Use Deep Content Inspection To Secure HTML5 - Ethernet ...

Securing HTML5 At The Network 

Wedge Networks Inc. 

San Jose, CA USA 

February 2012 1

The Evolution of Threats 

HTML5 

Most threats come through CONTENT

Clean Content From The Network 

In the Middle Ages, we had to boil water for cleanliness and safety… 

Today, we expect clean and safe water coming out from our taps… 

Internet traffic should not be any different!

HTML5 Is A Good Thing 

• Improving Security 

• The HTML5 standard is transparent. 

• HTML5 applications have restricted access to 

system resources. 

• HTML5 updates are fully contained in the 

browser’s update. 

• Strong Adoption 

• Popular browser vendor’s are participating. 

• Many influential internet sites have climbed 

on board. 

• Browser based, so o/s neutral. 

Confidential

Yin And Yang Of HTML5/WebSocket 

• HTML5 introduces the WebSocket protocol for 

more responsive communication than HTTP: 

• Asynchronous, Full duplex == Responsive 

• Efficient (2 byte header!) == Performance 

• Supported in Firefox 7+, Chrome 14+, IE 6 thru 9 

(with Chrome Frame). 

• Unique Security concerns: 

• Hijacks HTTP port (legacy firewalls miss) 

• No standard application information (Next 

Gen Firewalls can’t differentiate). 

• No request URLs (reputation based defenses 

fail). 

• Stream is masked without HTTP headers 

(Secure Web Gateways get confused). 

--WebSocket.org 

Ref. “HTML5 Web Socket in Essence” Wayne Ye 

Confidential

Deep Content Inspection (DCI) 

Visibility of content, not just packets or application types 

Deep 

Packet 

Inspection 

Deep 

Content 

Inspection 

Anti-Malware 

Anti-Spam 

Content 

Matching 

Open Service Bus 

Incoming Traffic 

Web Filter 

SubSonic Engine 

Outgoing Traffic 

WTC 

Confidential

HTML5/WebSocket Secured 

Confidential

Use Deep Content Inspection To Secure HTML5 - Ethernet ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?