploit Prevention
Traps takes a unique approach to preventing exploits. Instead of focusing on the millions of individual attacks or their underlying software vulnerabilities, it focuses on the small set of techniques all exploit-based attacks use, which rarely change. Traps blocks these techniques, thereby preventing exploitation attempts before they can compromise endpoints.
The world you need to secure continues to expand as both users and applications shift to locations outside the traditional network perimeter. Security teams face challenges with maintaining visibility into network traffic and enforcing security policies to stop threats. Traditional technologies used to protect mobile endpoints, such as host endpoint antivirus software and remote access VPN, are not capable of stopping the advanced techniques employed by today’s more sophisticated attacker.
GlobalProtect™ network security client for endpoints, from Palo Alto Networks®, enables organizations to protect the mobile workforce by extending the Next-Generation Security Platform to all users, regardless of location. It secures traffic by applying the platform’s capabilities to understand application use, associate the traffic with users and devices, and enforce security policies with next-generation technologies.
Palo Alto Networks NGFW (Next Generation Firewall)
Palo Alto next-generation firewall classifies all traffic, including encrypted traffic, based on application, application function, user and content.
The approach of Palo Alto Networks Firewalls identifies all network traffic based on applications, users, content and devices, and lets you express your business policies in the form of easy-to-understand security rules.
Palo Alto has the best GUI hands-down and is focused on application awareness. The combination of ease-of-use and ability to see (almost) everything has made it very popular
Palo Alto Networks App-ID is THE traffic classification mechanism; it classifies all traffic, on all ports, all the time – by application.
App-ID™ enables comprehensive visibility and fine-grained control.
Incorporates policy-based decryption and inspection of SSL traffic (both inbound and outbound), ensuring total visibility.
You can allow certain functions of an application without blocking the entire thing. For instance, you can allow Facebook, but block Candy Crush. Here’s the best thing. Palo Alto appliances are built around these next-gen features, which means no modules or additional management screens. All their best features are baked in.
Palo Alto next-generation firewalls are natively integrated with our security platform, which prevents advanced and unknown cyberthreats no matter where the users and data are located: in your network, on your endpoints and in the cloud.