Solera Networks DS AppliancesVisualize, Investigate, and Prevent Next Generation Threats on Your Network

The cost of data breaches continues to rise and most organizations are not

prepared to effectively respond

u $6.75 million is the average organizational cost of a data breach*

u 48% of data breaches were from insiders**

u 82% of CISOs believe they will have a serious security incident in the next 36 months†

u 52% of CISOs say they are unprepared to adequately respond to an incident†

u Only 19% of CISOs have the ability to take advantage of real-time situational awareness that network forensics can provide against Next Generation Threats†

* Ponemon Institute’s Fifth Annual US Cost of a Data Breach report** Verizon 2010 Data Breach Investigation Report†Trusted Strategies 2010 Network Forensics Market Survey Report

Deploy the award-winning network forensics plat-form to protect against Next Generation Threats, including: u APT u Botnets u Insiderthreats u Breaches u MalwareReduce the time it takes to uncover and resolve the real cause of any network event. Compre-hensive network forensics will make your company more aware, more com-pliant and more secure.

“My experience across intelligence collection, military operations, and law enforcement forensics leads me to believe thatevery company is at risk, and that preventa-tive measures alone do not adequately protect against the cyber threat. Management needs to understand that mounting an effective response to an attack requires real-time knowledge of what is happening across their networks. The industry needs the tools to help us do that quickly.”

RAY OWEN, Defense/intelligence

cybersecurity executive and advisor.

See everything. Know everything.™

EasyDeployment

Solera DS Appliances easily connect to your network via a span port or network tap. They sit passively on the network and are completely undetected for enhanced security. Add additional storage for a virtually limitless and permanent record of all network traffic.

ChooseHowYouDeploy

Deploy as a dedicated 1U, 2U or 4U hardware appliance or as a virtual appliance. Even deploy inside your virtual networks to expose vSwitch traffic to your physical security tools for analysis.

SizeToFitYourNeeds

Deployment options range from small or branch office appliances to dedicated 10Gb appliances with expandable storage for today’s fastest networks.

CollectAtRecordSpeeds

The Solera DS Appliances capture everything that crosses your network (packet header and payload) in the patented DS File System, giving you a complete and forensically sound record of network activity. Only Solera DS Appliances meet the grueling demands of the largest government and enterprise networks, yet swiftly reconstruct and deliver real files from within terabybes of raw packet data.

ApplicationClassificationandDescription

Identify network traffic by looking deep inside packet data to find the telltale signatures of true identity. Descriptive information about a network session is extracted and includes application, personal identity, intended actions, content types, filenames, and up to 5000 descriptive details for close to 500 specific applications.

IndexedForAccess

In addition to capturing and classifying every bit of data at record speeds, each and every packet is indexed for quick retrieval and reconstruction. SoleraDB is our highly efficient, combination flat-file/hashed database system that has none of the performance issues inherent in relational databases. Drill down to precise packets, flows and artifacts in seconds, rather than hours or days.

D E P L O Y C O L L E C T

virtualized by

SoleraDBBitmask & Hash

SoleraDBIndex

Packet Capture Repository(DSFS)

28490+

5000+

Application Families

Applications and Protocols

Metadata Attributes

Capture Rate

10 Gbps

ActiveReporting

Identify evasive applications and malware with DeepSee®. Active reporting paints a deep and vivid picture of the network traffic and allows users the power to work with re-sults as they are being returned and respond to incidents as they unfold. Reports act as a navigation point, helping even novice users find and access the data they are look-ing for faster and with more accuracy.

Geolocation

With DeepSee Maps and Google® Earth integration you see traffic patterns and identify concentrations of traffic traveling to and from non-traditional locations. Abnormal traffic patterns may be your starting point of an investiga-tion and reduce your time to resolution.

ArtifactExtraction

Produce evidence that makes sense. With every packet captured and indexed, quick discovery, reconstruction and delivery of files in their original formats is easy and intuitive.

Integration

Active response to incidents starts with solid integra-tion with the most popular security tools on the market. Through our web services API, integration is simple and effective. Direct integration with Splunk® now provides an historical view to any alert managed by this leading log management solution. Packet analysis is also built into the appliance, eliminating unnecessary file transfers and application launching.

R E P O R T A N A LY Z E

SituationalAwareness

Solera Networks provides tools for network security teams to find advanced threats on the network and prevent further data loss. Investigators can search, visualize, replay, and reconstruct any network traffic—the key to un-covering a breach. 100% of the network payload is captured, enabling users to attribute a breach to a specific source.

ContinuousSurveillance

Continuous and complete surveillance of network activity changes behavior and deters internal threats. Knowing that every activity is monitored, recorded and available as evidence, users are more likely to adhere to network use policies as well as closely guard information assets. Network forensics enables the targeted surveillance of individuals or hosts and provides undeniable evidence to take action.

NextGenerationThreatPrevention

Next Generation Threats often operate in stealth over an extended period of time in order to accomplish their objectives. They use multiple attack methods and threat vectors and slowly, yet methodically attack with unrelenting persis-tence until the objective is achieved—at the expense of your intellectual prop-erty and viability of your organization. Most importantly—they are real and you have to address them. Deploy network forensics and obtain the visibility you need to respond and protect in real-time, giving you a fighting chance against today’s morphing and elusive threats.

ContactUsContact Solera Networks for a comprehensive network forensics and next generation threat prevention solution that will make your company more aware, more compliant and more secure. www.soleranetworks.com or call us at 1-877-5SOLERA

P R E V E N T A N D D E T E R

“Everybody should do what they can to protect themselves from being attacked, but the sad truth is that the most important thing you should plan and prepare for is how to behave when the attacker has succeeded.”

ROAR THON, Senior Advisor, Norwegian National Security Authority

See everything. Know everything.™

© 2011 Solera Networks. All rights reserved. Solera Networks, Solera DS Appliance, DeepSee, DS 1200, DS 3200, DS 5200, DS H200, DS Storage and See everything. Know everything. are trademarks of Solera Networks. All other company names, brand names and product names are the property and/or trademarks of their respective companies.

SoleraDSAppliances

APPLIANCE SIZE PEAK RATE SUSTAINED RATE iMix* STORAGE CAPACITY

Virtual Appliance – Varies Varies VariesDS 1200 1U 2.0 Gbps 1.8 Gbps 3 TB, non-redundantDS 3200 4U 5.0 Gbps 3.0 Gbps 12 TB, redundantDS 5200 4U 10.0 Gbps 5.0 Gbps 16 TB, redundantDS H200 2U 5.0 Gbps 3.0 Gbps Connect to DS Storage or SANDS H202 2U 10.0 Gbps 5.0 Gbps Connect to DS Storage or SANDS Storage 2U – – 20 TB, redundantDS C200 2U Central Management Appliance

* Sustained, iMix capture performance testing is conducted with a combination of packet sizes averaging 422 bytes and capturing 99.9999% of all packets on a continuous basis. This is a worst-case test and users should expect to see better performance in regular use.

Solera Networks Headquarters10713 South Jordan Gateway, Suite 100South Jordan, Utah 840951 877-5SOLERA (877-576-5372)1+ 801-545-41001+ 801-545-4040 faxEmail: info@soleranetworks.com

Solera Networks Japan, Inc.Shinjuku Park Tower N30F3-7-1, Nishi-ShinjukuShinjuku-ku, Tokyo 163-10301+ 81-3-5326-33671+ 81-3-5326-3001 faxEmail: info@soleranetworks.co.jp