Professional Documents
Culture Documents
Endpoint Security
1 CONFIDENTIAL
UMBRELLA
Enforcement
Network security service
protects any device, anywhere
INVESTIGATE
Intelligence
Discover and predict
attacks before they happen
2 CONFIDENTIAL
TRUSTED by Enterprises Worldwide
3 CONFIDENTIAL
Why OpenDNS?
DNS Services Built for World’s Largest Security Platform
+
• 3D visualization engine
= 80M+
malicious requests
blocked/day
4 CONFIDENTIAL
Common Security Challenges
5 CONFIDENTIAL
Problems We Solve
6 CONFIDENTIAL
How We Do IT
xyz.com
DNS 1.2.3.4
7 CONFIDENTIAL
Gather Intelligence & Enforce Security at the DNS Layer F
Any Device Recursive DNS Authoritative DNS
root
com.
domain.com.
ZERO
added latency
peer w/top 500 ISPs & CDNs
100% 2%
uptime worldwide
since 2006 activity
400+ Gbps capacity, globally-shared
DDoS protection & DNS cache
global fail-over
9 CONFIDENTIAL
What is the
OpenDNS Solution?
10 CONFIDENTIAL
Leveraging
Who a Single
Resolves Global
Your DNS Recursive DNS Service
Requests?
ISP
ISP ??
BENEFITS
CHALLENGES Enterprise
Home ISP
ISP 11
Users Location A
Global
MultipleInternet
Internet mobile
mobile
Internal
InfoBlox
Activity
Service Visibility
Providers carrier
carrier
Mobile
Appliance
Devices
Network Security
Direct-to-Internet Enterprise
Location B ISP
ISP 22
w/o Adding
Branch Latency
Offices Internal Windows
DNS Server
Roaming
Consistent Policy
Users Forget to ISP
ISP ??
Laptops
Enforcement
Always Turn VPN On Enterprise
Location C
Internal
Internet-Wide
Different DNS BIND Server ISP
ISP 33
Remote
Cloud App Visibility
Log Formats ISP ??
ISP
Sites
Threat Prevention
Not just threat detection
Always Up to Date
No need for device to VPN back to an on-prem server for updates
12 CONFIDENTIAL
To Summarize.. How It Works
.com
.cn
.ru
.net
.com
13 CONFIDENTIAL
Play in slide show mode to see animation
14 CONFIDENTIAL
MALICIOUS
ASN/IP
IDENTIFIED
Owned by Lizard Squad
who hacked PS3 and
Xbox Networks in
December 2014
15 CONFIDENTIAL
OpenDNS recognized the domain
hijacking on Jan 25th and blocked
the DNS request, and hence any
subsequent attack
16 CONFIDENTIAL
UMBRELLA
Enforcement
Network security service
protects any device, anywhere
INVESTIGATE
Intelligence
Discover and predict
attacks before they happen
17 CONFIDENTIAL
OpenDNS INVESTIGATE
18 CONFIDENTIAL
A Single, Correlated Source of Information
ASN attribution
IP geolocation
IP reputation scores
Domain co-occurrences
20 CONFIDENTIAL
21 CONFIDENTIAL