Enterprise Threat Protector
Proactive protection against zero-day malware and phishing
Deployed on the globally distributed Akamai Intelligent Edge Platform, Enterprise Threat Protector proactively identifies, blocks, and mitigates targeted threats such as malware, ransomware, phishing, DNS data exfiltration, and advanced zero-day attacks.
Uses: Enterprise Threat Protector
Quickly Improve Security Posture
Add an additional layer of proactive security using DNS to quickly and uniformly block malicious web traffic — for all of your users, on network and remote.
Simplify Data Center/IaaS DNS Visibility and Threat Protection
Your business applications may be accessing malicious external resources. Simply redirect your application DNS traffic to Enterprise Threat Protector for 100% visibility, increased security, and improved compliance.
Secure HQ and Branch Office Direct Internet Access (DIA) Connections
Protect web traffic at every corporate location and for off-network users quickly and without complexity with a cloud-delivered secure web gateway (SWG).
Protect Guest Wi-Fi and Enforce AUPs
Easily enforce acceptable use policies (AUPs) across your corporate and guest networks to protect both your brand and users.
Features: Enterprise Threat Protector
Real-Time Akamai Threat Intelligence
Up-to-the-minute threat intelligence based on Akamai’s visibility into 15–30% of daily web traffic, up to 2.2 trillion daily recursive DNS requests, hundreds of third-party data sources, and proprietary data science algorithms. Produces incredibly low rates of false positives.
Inline and Offline Payload Analysis
Four advanced malware detection engines, including a cloud sandbox, identify and block complex advanced threats and improve zero-day protection.
Data Loss Prevention
Block or monitor content uploads that contain PII, PCI DSS, or HIPAA data.
Application Visibility and Control
Identify and block usage of unsanctioned applications based on risk score. Control application operations.
Quickly understand why Akamai has added a domain or a URL to its threat intelligence lists.
Web and DNS logs are retained for 30 days and can easily be exported as a .CSV file or integrated into a SIEM for further analysis.
Analysis and Reporting
Real-time insights via an easy-to-use dashboard into all outbound web and DNS traffic, as well as threat and acceptable use policy events, available via a single dashboard.
Acceptable Use Policy (AUP) Management
Customize and enforce your enterprise AUP, simply limiting access to certain content categories. Ensure compliance with centrally managed, cloud-based updates.
How Does Enterprise Threat Protector Work?
Enterprise Threat Protector is a secure web gateway that uses multiple layers of protection — DNS, URL, and inline and offline payload analysis — to deliver optimal security and reduced complexity, without impacting performance. All of this protection can be delivered by simply directing web traffic to Enterprise Threat Protector using a lightweight client or by forwarding web traffic from another web proxy via proxy chaining.
All requested domains and URLs are checked against Akamai’s real-time domain risk-scoring threat intelligence. Malicious domains and HTTP/S URLs are blocked. The HTTP and HTTPS payloads are then scanned either inline or offline using multiple advanced malware-detection engines, including an offline cloud sandbox.