您好,欢迎访问三七文档
当前位置:首页 > 商业/管理/HR > 质量控制/管理 > 完整企業資訊安全解決方案
2–2004SymantecCorporation,AllRightsReserved3–2004SymantecCorporation,AllRightsReserved•20032•7•72%•39%IDC,May2003:2003CSI/FBI4–2004SymantecCorporation,AllRightsReservedIntruderKnowledgeAutomatedTools&AttackSophistication1980198519901995200020055–2004SymantecCorporation,AllRightsReserved200020031DoS1990sDDoSDDoS(Flashthreats)?DDoS?6–2004SymantecCorporation,AllRightsReservedBugtraq10253050510102030405060'99'00'01'02'037–2004SymantecCorporation,AllRightsReserved(Day-zero)-8–2004SymantecCorporation,AllRightsReserved(Day-zero)Threatreleased“”9–2004SymantecCorporation,AllRightsReserved1542003/03/17MS03-0072003/08/184Welchia182004/4/13MS04-011332003/07/16MS03-0262004/5/14Sasser.B4344443362000/10/17MS00-0781732001/03/29MS01-020262003/07/16MS03-0262003/08/11Blaster1852002/07/24MS02-0392003/01/25Slammer5502001/03/29MS01-0202002/09/30Bugbear2112001/03/29MS01-0202001/10/26Klez1272001/05/14MS01-0262001/09/18Nimda282001/06/18MS01-0332001/07/16CodeRed10–2004SymantecCorporation,AllRightsReserved“IT”¾¾IT••(ROI)(TCO)•11–2004SymantecCorporation,AllRightsReserved(Reactive)12–2004SymantecCorporation,AllRightsReserved(Proactive)13–2004SymantecCorporation,AllRightsReserved=/ISO/CNS17799CNS17800HIPAAGLBASymantec™EnterpriseSecurityManager14–2004SymantecCorporation,AllRightsReserved=93%(cracker)BusinessDay–2004SymantecCorporation,AllRightsReservedSymantecDeepSight™ThreatManagementSystem––(Auto-configuration)–––••/Symantec™EnterpriseSecurityManager=16–2004SymantecCorporation,AllRightsReservedSasser.BlaptopWindows2000/XPWindows2000/XPWindows2000/XPWindows2000/XP%Windir%\Avserve2.exeInternethubrouterTCP:555417–2004SymantecCorporation,AllRightsReservedSymantecSolutions-Alert•SymantecDeepSight™AlertServices–Providesvulnerabilityalertswithactionableinformationtohelpprioritizeanddevelopmitigationplans.•04.13Initialanalysis.•04.13eEyeadvisoryreleased;updatedtechnicaldetailsandattackinformationavailable.•04.13Updatedmitigationtoincludeagreaterportrangetoblock.•04.14US-CERTadvisoryavailable.•04.14Updatedtechnicaldetailsandmitigation.•04.21Avayaaffectedproductsandupdatedsolutionstextavailable.•04.26Exploitcodehasbeenreleased.•04.29Additionalproofofconceptexploitavailable.•05.01Awormexploitingthisvulnerabilityiscurrentlyactiveinthewild.–Maliciouscodealertssent•05.01(initialanalysis)•05.02(raisedriskrating)Alert18–2004SymantecCorporation,AllRightsReserved19–2004SymantecCorporation,AllRightsReservedSymantecSolutions-Alert•SymantecDeepSight™ThreatManagementSystem–Providesin-depthanalysisreportswithcomprehensiveinformationonthelatestthreats.•04.13MultipleMicrosoftVulnerabilitiesAlert•04.29MicrosoftWindowsLSASSBufferOverrunVulnerabilityExploitationAlert•05.02W32.Sasser.WormAnalysis•OngoingDaily/Weeklysummaryreports–Maliciouscodealertssent•05.01(initialanalysis)•05.02(raisedriskrating)Alert20–2004SymantecCorporation,AllRightsReservedSymantecSolutions-Protect•SymantecGatewaySecurity–FirewallProtectsbydefault–IntrusionDetection04.14IDSsignaturesreleased–Antivirus05.02Virusdefinitionsreleased•SymantecManHunt–04.13PostedSecurityUpdate22toprotectusersfromthreatsthatexploittheLSASSvulnerability.Protect21–2004SymantecCorporation,AllRightsReservedSymantecSolutions-Protect•SymantecClientSecurity–IntrusionDetection04.14IDSsignaturesreleased–ClientFirewall05.01Patchposted–Antivirus05.02VirusdefinitionsreleasedProtect22–2004SymantecCorporation,AllRightsReserved•23–2004SymantecCorporation,AllRightsReservedSymantec™ClientSecurityRespondProtectManage1.2.3.4.24–2004SymantecCorporation,AllRightsReservedSymantecSolutions-Respond•SymantecSecurityResponseTeam–Wirelessalerts(forsubscribingandPlatinumcustomers)–Rapidreleaseantivirusdefinitions–Certifiedantivirusdefinitions–Detailedviruswrite-ups–Removaltool–ContentupdatesforIDSsignaturesRespond25–2004SymantecCorporation,AllRightsReserved–2004SymantecCorporation,AllRightsReservedSymantecSolutions-Manage•SymantecEnterpriseSecurityManager–04.13PostedanupdatetotheOSPatchPolicythatdetectsandreportsunpatchedsystems.•SymantecVulnerabilityAssessment–04.13PostedanupdatethatdetectsandreportstheLSASSvulnerability.Manage27–2004SymantecCorporation,AllRightsReservedSymantecSolutions–GhostCE•Automatedpatchdeployment–Findallmissingpatches–Downloadpre-testedpatchestolocalserver–Accessknowledgebaseinformationaboutpatches–Pushpatchestoallmachines•HowGhostCEcanhelp–Reducetime&costofdeployingcriticalpatch–ReliablydeploytoALLusersacrosscorporateenvironment–Providebackup/restorefordisasterrecoveryManage28–2004SymantecCorporation,AllRightsReservedSymantecSolution-ManageManageInternetSecurityNerveCenter•ManagedSecurityServices–Reducesriskofsecuritybreachesby:•Constantlyanalyzingnewthreats.•Evaluatingtheimpactoncustomers.–Notifiedcustomersgloballythrough•Proactivenotificationviae-mail.•SecureInternetInterfaceportalsite–Closelymonitoringtheworm’sevolution.29–2004SymantecCorporation,AllRightsReserved
本文标题:完整企業資訊安全解決方案
链接地址:https://www.777doc.com/doc-1261164 .html