title03_21.png

์ฐจ์„ธ๋Œ€ ๋ฐฉํ™”๋ฒฝ ์š”๊ฑด

-ํฌํŠธ, ํ”„๋กœํ† ์ฝœ, SSL, ์šฐํšŒ ๊ธฐ์ˆ ์— ๊ด€๊ณ„์—†์ด
์• ํ”Œ๋ฆฌ์ผ€์ด์…˜ ๋ถ„์„.
-IP ์ฃผ์†Œ๊ฐ€ ์•„๋‹Œ ์‚ฌ์šฉ์ž ์ธ์‹.
-์• ํ”Œ๋ฆฌ์ผ€์ด์…˜์„ ํ†ตํ•ด์„œ ์œ ์ž…๋˜๋Š” ์œ„ํ˜‘์„ ์‹ค์‹œ๊ฐ„์œผ๋กœ ๋ฐฉ์–ด.
-์• ํ”Œ๋ฆฌ์ผ€์ด์…˜์— ๋Œ€ํ•œ ์„ธ๋ฐ€ํ•œ
Visibility(๊ฐ€์‹œ์„ฑ) ๋ฐ control(์ œ์–ด).
-์„ฑ๋Šฅ์ €ํ•˜๋ฅผ ์ตœ์†Œํ™”ํ•˜๋ฉด์„œ ๋ฉ€ํ‹ฐ ๊ธฐ๊ฐ€ ๋น„ํŠธ ์„ฑ๋Šฅ ์ œ๊ณต

ํ•ต์‹ฌ Technology

App-ID (Application์˜ ๊ตฌ๋ถ„ ๋ฐ ์ œ์–ด ๊ฐ€๋Šฅ)
-5๊ฐœ์˜ categories, 25๊ฐœ์˜ Sub-categories์— ํ˜„์กดํ•˜๋Š” 1500๊ฐœ ์ด์ƒ์˜ Application์„ Policy based๋กœ ์ œ์–ด.
-HTTP ๋˜๋Š” ๋‹ค๋ฅธ ์–ด๋–ค PORT๋ฅผ ์‚ฌ์šฉํ•˜๋”๋ผ๋„ Application ์ธ์ง€ ๋ฐ ์ œ์–ด.
-Proxy, Remote Access ๊ทธ๋ฆฌ๊ณ  ์•”ํ˜ธํ™”๋œ Tunnel Application ์ธ์ง€ ๋ฐ ์ œ์–ด.
-SSL Application ์ธ์ง€ ๋ฐ ์ œ์–ด / Application์„ ๊ธฐ๋Šฅ๋ณ„ ๊ตฌ๋ถ„ ๋ฐ ์ œ์–ด.
title03_21.png
User-ID (์‚ฌ์šฉ์ž ๊ตฌ๋ถ„์ด ๊ฐ€๋Šฅ / IP Address โ‰  User)
-IP address๋กœ ์‚ฌ์šฉ์ž ๊ตฌ๋ถ„ ๋ถˆ๊ฐ€(IP Addressโ‰ User)
-Agent ๋ฐฐํฌ ์—†์ด ๊ธฐ์กด ์ธ์ฆ์„œ๋ฒ„ (Active Directory, LDAP, eDirectory)๋ฅผ ํ†ตํ•ด ์‚ฌ์šฉ์ž ์‹๋ณ„
-IP๋ฟ๋งŒ ์•„๋‹Œ ์‚ฌ์šฉ์ž ์ด๋ฆ„์œผ๋กœ๋„ ์‚ฌ์šฉ์ž ์–ดํ”Œ๋ฆฌ์ผ€์ด์…˜๊ณผ ์œ„ํ˜‘ ํ–‰์œ„ ๊ตฌ๋ถ„ ๊ฐ€๋Šฅ
-User and / or group ๊ทผ๊ฑฐํ•œ ์ •์ฑ… ์ ์šฉ๊ณผ ๊ด€๋ฆฌ
-Remote User์˜ ๋ณด์•ˆ์ •์ฑ…์„ ๋‚ด๋ถ€์˜ ๋ณด์•ˆ์ •์ฑ…๊ณผ ๋™์ผํ•˜๊ฒŒ ์ ์šฉ
title03_21.png
Content-ID (์†ก์ˆ˜์‹  Data Contents์˜ ๋ถ„์„ ๋ฐ ์ œ์–ด ๊ฐ€๋Šฅ)
-์ค‘์š” ๋ฐ์ดํ„ฐ ์ „์†ก ๋ฐ ํŒŒ์ผ ์ „์†ก ์ฐจ๋‹จ.
-์‹ ์šฉ์นด๋“œ ๋ฒˆํ˜ธ ๋“ฑ ํŠน์ • ํŒจํ„ด ํƒ์ƒ‰ ์ฐจ๋‹จ / ํŒŒ์ผ Type ์ธ์‹์„ ์œ„ํ•œ ํŒŒ์ผ ๋‚ด๋ถ€ ๊ฒ€์‚ฌ.
-์™„๋ฒฝํžˆ ํ†ตํ•ฉ๋œ URL ๋ฐ์ดํ„ฐ๋ฒ ์ด์Šค๋ฅผ ํ†ตํ•œ Web filtering ๊ฐ€๋Šฅ.
title03_21.png

Application Control

๋ฐฉํ™”๋ฒฝ๊ณผ Application์˜ ์ง„ํ™”
title03_21.png
-Application์€ ์‚ฌ์šฉ์ž ์š”๊ตฌ๊ฐ€ ๋ณด๋‹ค ๋ณต์žกํ•ด์ง€๊ณ  ๋‹ค๋ณ€ํ™” ๋จ์œผ๋กœ์จ ์ง€์†์ ์œผ๋กœ ์ง„ํ™”ํ•˜๊ณ  ์žˆ์Œ. ๊ทธ๋Ÿฌ๋‚˜ ๋ฐฉํ™”๋ฒฝ์€ IP/Port๊ธฐ๋ฐ˜์˜ Stateful Inspection ๋ฐฉํ™”๋ฒฝ์—์„œ ๋” ์ด์ƒ ์ง„ํ™”ํ•˜๊ณ  ์žˆ์ง€ ์•Š์Œ.
-IP/Port ๋กœ๋ถ€ํ„ฐ ๋…๋ฆฝ์ ์œผ๋กœ ์„œ๋น„์Šค๋˜๋Š” Application์€ ๋” ์ด์ƒ 1์„ธ๋Œ€ ๋ฐฉํ™”๋ฒฝ์œผ๋กœ ํ†ต์ œํ•˜์ง€ ๋ชปํ•จ. (ํ†ต์ œ๋˜์ง€ ์•Š๋Š” Network = Threat )
-๋ฐฉํ™”๋ฒฝ์€ Application์„ ํ†ต์ œํ•  ์ˆ˜ ์žˆ์–ด์•ผ ํ•จ.

PaloAlto Networks Hardware Platform

title03_21.png