Security Basics mailing list archives
Re: "Endpoint" security solutions?
From: Vijay K <globevk () yahoo com>
Date: Sat, 8 Sep 2007 23:59:46 -0700 (PDT)
Just to add my 2 cents of advise, do look into the techniques these engines run. some products offer dual engines. The speed at which they scan file system, boot space, other for string matches (virus) memory product occupies everything matters. Remember these solutions ideally are an overhead meaning protecting against miscreant invasions than running any productive applications in an ideal world. Just ensure they dont slow down your system drastically. Do check CPU load. Solutions are offered both client side agent based and agentless solutions. I would suggest you to lay emphasis on role based centrally managed security solutions that would allow administrators to define groups, user priveleges, alert settings accordingly especially in more than 500 employee organizations. Makes life easier if whole thing is automated. Hope the above helps ;) Best Regards Vijay Kakumanu --- damien dinh <damiendinh () gmail com> wrote:
You should also look into behavioral based end point security products like Cisco CSA, Intercept (bought by NAI awhile back i think?), etc...but can be administratively demanding if you are not familiar with these products. Just my .02 Best! Damien Dinh, MS On 9/7/07, Vijay K <globevk () yahoo com> wrote:For enterprise products you might want to check EndForce and InfoExpress End point security is quite an area comprisingseveralcomponents 1. Anti-Virus 2. Trojans 3. root kits 4. Malware 5. Security Patching O/S 6. worms 7. spyware and tracking cookies 8. Browser hijacks 9. Patch updates 10. Hacks and firewalls 11. Vulnerability and remediation and others if i missed out a few... Enterprise issues largely target devicemanagement,secure patching, policy management, quarantineissues,remediation methods and incident responsetechniquesPatch management companies such as altiris thatyoumentioned do few tasks not everything. companiessuchas bigfix, shavlik, symantec live state, novell provide the infrastructure that an enterpriseneedsfor centrally managing IT and audit regulatory compliance like sarbnes oxley. For vulnerability you may want to check qualys,eeyeand others Hope that helps cheers Vijay Kakumanu --- Kelly Keeton <kellyrkeeton () gmail com> wrote:you might check out IronMail and Borderware On 9/4/07, spencerforhire<spencerforhire () gmail com>wrote:Hello, I'm looking for advice on endpoint securitysolutions which addressthe security of intellectual property - e.g.monitoring and reportingof suspicious removable storage and webmailactivity. Some of theendpoint security solutions I've seen focus onantivirus and patchcompliance, but I would like some options thataddress suspicioushandling of corporate information. Theability tocentrally manageendpoint agents is also important since Ienvisionthem beingdispersed across many physical locations. IheardAltiris had aproduct that might fit these requirements, butitwas purchased bySymantec and I'm not sure of the currentstatus?Thanks! Mark
____________________________________________________________________________________
Fussy? Opinionated? Impossible to please? Perfect.Join Yahoo!'s userpanel and lay it on us.
http://surveylink.yahoo.com/gmrs/yahoo_panel_invite.asp?a=7
____________________________________________________________________________________ Fussy? Opinionated? Impossible to please? Perfect. Join Yahoo!'s user panel and lay it on us. http://surveylink.yahoo.com/gmrs/yahoo_panel_invite.asp?a=7
Current thread:
- "Endpoint" security solutions? spencerforhire (Sep 04)
- Re: "Endpoint" security solutions? Big Joe Jenkins (Sep 05)
- Re: "Endpoint" security solutions? Kelly Keeton (Sep 05)
- Re: "Endpoint" security solutions? Vijay K (Sep 07)
- <Possible follow-ups>
- Re: "Endpoint" security solutions? Vijay K (Sep 10)