True Endpoint Threat Prevention – Too Good to Be True? (Palo Alto)

No ratings

Presented at RochesterSecuritySummit 2014 by

Greg Morris

Palo Alto Networks Advanced Endpoint Protection is a complete paradigm shift from identification to pure prevention. Our solution requires no definitions updates, protects unpatched systems, requires no hardware, is compatible with all physical or virtual Windows platforms including terminals, VDI, VMs and embedded systems, protects all processes including 3rd party, and most importantly, it doesn’t need prior knowledge of an attack in order to prevent it. Sounds too good to be true, but it is. Despite numerous enemies and endless vectors of attack, they all share one thing in common – They MUST use the same techniques to execute their attack. By focusing our solution on these techniques and building traps to mitigate them, the attacker’s path for exploitation becomes known, even when the attack isn’t, allowing us to prevent the attack before any malicious activity is ever executed.