Trend Micro deep security 9.6

Similar documents
Dynamic Datacenter Security Solidex, November 2009

Securing the Modern Data Center with Trend Micro Deep Security

Deep Security 9. A Server Security Platform for Physical, Virtual, Cloud. Territory Sales Manager SEE, Trend Micro. Copyright 2011 Trend Micro Inc.

Trend Micro Deep Security

Deep Security 9.6 Supported Features by Platform

SYMANTEC DATA CENTER SECURITY

McAfee Public Cloud Server Security Suite

Deep Security 9.6 SP1. Supported Features by Platform

Deep Security 9.6 SP1 Supported Features by Platform

Deep Security 9.5 SP1 Supported Features by Platform

Deep Security 9.5 Supported Features by Platform

Deep Security 9.5 Supported Features by Platform

Kaspersky Security for Virtualization Frequently Asked Questions

CYBER SECURITY MALAYSIA AWARDS, CONFERENCE & EXHIBITION (CSM-ACE) Securing Virtual Environments



AS Stallion. Security for Virtual Server Environments. Urmas Püss


Copyright 2011 Trend Micro Inc.

Network Security Protection Alternatives for the Cloud

Automated Security for the Real-time Enterprise with VMware NSX and Trend Micro Deep Security Chris Van Den Abbeele, Global Solution Architect, Trend


McAfee Complete Endpoint Threat Protection Advanced threat protection for sophisticated attacks

Securing Your Virtual World Harri Kaikkonen Channel Manager

McAfee Embedded Control

Symantec Endpoint Protection

DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise

Netwrix Auditor Competitive Checklist

Data Sheet: Endpoint Security Symantec Multi-tier Protection Trusted protection for endpoints and messaging environments

Stopping Advanced Persistent Threats In Cloud and DataCenters

THREAT PROTECTION FOR VIRTUAL SYSTEMS #ILTACON #ILTA156

The Evolution of Data Center Security, Risk and Compliance


The McAfee MOVE Platform and Virtual Desktop Infrastructure

LIGHT AGENT OR AGENTLESS

Symantec Reference Architecture for Business Critical Virtualization

Imperva Incapsula Website Security

Datacenter Security: Protection Beyond OS LifeCycle

CimTrak Product Brief. DETECT All changes across your IT environment. NOTIFY Receive instant notification that a change has occurred

Securing Your Amazon Web Services Virtual Networks

IBM BigFix Compliance

Commercial Product Matrix

Seamless Security in the Age of Cloud Services: Securing SaaS Applications & Cloud Workloads


McAfee Virtual Network Security Platform

Ensure Virtualization Security and Improve Business Productivity with Kaspersky

RSA pro VMware. David Matějů. RSA, The Security Division of EMC

SentinelOne Technical Brief

Trust in the Cloud. Mike Foley RSA Virtualization Evangelist 2009/2010/ VMware Inc. All rights reserved

Symantec and VMWare why 1+1 makes 3

Sourcefire Solutions Overview Security for the Real World. SEE everything in your environment. LEARN by applying security intelligence to data

Symantec Endpoint Protection Family Feature Comparison

Managing Your Privileged Identities: The Choke Point of Advanced Attacks

for businesses with more than 25 seats

Seqrite Endpoint Security

VMware vsphere Clusters in Security Zones

Endpoint Security and Virtualization. Darren Niller Product Management Director May 2012

Christopher Covert. Principal Product Manager Enterprise Solutions Group. Copyright 2016 Symantec Endpoint Protection Cloud

Protect Your End-of-Life Windows Server 2003 Operating System

Moving Beyond Prevention: Proactive Security with Integrity Monitoring

vsan Security Zone Deployment First Published On: Last Updated On:

The threat landscape is constantly

Securing the Software-Defined Data Center

WITH ACTIVEWATCH EXPERT BACKED, DETECTION AND THREAT RESPONSE BENEFITS HOW THREAT MANAGER WORKS SOLUTION OVERVIEW:

KASPERSKY ENDPOINT SECURITY FOR BUSINESS

Symantec Endpoint Protection

Enterprise & Cloud Security

McAfee Endpoint Threat Defense and Response Family

Infoblox as Part of the Ecosystem

White Paper. Securing the virtual infrastructure without impacting performance

The vsphere 6.0 Advantages Over Hyper- V


BUILDING SECURITY INTO YOUR DATA CENTER MODERNIZATION STRATEGY

SentinelOne Technical Brief

Defense-in-Depth Against Malicious Software. Speaker name Title Group Microsoft Corporation

Managing and Auditing Organizational Migration to the Cloud TELASA SECURITY

Total Protection for Compliance: Unified IT Policy Auditing

Expand Virtualization. Maintain Security.

Annexure E Technical Bid Format

Many roads. One solution. Your Business Powered by FlexPod

IBM Security. Endpoint Manager- BigFix. Daniel Joksch Security Sales IBM Corporation

IBM Exam 00M-662 Security Systems Sales Mastery Test v2 Version: 7.1 [ Total Questions: 72 ]

STRATEGIC WHITE PAPER. Securing cloud environments with Nuage Networks VSP: Policy-based security automation and microsegmentation overview

Availability for the modern datacentre Veeam Availability Suite v9.5

Cisco Tetration Analytics

Product Guide Revision B. McAfee Cloud Workload Security 5.0.0

Internet Scanner 7.0 Service Pack 2 Frequently Asked Questions

Virtualization Security & Audit. John Tannahill, CA, CISM, CGEIT, CRISC

Security in a Virtualized Environment with TrendMicro

McAfee Embedded Control for Healthcare

Security for the Cloud Era

Securing Your Microsoft Azure Virtual Networks

McAfee Cloud Workload Security Product Guide

Copyright 2011, Oracle and/or its affiliates. All rights reserved.

Security by Default: Enabling Transformation Through Cyber Resilience

by Cisco Intercloud Fabric and the Cisco

Availability for the Always-On Enterprise

SIEMLESS THREAT MANAGEMENT

CA Host-Based Intrusion Prevention System r8

Veeam Availability Solution for Cisco UCS: Designed for Virtualized Environments. Solution Overview Cisco Public

Transcription:

datasheet Trend Micro deep security 9.6 Comprehensive security platform for physical, virtual, and cloud servers Virtualization has already transformed the data center and now, organizations are moving some or all of their workloads to private and public clouds. If you re interested in taking advantage of the benefits of virtualization and cloud computing, you need to ensure you have security built to protect all of your servers, whether physical, virtual, or cloud. In addition, your security should not hinder host performance and virtual machine (VM) density or the return on investment (ROI) of virtualization and cloud computing. Trend Micro Deep Security provides comprehensive security in one solution that is purpose-built for virtualized and cloud environments so there are no security gaps or performance impacts. Protection from data breaches and business disruptions Deep Security available as software or as-a-service is designed to protect your data center and cloud workloads from data breaches and business disruptions. Deep Security helps you achieve compliance by closing gaps in protection efficiently and economically across virtual and cloud environments. Multiple security controls managed from a single dashboard Deep Security features integrated modules including anti-malware, web reputation, firewall, intrusion prevention, integrity monitoring, and log inspection to ensure server, application, and data security across physical, virtual, and cloud environments. Deep Security can be deployed as a single, multifunction agent across all environments and simplifies security operations with a single management dashboard for all capabilities. You can use Trend Micro Control Manager as your dashboard, or a third-party system such as VMware vrealize, Splunk, HP ArcSight, or IBM QRadar. Key Business Issues Virtual desktop security Preserve performance and consolidation ratios with comprehensive agentless security built specifically to maximize protection for VDI environments Virtual patching Shield vulnerabilities before they can be exploited, eliminating the operational pains of emergency patching, frequent patch cycles, and costly system downtime Compliance Demonstrate compliance with a number of regulatory requirements including PCI DSS 3.0, HIPAA, HITECH, FISMA/NIST, NERC, SS AE 16, and more. Seamless integration extends policies across cloud environments. Deep Security seamlessly integrates with cloud platforms including Amazon Web Services (AWS), Microsoft Azure, and VMware vcloud Air enabling you to extend data center security policies to cloud-based workloads. With a wide range of capabilities optimized across environments, Deep Security empowers enterprises and service providers to offer a differentiated and secure multi-tenant cloud environment to their users. Accelerate the ROI of cloud and virtualization with security for the modern data center Virtualization security Deep Security protects virtual desktops and servers against zero-day malware and network-based attacks while minimizing operational impact from resource inefficiencies and emergency patching. Cloud security Deep Security enables service providers and modern data center managers to offer a secure multi-tenant cloud environment with security policies that can be extended to cloud workloads and managed centrally with consistent, context-aware policies. Integrated server security Deep Security consolidates all server security functions into one comprehensive, integrated, and flexible platform that optimizes protection across physical, virtual, and cloud servers. Page 1 of 5 datasheet deep security 9.6

Control Security Across Physical, Virtual, and Cloud Instances Cloud Instances Data Center physical virtual virtual desktop Deep Security Agent Alerts IT Infrastructure Integration Deep Security Manager Deep Security Agentless Virtual Appliance Deep Security (Software or Service) Reports Administrator key advantages Effective and efficient Yields more efficient resource utilization and management with higher VM densities than traditional anti-malware solutions Adds flexibility and defense-in-depth capabilities as a single, easy-to-manage multi-function security agent Delivers unparalleled performance via hypervisor-level scanning deduplication Integrates with cloud platforms including AWS, Microsoft Azure, and VMware vcloud Air, enabling organizations to manage their physical, virtual, and cloud servers with consistent and context-aware security policies Enables service providers to offer customers a secure public cloud, isolated from other tenants via multi-tenant architecture Provides auto-scaling, utility computing, and self-service to support agile organizations running a software-defined data center Leverages Deep Security s tight integration with VMware to automatically detect new VMs and apply context-based policies for consistent security across the data center and cloud Integrates with VMware vsphere 6 and NSX. Deep Security extends the benefits of micro-segmentation in the software-defined data center with security policies and capabilities that automatically follow VMs no matter where they go Prevent data breaches and business disruptions Detects and removes malware from virtual servers in real time with minimal performance impact Blocks malware that attempts to evade detection by uninstalling or otherwise disrupting the security program Shields known and unknown vulnerabilities in web and enterprise applications and operating systems Sends alerts and triggers proactive prevention upon detection of suspicious or malicious activity Tracks website credibility and protects users from infected sites with web reputation threat intelligence from Trend Micro s global domain-reputation database Identifies and blocks botnet and targeted attack command and control (C&C) communications using unified threat intelligence from Trend Micro s global domain-reputation database Maximize operational cost reductions Eliminates the cost of deploying multiple software clients with a centrally managed, multi-purpose software agent or virtual appliance Reduces complexity with tight integrations with management consoles from Trend Micro, VMware, and enterprise directories such as VMware vrealize, Splunk, HP ArcSight, and IBM QRadar Provides vulnerability shielding to allow secure coding and cost-effective implementation of unscheduled patches Reduces management costs by automating repetitive and resource-intensive security tasks, reducing false-positive security alerts, and enabling workflow of security incident response Significantly reduces the complexity of managing file-integrity monitoring with cloud-based event whitelisting and trusted events Detects vulnerabilities and software via Recommendation Scanning to detect changes and provide protection from vulnerabilities Ensures improved operational efficiency with a lighter, more dynamic smart agent that eases deployment to maximize resource allocation across the data center and cloud Matches security to your policy needs so fewer resources need to be dedicated to specific security controls Simplifies administration with centralized management across Trend Micro security products. Centralized reporting of multiple security controls reduces the challenge of creating reports for individual products Achieve cost-effective compliance Addresses major compliance requirements for PCI DSS 3.0, as well as HIPAA, HITECH, NIST, and SAS 70 with one integrated and cost-effective solution Provides audit reports that document attacks prevented and compliance policy status Reduces the preparation time and effort required to support audits Supports internal compliance initiatives to increase visibility of internal network activity Leverages proven technology certified to Common Criteria EAL 4+ Page 2 of 5 datasheet deep security 9.6

DEEP SECURITY PLATFORM MODULES Anti-malware with web reputation Integrates VMware vshield Endpoint APIs to protect VMware virtual machines against viruses, spyware, Trojans, and other malware with zero in-guest footprint Delivers an anti-malware agent to extend protection to physical, virtual, and cloud servers, including AWS, Microsoft, and VMware environments Includes improved performance through VMware ESX-level caching and deduplication Optimizes security operations to avoid antivirus storms commonly seen in full system scans and pattern updates from traditional security capabilities Protects from sophisticated attacks in virtual environments by isolating malware from critical operating system and security components Integrates with the Trend Micro Smart Protection Network global threat intelligence for web reputation capabilities that strengthen protection for servers and virtual desktops Intrusion prevention Examines all incoming and outgoing traffic for protocol deviations, policy violations, or content that signals an attack Automatically protects against known but unpatched vulnerabilities by virtually patching (shielding) them from an unlimited number of exploits, pushing protection to thousands of servers in minutes without a system reboot Assists with compliance (PCI DSS section 6.6) to protect web applications and the data they process Defends against SQL injection, cross-site scripting, and other web application vulnerabilities Includes out-of-the-box vulnerability protection for all major operating systems and over 100 applications, including database, web, email, and FTP servers Provides increased visibility and control over applications accessing the network Bidirectional host-based firewall Decreases the attack surface of physical, cloud, and virtual servers with fine-grained filtering, policies per network, and location awareness for all IP-based protocols and frame types Centrally manages server firewall policy, including templates for common server types Prevents denial-of-service attacks and detects reconnaissance scans Provides logging of firewall events at the host, enabling compliance and audit reporting that is especially critical for public cloud deployments Integrity monitoring Monitors critical operating system and application files, such as directories, registry keys, and values, to detect and report malicious and unexpected changes in real time Uses Intel TPM/TXT technology to perform hypervisor integrity monitoring for any unauthorized changes to the hypervisor, thereby extending security and compliance to the hypervisor layer Reduces administrative overhead with trusted event tagging that automatically replicates actions for similar events across the entire data center Simplifies administration by greatly reducing the number of known good events through automatic cloud-based whitelisting from Trend Micro Certified Safe Software Service Log inspection Collects and analyzes operating system and application logs in over 100 log file formats, identifying suspicious behavior, security events, and administrative events across your data center Assists with compliance (PCI DSS section 10.6) to optimize the identification of important security events buried in multiple log entries Forwards events to SIEM system or centralized logging server for correlation, reporting, and archiving Deep Security also allowed us to eliminate another antivirus solution on our servers It had consumed a large amount of memory, and generated a lot of CPU churning due to the scans. We haven t had any of those problems with Deep Security. Blaine Isbelle Systems Administrator Information Services Technology University of California at Berkeley Deep Security for SAP is a module that integrates with and protects SAP systems. Page 3 of 5 datasheet deep security 9.6

DEPLOYMENT AND INTEGRATION Rapid Deployment: Leverage Existing IT and Security Investments Integration with vshield using the epsec libraries allows for agentless anti-malware protection of vsphere virtual machines in non-nsx environments Deep Security in Combined Mode allows for maximum protection of virtual machines using vcenter Networking and Security. A Deep Security Virtual Appliance can be used for agentless anti-malware and integrity monitoring. Combine this with the Deep Security Agent for intrusion prevention, firewall and web reputation services for maximum protection in non-nsx environments Integration with NSX Manager enables rapid deployment on ESX servers as a virtual appliance to immediately and transparently protect vsphere virtual machines Detailed, server-level security events are provided to a SIEM system, including HP ArcSight, Intellitactics, IBM QRadar, NetIQ, RSA Envision, Q1Labs, Loglogic, and other systems through multiple integration options. Directory integration with enterprise directories, including Microsoft Active Directory Agent software can be deployed easily through standard software distribution mechanisms such as Chef, Puppet, AWS OpsWorks, Microsoft System Center Configuration Manager (SCCM), Novell ZENworks, and Symantec Deployment Solution Certification for CSPs Trend Ready for Cloud Service Providers is a global validation testing program designed for Cloud Service Providers (CSPs) to prove interoperability with industry-leading cloud security solutions from Trend Micro. PLATFORM ARCHITECTURE Deep Security Virtual Appliance. Transparently enforces security policies on VMware vsphere virtual machines using NSX for agentless anti-malware, web reputation, intrusion prevention, integrity monitoring, and firewall protection. For non-nsx environments combined mode can be used where the virtual appliance is used for agentless anti-malware and integrity monitoring and an agent for intrusion prevention, firewall, web reputation, and log inspection. Deep Security Agent. Enforces the data center s security policy (anti-malware, intrusion prevention, firewall, integrity monitoring, and log inspection) via small software component deployed on the server or virtual machine being protected (can be automatically deployed with leading operational management tools like Chef, Puppet, and AWS OpsWorks). Deep Security Manager. Powerful, centralized management console: role-based administration and multi-level policy inheritance allows for granular control. Task-automating features such as Recommendation Scan and Event Tagging simplify ongoing security administration. Multi-tenant architecture enables isolation of individual tenant policies and delegation of security management to tenant admins. Global Threat Intelligence. Deep Security integrates with Trend Micro Smart Protection Network to deliver real-time protection from emerging threats by continuously evaluating and correlating global threat and reputation intelligence for websites, email sources, and files. Page 4 of 5 datasheet deep security 9.6

PLATFORM ARCHITECTURE Microsoft Windows Windows XP, Vista, 7, 8, 8.1 (32-bit/64-bit) Windows Server 2003 (32-bit/64-bit) Windows Server 2008 (32-bit/64-bit), 2008 R2, 2012, 2012 R2, 2012 Server Core (64-bit) XP Embedded (32-bit/64-bit) 1 Linux 2 Red Hat Enterprise 5, 6, 7 (32-bit/64-bit) 3 SUSE Enterprise 10, 11, 12 (32-bit/64-bit) 3 CentOS 5, 6 (32-bit/64-bit) 5 Ubuntu 10, 12, 14 (64-bit, LTS only) 4, 5 Oracle Linux 5, 6, 7 (32-bit/64-bit) 4, 5 Cloud Linux 5, 6 (32-bit/64-bit) 4 Cloud Linux 7 (32-bit/64-bit) 2 Amazon Linux 4, 5 Debian 6, 7 (64-bit) 4 Oracle Solaris 6, 7 OS: 9, 10, 11 (64-bit SPARC), 10, 11 (64-bit x86) 7, 8 Oracle Exadata Database Machine, Oracle Exalogic Elastic Cloud and SPARC Super Cluster via the supported Solaris operating systems UNIX 6 AIX 5.3, 6.1, 7.1 on IBM Power Systems 7, 8 HP-UX 11i v3 (11.31) 7, 9 VIRTUAL VMware vsphere: 5.0/5.1/5.5/6.0, vcloud Networking and Security 5.1/5.5 10, View 4.5/5.0/5.1, ESX 5.5, NSX 6.1.X Citrix : XenServer 11 Microsoft : HyperV 11 Key certifications and alliances Amazon Advanced Technology Partner Certified Red Hat Ready Cisco UCS validated Common Criteria EAL 4+ EMC VSPEX validated HP Business Partnership Microsoft Application Protection Program Microsoft Certified Partnership NetApp FlexPod validated Oracle Partnership PCI Suitability Testing for HIPS (NSS Labs) SAP Certified (NW-VSI 2.0 and HANA) VCE Vblock validated Virtualization by VMware 1 due to the customization possible with Windows XP Embedded, we request that customers validate correct operation in their own environments to ensure the services and ports necessary to run the Deep Security Agent have been enabled. 2 See documentation for supported kernels 3 support for SAP protection only in Red Hat 6 (64-bit) and SUSE 11 (64-bit) agent side only. To have SAP protection function correctly, the anti-malware module must be enabled in the agent side. 4 Anti-malware support for on-demand scan only 5 See latest release notes for supported versions 6 Anti-malware and web reputation monitoring not available 7 Supported via 9.0 agents 8 Anti-malware not available 9 Log inspection and integrity monitoring only 10 vcloud Networking and Security allows for agentless anti-malware and integrity monitoring 11 Protection via Deep Security Agent only Securing Your Journey to the Cloud 2015 by Trend Micro Incorporated. All rights reserved. Trend Micro, the Trend Micro t-ball logo, and Smart Protection Network are trademarks or registered trademarks of Trend Micro Incorporated. All other company and/or product names may be trademarks or registered trademarks of their owners. Information contained in this document is subject to change without notice. [DS08_DeepSecurity9_6_150721US] Page 5 of 5 datasheet deep security 9.6

Worksmarter AtInsight,we lhelpyousolvechalengesandimprove performancewithinteligenttechnologysolutions. Learnmore

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback