Cloud Firewall adds multiple Detection and Response capabilities to comprehensively enhance active defense.
Content
Applicable customers: All customers.
New Feature/Specification:
1. TLS inspection: supports decryption and risk detection of outbound encrypted traffic, breaks through the HTTPS "encrypted black box", and accurately detects malicious behavior and data breach risks;
2. Intrusion prevention system (IPS): blocks vulnerability exploits, brute-force attacks, and mining trojans in real time, and supports virtual patching and threat intelligence integration;
3. Vulnerability Prevention: Automatically synchronizes detection results from Security Center and enables network-side interception with one click to shorten the fix window.
4. Breach Awareness: Identifies advanced threats such as APTs and back doors using the kill chain model, and provides AI-driven payload analysis and one-click defense.
5. Data leak detection: Identifies outbound activities involving more than 20 types of sensitive information to support compliance and risk control.
6. Mitigation Settings: Unifies management of threat engine patterns, intelligent defense policies, and whitelists to flexibly meet business security requirements.