CloudView: Cloud-based Security

Management & Analytics Service

Intersecting Human and Artificial Security Intelligence

as a Force Multiplier in Enterprise Defense
1 The Challenges of Security Management

2 Hillstone CloudView Value Proposition

3 How to Subscribe to the CloudView Service?

2
The Challenges of Security
Management

3
 The Headaches of Security Management

• Not real-time • Insufficient budget

• Reactive response • Fixed initial investment

• After the fact • Lack of flexibility

• Shortage of professionals

• High skillset requirements

• Vast effort for multiple

devices

4
Limitation of Dedicated Management Solutions

Deployment Maintenance Investment Efficiency

• Long cycles • Need expertise • Higher initial cost • Not Real-time

• Complicated processes • System failure risk • Maintenance cost • Remote access

• Vendor support • Dedicated team • Fixed cost • Response time

5
Introducing Hillstone
CloudView

6
CloudView: The Move from Appliance to Service

Hillstone “SaaS” Security Service Platform

SaaS Security
Service
+ Web + App

• Real time multiple devices monitoring • Log retention and report • Traffic / App / user rank and analysis

• Real time threat events analysis • Cloud inspection • Threat intelligence

7
Global and High-level Security Overview

• Global threat monitoring – Easily

understand the network threat status.
• Threat geo-location
• Top 50 attackers and victims
• Attack source and top threats details

• Centralized device monitoring –

Precisely monitor the devices at risk.
• Device Status: alarmed/offline
• System status:
CPU/Memory/Speed/Session
• Threat severity

• Real-time Messaging & Alarms –

Take prompt action.
• Message: device /license status
• Alarms: customized alarm rules

8
 Comprehensive Threat Visibility
Detailed attack information can be viewed by clicking on the source IP on the front page

Top 50 attacks and victims

Threat geo-location

Attack source/top threats detail

9
 Real-time System and Traffic Monitoring

• Centralized Monitoring of Hillstone NGFW

／iNGFW ／NIPS／SBDS／CloudEdge
Device Name/model／version／SN/IP etc./
• Traffic/new session/current session
• HW status: CPU/memory
• License Status/renewal
• Alarms: traffic, CPU, memory, interface
up/down, threat

• Real-time Device Traffic Monitoring

• Uplink/Downlink Traffic trend
• Session trend
• Top 10 users by traffic
• Top 10 applications by traffic
• Interface traffic ranking
• For E-Series and CloudEdge, only

• Abnormality Detection
• Show the past and predict the future 95%
confidence interval

Enable admins to take swift action by providing device status and dynamic change of network traffic in real-time.

10
 In-depth Threat Analysis and Monitoring

• Global Threat Monitoring

• Geo-location
• Coordinate distribution
• Threat records
(name/type/severity/source/de
stination/engine/time/country/
status)
• Threat events details
(analysis/KB/history etc.)

• Multi-Dimensional Threat
Analysis
• Threat distribution and rank
by name/type/severity/ source
IP/Destination IP/Status

Enable admins to get deep understanding of the threats in the physical network, critical assets and Cloud.
11
 Threat Intelligence
• Provide threat intelligence services
• Users can query the object risks 10 times maximum per day according to the IP address and MD5
algorithm

12
Automatic Cloud Inspection

• In-depth analysis of 5 categories, 61

items including CPU, memory,
resource, hardware status and
operating environment, signature
library and licenses, providing
optimization and disposal suggestions
for potential issues and risks, and
outputting device inspection reports in
real time or at regular intervals.

• Support for intelligent inspection

triggered by rules

• Support for multiple devices in parallel

inspection

• Support for cloud inspection for

E-Series, IPS, CloudEdge

13
 CloudView: Security Management and Analysis
Service

Centralized Device Monitoring Threat Analysis and Alarm

• System/threat monitoring • Threat and event logs Real-time Monitoring
• Device license status and renewal • Comprehensive reports • 24/7 Monitoring and alerts
• Cloud inspection • Real-time message and alarms • Threat analysis and reports
• Threat intelligence • Mobile/web access

Ease of Deployment
• No deployment required
• No maintenance
• Easy and instant subscription

Low/Flexible
Investment Options
• Free to initiate (Includes essential features)
• Pay to subscribe (For advanced features,
Professional Version)
• Security as a Service (SaaS)

14
 Centralized Log Management

• Easy to upgrade with up to 6 months of log retention capacity

• Centralized log retention for multiple devices make it easier to manage and perform inquiries

• Filtered by severity and time range

15
Comprehensive and Customizable Reports

Comprehensive Data
• Device status
• Traffic trends
• Threat analysis

Customizable Templates
• Default/Customized
• Report items
• Multiple devices
• Schedule options
• View/download/export to email

16
 Real-time Message and Alarms

Alarm: Device interface down

Multiple alarm rules: traffic, session, interface status,

device offline, etc.

Alarm: CPU/Memory high utilization

17
 MSSP Model

Hillstone Operation Statistics

Order Hillstone Device and

Cloudview w/ MSSP License

MSSP
Super Admin
MSSP

Level-1
Admin

Provide Managed Security

Get FW device, authorize Service (FW & CloudView
Admin Privilege to MSSP Bundle)
admin
Customer
Admin End User • For admins checking operation statistics: device list,
device search, user, device, and traffic status
information
• Only available to admins, not users
• Automatic update by system in some intervals
18
 Access Anywhere, Anytime, Any Device

• Cloud-based service with global remote • Users can choose to access websites of China, US,
access via web or mobile application or EU in either public cloud or private cloud.
• EU websites have user and privacy protocols to
satisfy GDPR compliance
WEB APP

• CloudView application supports mobile

device with Android 4.4, IOS 8.0 and
later versions

19
 Mobile Application User Interfaces

Device Monitor Home Page License Management

Log Threat Analysis Alarm & Msg

20
 Highly Available and Secured Services

• HTTPS, Bi-directional authentication and • Server Clustering, HA deployment, load

encrypted storage to ensure data and balancing and AA database technologies
communication security to ensure service availability

21
 How to Subscribe
to the CloudView Service?

22
 CloudView Service Options

Feature Essential Edition Professional Edition

Device Status Monitoring 1 Week 3 Months

Traffic Monitoring * 1 Week 3 Months

Reports 1 Week 3 Months

Alarms Included Included

Log Retention (threat/event) 1 Week 6 Months

Threat Analysis 1 Week 3 Months

Threat Intelligence Yes Yes

Cloud Inspection N/A Yes

Supported Platforms E-Series, T-Series, CloudEdge, NIPS, sBDS E-Series, NIPS, CloudEdge

Subscription Mode Free Pay to subscribe

*Note: Traffic Monitoring is currently only supported on the E-Series NGFW and CloudEdge.

23
CloudView Professional Edition Subscription

Models Description

CloudView Pro. 1000 CloudView Professional Edition subscription, applicable to E1100/E1600, S600/S1060/S1560, VM01

CloudView Pro. 2000 CloudView Professional Edition subscription, applicable to E1606/E1700/E2300, S2160/S2660, VM02

CloudView Professional Edition subscription, applicable to E2800/E2860/E2868/E3662/E3668/

CloudView Pro. 3000
S3560/S3860, VM04

CloudView professional edition subscription, applicable to E3960/ E3965/E3968/E5168/E5260/

CloudView Pro. 4000
E5268/E5568/E5660/E5760/E5960/E6160/E6168/E6360/E6368, S5560

24
 Supportable Platform and Firmware

Hillstone Device Firmware versions Professional Edition Availability

Hillstone E-Series NGFW Yes

Hillstone T-Series iNGFW StoneOS 5.5R3P4 and higher N/A

Hillstone CloudEdge Yes

Hillstone S-Series NIPS NIPS V2.0 and higher Yes

Hillstone I-Series sBDS sBDS V1.1 and higher N/A

25
 1. Register CloudView Service Account
1) Go to to https://cloudview.hillstonenet.com.cn (China), https://cloudview.hillstonenet.com (US), https://cloudview-
eu.hillstonenet.com/ (EU) or download the mobile app
• Scan the QR code or download it
from IOS/Android app store

• Select Cloud View Server on the first

login on APP

2) Click “Sign up,” to input your account information, and validate via email.

* For non-EU users: If your customer already has a StoneID, they can directly log into Cloudview with their account.

26
 2. Add Device to CloudView Through StoneOS

• Enable CloudView services for this device

• Set up CloudView Server Address:

cloudview.hillstonenet.com.cn (China),
cloudview.hillstonenet.com (US), cloudview-
eu.hillstonenet.com/ (EU) and validate
CloudView account

• Allow upload traffic data/threat

event/syslog/URL data/Session data to Cloud

• Enable Cloud Inspection

• Please note website access address: https://cloudview.hillstonenet.com.cn (China), https://cloudview.hillstonenet.com (US), https://cloudview-eu.hillstonenet.com/ (EU)
• Configured server address: cloudview.hillstonenet.com.cn (China), cloudview.hillstonenet.com (US), cloudview-eu.hillstonenet.com (EU)

27
 3. Subscribe CloudView Professional Service

1) Apply the Professional Service trial through the User Center

2) Subscribe and activate the Professional Service

• Contact your Hillstone sales representative to order the service
• Provide the device Serial Number to activate the service
• No need to apply or upload the license

28
 +1 408 508 6750
inquiry@hillstonenet.com
5201 Great America Pkwy, #420
Santa Clara, CA 95054
www.hillstonenet.com
29