Wedge Networks BeSecure 1005G Anti-malware Gateway v4.0.1
March 01, 2012
Basic price: $5,080 for the BeSecure 1005G appliance hardware, including WedgeOS
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Deploys easily; dashboarding and reporting.
- Weaknesses: Ability to customize a rule to capture nonsignature-based threats.
- Verdict: Excellent content scanning solution. Definitely worth a look.
Initial configuration was done by connecting our test PC via a crossover cable to the ingress interface. Once we configured the network components, we were ready to move on. We did not have to license our appliance as that was already done for us. The flexible deployment options make this product easy to integrate into any environment. We chose a transparent bridge mode option for our testing, but one has various route-based modes, web cache communication protocol (WCCP) or internet content adaptation protocol (ICAP) options and high availability cluster mode options. The product focuses on content inspection, so configuration is focused on these features. There really isn't a firewall or intrusion detection system (IDS) component. One can map protocols to ports, but that is really all the configuration admins do at that level. That said, it does do content inspection and data leakage protection very well. Keyword filtering for data leakage and breach prevention allows content to be inspected down to individual words and patterns contained within web traffic. These features are fully customizable with specific expressions, enabling organizations to prevent the leakage of confidential information leaving the organization through internet protocols.
With an Open Service Bus (OSB) technology, BeSecure easily integrates with best-of-breed security engines, including complete Kaspersky malware signature database, heuristic ability and per-hour signature updates. It also contains a Cloudmark anti-spam, anti-phishing engine that is updated every 45 seconds. An add-on option contains a complete SmartFilter web filter database with 90-plus web categories, including malicious sites. There is an option for traffic capture, but it is limited to a 10MB file size and there isn't a way (that we found) to review it on the appliance.
Logging is contained on the appliance and also can be configured to send off to a syslog server. Event monitoring and searching is easy to use. Alerting is available for certain security and system events, and is sent out via email. Reporting is a strong point and is well done. Dashboarding is excellent, with the ability to drop data to a report and export it to a .cvs or PDF.
Documentation is complete. The initial setup guides are sufficient to get up and running and the user manuals are built into the interface. Support must be purchased on top of the product purchase and there are basic, eight-hours-a-day/five-days-a-week and 24/7 options available.- ML
SC Magazine Articles
- Brexit shakeup: How will the U.K.'s exit from the EU affect the technology sector?
- Blasphemy! Godless malware preys on nearly 90 percent of Android devices
- 'Password attacks' continue; Citrix becomes latest victim
- Dangerous connections: Risky LinkedIn behavior runs rampant, finds survey
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- CEO sacked after aircraft company grounded by whaling attack
- Wendy's POS breach 'considerably' bigger than first thought
- Microsoft warns of new, self-propagating ransomware in the wild
- No hacking required: Israeli researchers show how to steal data through PC components