Palo Alto Networks Application Alert: Meebo Adds File Transfer.Application Research Center Offers Guidance for Safe and Productive Use of Fastest Growing Instant Messaging Exchanging text messages in real time between two or more people logged into a particular instant messaging (IM) service. Instant messaging is more interactive than e-mail because messages are sent immediately, whereas e-mail messages can be queued up in a mail server for seconds or Destination SAN JOSE San Jose, city, United States San Jose (sănəzā`, săn hōzā`), city (1990 pop. 782,248), seat of Santa Clara co., W central Calif.; founded 1777, inc. 1850. , Calif. -- Palo Alto Palo Alto, city, California Palo Alto (păl`ō ăl`tō), city (1990 pop. 55,900), Santa Clara co., W Calif.; inc. 1894. Although primarily residential, Palo Alto has aerospace, electronics, and advanced research industries. Networks' Application Research Center (ARC) today issued an application alert on Meebo, the popular instant messaging (IM) portal which recently announced file transfer capabilities. Many enterprise organizations have strict acceptable use policies restricting the transfer of files within instant messaging applications and should be aware that Meebo now supports this capability and set and enforce usage policies accordingly. Alert Detail Meebo.com enables a flexible way to access multiple IM services without downloading a software client and is the world's fastest growing instant messaging destination according to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. Nielsen/Netratings (354 percent in the last 10 months). The company also provides Meebo Repeater (1) A communications device that amplifies (analog) or regenerates (digital) the data signal in order to extend the transmission distance. Available for both electronic and optical signals, repeaters are used extensively in long distance transmission. , which is an SSL (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data. proxy that is installed on the user's PC that will proxy all Meebo traffic, allowing it to bypass URL URL in full Uniform Resource Locator Address of a resource on the Internet. The resource can be any type of file stored on a server, such as a Web page, a text file, a graphics file, or an application program. filtering rules. On September 10, 2007, Meebo announced that file transfer functionality has been added to the application. Many organizations have strong policies restricting file transfer due to its potential as a conduit for intentional or inadvertent outbound intellectual property loss in addition to representing a backdoor See trapdoor. for web-based viruses and malware. Enterprise Guidance Meebo is attractive to consumer and business users alike, notably those involved in customer service interactions, and improves productivity in the enterprise by enabling real-time collaborative communications. However, organizations need to be aware of, and monitor closely, applications such as Meebo that because of certain capabilities or characteristics may introduce risk to the business. For those organizations who have strict policies against non-approved IM software, Meebo should be blocked. As noted above, Meebo Repeater allows users to evade blocking of Meebo.com by URL filtering. As there is no clear business usage of Meebo Repeater, organizations should also look for usage of Meebo Repeater and block it as well. For those organizations who wish to capitalize on Cap´i`tal`ize on` v. t. 1. To turn (an opportunity) to one's advantage; to take advantage of (a situation); to profit from; as, to capitalize on an opponent's mistakes s>. the productivity benefits available via Meebo, while avoiding potential security and compliance challenges, the following measures are recommended: * Ensure that all usage of Meebo is subject to malware scanning. * Consider blocking individual capabilities such as file transfer, unless absolutely required by a business function. Application Characteristics As reflected in Palo Alto Networks' Applipedia: Application: Meebo Category: instant-messaging Risk: level 3 (moderate risk)(a) Standard Port: tcp/80 Capable of File Transfer: yes (added Sept. 10, 2007) Used by Malware: no Excessive Bandwidth Use: no Evasive e·va·sive adj. 1. Inclined or intended to evade: took evasive action. 2. Intentionally vague or ambiguous; equivocal: an evasive statement. : yes Pervasive: yes (estimated 6 million+ users) Has Known Vulnerabilities: no Prone to Misuse: no Tunnels Other Application: yes (a) Risk level is calculated based on criteria including known instances of malware transfer, excessive impact on bandwidth or ability to automatically evade detection by using ports/protocols not commonly associated with applications of its type. About the Application Research Center (ARC) The Application Research Center is an online resource from Palo Alto Networks that contains up-to-date information on the rapidly evolving application landscape. The Palo Alto application research team is continually tracking the universe of applications traversing enterprise networks, and provides a quick reference resource for the latest news, alerts and analysis. Included in the ARC is the ability to search the Applipedia[TM] for additional important characteristics of each application that must be considered when developing policies to enable safe and productive application usage within the enterprise. About Palo Alto Networks Palo Alto Networks[TM] enables visibility and policy control of applications running on enterprise networks. Based on innovative App-ID[TM] application classification technology, the Palo Alto Networks PA-4000 Series is a next-generation firewall that accurately identifies applications - regardless of port, protocol, evasive tactic or even SSL encryption - at 10Gbps with no performance degradation. Enterprises can now set and enforce application usage policies to meet compliance requirements Compliance requirements are a series of directives established by United States Federal government agencies that summarize hundreds of Federal laws and regulations applicable to Federal assistance (also known as Federal aid or Federal funds). , improve threat mitigation and lower operational costs. The Palo Alto Networks team includes security and networking industry veterans from Check Point, NetScreen, McAfee, Cisco, Juniper and Blue Coat. It is backed by investors Globespan Capital Partners, Greylock Partners and Sequoia Capital Sequoia Capital is a venture capital firm founded by Don Valentine in 1972. The firm's partners include Don Valentine, Pierre Lamond, Michael Moritz, Doug Leone, Mike Goguen, Mark Stevens, Jim Goetz, Sameer Gandhi, Roelof Botha, and Mark Kvamme. . For more information, visit www.paloaltonetworks.com. Palo Alto Networks, the Palo Alto Networks Logo, App-ID and PAN-OS are trademarks of Palo Alto Networks, Inc. in the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. . All other trademarks, trade names or service marks used or mentioned herein belong to their respective owners. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion