信息安全整体解决方案.ppt

Symantec’s ESM: provides centralized, automated and comprehensive analysis using well over 2,000 security checks designed to prevent exploitable vulnerabilities. uses intelligent agents designed specifically for UNIX, Windows, NetWare, Linux, VMS and IBM iSeries AS/400 as well as for Web and Database applications Let’s take a closer look at some of these new capabilities. SESM 6.1 starts with a Web-based security dashboard that gives you fast, convenient access to all of the reports and security tools you need. This portal environment can be easily modified to provide exactly the right information based on different people’s roles and responsibilities. For example, a business unit manager’s SESM dashboard would look very different from someone in the IT department. Introduce product. * From a buyer perspective, the product is customers that need superior security, configuration control and/or real-time compliance auditing on their servers. * Buffer Overflow Protection Prevent applications and processes from being taken over by overflowing memory space allocated for data input with executable code. Microsoft recently reported that 70% of its critical vulnerabilities led to buffer overflow or similar memory-based attacks. OS Hardening Symantec Critical System Protection 4.5 comes with out-of –the-box policies to provide an enhanced level of security to the operating system. The solution wraps individual OS system functions with a security shield to ensure that the functions will not be able to be exploited by programs or people. File System and Registry (Windows) Protection Critical system files, start-up files, executables, and associated registries (Windows-only) are off limits and unchangeable to users or non-privileged processes. In addition, Administrators can define their own specific controls over individual files, entire directories, or file types. Custom Application Exploit Prevention If Administrators decide that default protections for custom programs