The Web has become the new security battle front, surpassing even e-mail as the leading source of malware infections. In a recent study, Google found that one in 10 Web sites that it crawled contained a malicious payload. And Gartner Group estimates that 75% of enterprises will be infected this year with targeted malware that evades their traditional defenses.

Why? While more than 80% of enterprises have some form of URL filtering in place, less than 15% have any form of deep inspection on Web payloads, resulting in a Web security gap.

Click to see: How secure Web gateways protect

To make matters worse, this new class of threats — known by many names, including spyware, adware, crimeware and botnets — doesn’t make itself visible the way viruses or spam do. Instead, like a parasite that attaches and feeds silently, they do everything they can to infect a PC and avoid detection. Because the threats fly beneath the radar of detection, many enterprises can be lulled into a false sense of security.

Enter the secure Web gateway

Although organizations need tools that can block Web malware at the edge to supplement desktop defenses, adding another single-function point product and one more management console is not the answer. What’s required is a single platform that consolidates Web security functions without slowing down the network. Gartner has defined this new class of products as secure Web gateways, which combine URL filtering, Web malware protection and application control (and will no doubt combine other Web security functions in the future).

This market is evolving in a similar way to the secure e-mail gateway market of a few years ago, when enterprises transitioned from single-function antivirus gateways to multifunction gateways that handled antivirus, antispam, archiving, encryption and other functions on a single platform.

Like the leaders in the secure e-mail gateway market, the visionaries in the secure Web gateway market started with a blank sheet of paper. As a result, they have built solutions that combine high-performance engines; well-integrated, best-of-breed, third-party signature libraries; and their own “special sauce” to provide solutions that go well beyond what retrofits of legacy URL-filtering solutions can achieve.

A typical secure Web gateway will perform, at a minimum, the following protection functions:

Whitepapers

• Gene Kim's Practical Steps to Mitigate Virtualization Security Risks
• Selecting Effective Virtual Directories
• A Modern Approach to On-Demand Email and Data Security
• Best Practices for HP Servers and HP Enterprise Virtual Array in a Microsoft Exchange
• Compliance, Protection, Recovery: A Layered Approach to Laptop Security
• Endpoint Security: Data Protection for IT, Freedom for Laptop Users

View more SECURITY whitepapers

Webcasts

• Key Considerations for a Successful 802.11n Deployment
• Solutions to the Toughest IT Challenges in Remote Offices
• Lowering the Cost of Email Archives
• High Availability for SQL Server 2005 Using Array-Based Replication and Host-Based Mirroring Technologies
• Technical Overview of Exchange Server 2007 with HP Servers and Storage
• Bringing Order and Security to your Mobile Workforce: Corporate Mobility Policy and Device Management On-Demand

View more SECURITY webcasts

Special Reports

• The Evolution of Network Security
• Taking Virtualization Up a Notch
• Learn how to Keep your Mobile Workforce Connected
• The self-managed network

View more SECURITY special reports