Combined BeSecure and UTM Solutions

By: Wedge Networks  09-12-2011

Unified Management and Uneven Protection

Unified Threat Management (UTM) integrates the traditional firewall function with VPN, IDS/IPS, Gateway Antivirus, Antispam, Webfiltering, etc. into one single hardware platform. According to leading analysts, such as IDC, the UTM market is growing rapidly with initial target customers of UTM vendors being mainly SMBs. In recent years, enterprises and service providers are also deploying high end UTM devices in order to upgrade their aging firewall devices. Seeing the potential of this market, established firewall vendors started rolling out the so called "Next Generation Firewalls" which offer the same set of functions.

With a unified configuration and management interface across the security functions in several layers of the OSI network model, UTM promises the advantage of low TCO for businesses.

While it is technically plausible to apply unified management to the L2/L3 packets or streams, the same kind of unification at the application layer is superficial. As many enterprises and service providers who deployed UTM solutions found out, UTM devices do a very poor job in delivering security protection at the OSI application layer. For example, when security functions for the application layer are enabled in their UTM devices, customers experience unusable slow network connectivity and low security detection rates.

Plug the Content Security Hole in UTMs

With its BeSecure Web Security Appliance, Wedge Networks delivers the most advanced content security solution to enterprises and service providers.

In September 2009, two of the world’s renowned independent testing labs: the Tolly Group, in the USA, and the, in Germany, conducted performance and accuracy tests of Wedge BeSecure against a leading UTM product. The published test report indicates that Wedge BeSecure provides the most complete anti-malware coverage with much higher sustained network throughputs than the UTM device, making it an ideal solution to plug the content security hole in UTMs. The report states:

“ While today's firewalls and Unified Threat Management (UTM) solutions provide effective firewalling capabilities, comprehensive antivirus detection with good throughput performance often requires a complementary solution such as the Wedge Networks BeSecure NDP Web Security Appliance”

In fact, this is exactly what many security conscious enterprises are doing. To date, hundreds of BeSecure Web Security Appliances are deployed worldwide, typically behind firewalls and UTMs, providing complete security protections at the application content layer.

The following figure depicts the content security solution offered by BeSecure:

Figure 1: BeSecure working in tandem with UTM products to provide comprehensive security

  • BeSecure is deployed behind a firewall or UTM device, providing blanket content security coverage for all the network's nodes

  • The security functions provided by BeSecure are:

    • Prevent the theft or leakage of sensitive information

    • Detect any infected hosts

Who Should Use This Solution?

This solution should be deployed by any enterprises and services providers who:

  • Bought into the UTM promise and then realized application content layer security cannot be achieved

  • Have many computing devices that need to be protected against malware and OS vulnerability attacks

  • Have a mobile computing workforce where host based security cannot be enforced

  • Require multi-layered defences for compliance purposes

Contact Wedge Networks

Email - none provided

Print this page

Other products and services from Wedge Networks



Built for performance with the SubSonic Engine’s unique traffic handling, BeSecure appliances are capable of dealing with more traffic at higher speeds than anyone else in the industry; ensuring that security implementation does not alter user experience.



In addition to its gateway security appliance, the BeSecure Anti-Malware Gateway offers award-winning performance and architecture to messaging security, anti-spam, anti-phishing, acceptable usage, content filtering and URL filtering with its additional Anti-Spam and Web Filter Modules.


Information Security and Compliance

Healthcare Providers: Helps you comply with HIPAA by stopping malicious code at the Web gateway, enabling you to protect patient information and deliver secure, anytime access to your providers and administrators. Comply with Sarbanes-Oxley and the Gramm-Leach-Bliley Acts by preventing unauthorized access to customer records and other confidential information.



Wedge products meet the performance, accuracy, and usability demands of the largest telecommunications providers and can scale to provide the same standard of protection for all sizes of organizations, from small branch offices to large enterprise and service providers.