McAfee tightens integration of Cloud security products

The enhancements are upgrades to Intel-owned McAfee's Web Gateway technology and ePolicy Orchestrator security management software

McAfee has tightened the integration between components of its cloud security platform to improve reporting on web traffic and the ability to wrap policies around data leaving an organization to social media sites.

The enhancements, available as of Monday, are upgrades to Intel-owned McAfee's Web Gateway technology and ePolicy Orchestrator security management software. The improvements are reflective of the company's ongoing evolution of its security platform to keep pace with customers' increasing use of software delivered over the internet.

McAfee sells Web Gateway as an on-premise appliance, as software that runs on VMware's virtual machine and as an application available over the internet.

For appliance customers, McAfee has added the ability to set policies for information that is posted on blogs and social networks, such as Twitter or LinkedIn. In addition, the appliance lets customers set in advance the video categories that employees can access on Google's YouTube, which recently released the application programming interface (API) to make this capability possible.

For customers who want to control data movement from employees' laptops when they are out of the office, McAfee released an agent called the Client Proxy that's installed on the notebook. Traffic from the laptop is directed through the company's Web Gateway in the cloud to enforce the same policies for data leaving the corporate network.

In general, organizations use web gateways mostly for URL filtering and malware detection, with support for mobile devices, application control and data loss prevention emerging as market drivers, Gartner said in a report released last month. McAfee's gateway provides "strong on-box malware protection," because of the company's signature engine and the gateway's ability to detect malware based on behavior and context within web traffic.

However, McAfee has been late with important features in its cloud-based gateway, including support for secure sockets layer (SSL), security assertion markup language (SAML) and IPsec termination, which is helpful for mobile devices, Gartner said. "Some customers complained about the scalability of Web Gateway logging and reporting functions."

Within ePolicy Orchestrator, McAfee has added a web traffic reporting component called the Content Security Reporter, which had been available separately as the McAfee Web Reporter. "Rather than have a separate interface, it's all done through ePO," Anne Aarness, senior marketing manager for McAfee, said. Reporting can now be done on web traffic from the on-premise and the Software-as-a-Service (SaaS) gateways through the same interface.

The latest release is the first step in McAfee's three- or four-year roadmap of not just integrating its own products, but also tightly connecting its technology to the cloud security features in parent company Intel's microprocessors, said Phil Hochmuth, and analyst for IDC.

That integration will be much more important, given how Intel-processors are what most cloud services are built on today, he said.

"It's a good start with the products and how they tied them together, but the roadmap is where things are going to get really interesting," Hochmuth said. "It could really work toward eliminating the stigma of security and cloud."

At the Intel Developer Forum last September, McAfee provided an early look at its plans for building security protections using Intel technology. The roadmap included making use of chip-level hooks to spot malicious software called rootkits that hide deep within an operating system and are undetectable by antivirus software.

Read more about cloud security in CSOonline's Cloud Security section.

Join the CSO newsletter!

Error: Please check your email address.

More about GartnerGatewayGatewayGoogleIDC AustraliaIntelMcAfee AustraliaVMware Australia

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Antone Gonsalves

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts