Profile: Palo Alto Networks Inc (PANW.N)
17 May 2019
Palo Alto Networks, Inc., incorporated on February 28, 2005, offers a next-generation security platform that empowers enterprises, service providers and government entities to secure their organizations by enabling applications running on their networks and by preventing breaches that stem from targeted cyber attacks. The Company's security platform consists of three elements: Next-Generation Firewall, Advanced Endpoint Protection and Threat Intelligence Cloud. Its Next-Generation Firewall delivers application, user and content visibility and control, as well as protection against network-based cyber threats integrated within the firewall through its hardware and software architecture. Its Advanced Endpoint Protection prevents cyber attacks that run malicious code or exploit software vulnerabilities on a range of fixed and virtual endpoints and servers. Its Threat Intelligence Cloud provides central intelligence capabilities, security for software as a service (SaaS) applications and automated delivery of preventative measures against cyber attacks.
The Company's products and services include firewall appliances, panorama, virtual system upgrades, subscription services, support and maintenance, and professional services. All of its firewall appliances incorporate its PAN-OS operating system and come with the set of features ensuring consistent operation across its entire product line. These features include App-ID, User-ID, site-to-site virtual private network (VPN), remote access secure sockets layer (SSL) VPN, and quality-of-service (QoS). Panorama is its centralized security management solution for global control of its appliances deployed on an end-customer's network as a virtual appliance or a physical appliance. Panorama is used for centralized policy management, device management, software licensing and updates, centralized logging and reporting, and log storage. Panorama controls the security, network address translation (NAT), QoS, policy based forwarding, decryption, application override, captive portal, and distributed denial of service/denial of service (DDoS/DoS) protection aspects of the appliances and virtual systems under management. Panorama centrally manages device software and associated updates, including SSL-VPN clients, GlobalProtect clients, content updates and software licenses. Panorama offers the ability to view logs and run reports from various managed appliances without the need to forward the logs and to report on aggregate user activity for all users, including mobile users.
Virtual system upgrades are available as extensions to the virtual system capacity that ships with its physical appliances. Virtual Systems provide a mechanism to support multiple distinct security policies and administrative access for tenants on the same hardware device, which is applicable to its enterprise and service provider end-customers. The Company offers various subscription services, including Threat Prevention Subscription, Uniform Resource Locator (URL) Filtering Subscription, WildFire Subscription, GlobalProtect Subscription, VM-Series Subscription, Traps Endpoint Protection Subscription, AutoFocus Subscription and Aperture Subscription. It also offers an annual subscription-based technical account management (TAM) service that provides support for end-customers. The Company offers its end-customers ongoing maintenance services for both hardware and software in order to receive ongoing security updates, PAN-OS upgrades, bug fixes and repair. In addition, it provides expedited replacement for any defective hardware.
Professional services are primarily delivered through its authorized channel partners and include on-location, hands-on experts planning, designing and deploying effective security solutions tailored to its end customers' specific requirements. These services include application traffic management, solution design and planning, configuration, and firewall migration. Its education services provide online and classroom-style training and are also primarily delivered through its authorized partners. App-ID is its application classification engine that uses multiple identification techniques to determine the exact identity of applications traversing the network. App-ID is the foundational classification engine that provides the traffic classification to all other functions in its platform. The App-ID classification is used to invoke other security functions. App-ID uses a series of classification techniques to identify an application. When traffic first enters the network, App-ID applies an initial policy check based on Internet protocol (IP) and port. App-ID classifies all network traffic, including business applications, consumer applications and network protocols, across all ports.
User-ID integrates its platform with a range of enterprise user directories and technologies, including Active Directory, eDirectory, Open LDAP, Citrix Terminal Server, Microsoft Exchange, Microsoft Terminal Server and ZENworks. A network-based, User-ID agent communicates with the domain controllers, directories, or supported enterprise applications, mapping information, such as user, role, and current IP address to the firewall, making the policy integration transparent. It offers Content-ID, which is a collection of technologies that enables its subscription services. Content-ID combines a threat prevention engine, a cloud-based analysis service, and a URL categorization database to limit unauthorized data and file transfers, detect and block a range of threats and control non-work related Web surfing. Its cloud-based analysis service, WildFire, provides an engine for detecting previously unseen targeted malware. Its URL filtering database consists of URLs across various categories, and is designed to monitor and control employee Web surfing activities.
SP3 is the Company's software and hardware architecture that consists of two elements: single-pass software and parallel processing hardware. The Company's PAN-OS operating system provides the foundation for its security platform and contains App-ID, User-ID and Content-ID. PAN-OS also includes attack protection capabilities, such as blocking invalid or malformed packets, IP defragmentation, transmission control protocol (TCP) reassembly and network traffic normalization. Traps is its Advanced Endpoint Protection product that prevents advanced attacks originating from either exploits or malicious executables before any malicious activity can run, regardless of software patches in place.
The Company competes with Cisco Systems, Inc., Juniper Networks, Inc., Intel Corporation, International Business Machines Corporation, Check Point Software Technologies Ltd., Fortinet, Inc., FireEye, Inc. and Symantec Corporation.
Palo Alto Networks Inc
3000 Tannery Way
SANTA CLARA CA 95054