SCADA solution is to target the industrial market. The feature is a combination of their
1. Identity based access
2. IPS Patterns
3. SCADA aware application signatures, to allow block traffic
It helps the industrial systems with security for applications like scada, emerson to have control over how the plant automated process are not hacked or to make sure that the process is iitiated fromt he right user.
I am not sure but i believe cyberoam like Fortinet uses IPS engine to identify the applications.
Well i am a Sophos(Astaro) partner since 2003 and a fan of UTM, only that i am giving this comparison, replaced and installed in parallel or multilayer security with many other firewalls(Sonicwall/Fortinet/ASA/Juniper).
As Sascha mentioned lets wait for the goodies to come as a result of the merger. If any version on the road map adds this feature will help our few industrial customers.
Thanks for the information, has. I don't have any customers using SCADA, so I don't know the challenges in that market. On the surface, Sophos can do all of the things Cyberoam touts, but Cyberoam may well be more-easily used in the ICS market. Sophos has yet to merge its DPI engine into the UTM, so I wonder if this is an indication that the Cyberoam engine is targeted. (Maybe not, as, according to the 9.200 announcement thread, DLP is included in 9.2 although only for Mail.)
Mark, you can use Hotspot tickets in Wireless Security to achieve this, but, you're right that this is not a part of the base license and cannot be limited to controlling Web Surfing only.
Cheers - Bob PS
Ahhh, but then you'd have to convince partners like us to continue selling Sophos. [;)]
By that, I meant that if Sophos were to take resellers out of the support loop, many of us would abandon Sophos. I don't see that happening though.
I am not sure but i believe cyberoam like Fortinet uses IPS engine to identify the applications.
Cyberoam uses Snort for IPS, and has their own in-house developed application engine.
This has been a long time Astaro/Sophos UTM feature request by many including myself! I hope it's one of the first features to cross over!
Enhanced user awareness throughout UTM was already on the roadmap for v10 before the acquisition, and certainly technology from Cyberoam will help us get there faster.
Appcontrol and user-awareness are probably the two key technology areas that Cyberoam brings to Sophos, and along with a lot of talented people. There's also some other interesting tech, like the iView SIEM product, or the previously mentioned NetGenie, that can provide some compelling and complementary technology.
And Bob, from what I see, support is working hard throughout Sophos to become more partner friendly, and not less. Cyberoam has some good support processes, and our respective support leaders are already comparing notes, and looking at where we can learn from each other. I think it's safe to say there won't be any troubling support changes coming from the acquisition.
basically it is a reverse proxy for scada systems. Frankly with how vulnerable these systems are...i wouldn't want to expose one of them in any way at all. The good guys have to be perfect every time..the bad ones only once. if you need remote access ssl vpn or ipsec vpn is the way to go..which is offered.
