SlideShare une entreprise Scribd logo

Mcafee ips nsp-2011

Luluk Kristiawan
Luluk Kristiawan

Mcafeee IPS Network Se

Technologie
1  sur  21
Télécharger pour lire hors ligne
Global Network Protection McAfee Network Intrusion Prevention Luluk Kristiawan IT Security Consultant 9-Nov-11 Confidential McAfee Internal Use Only
Agenda ►New Economy, New Challenges ►Introducing the McAfee Network Security Platform ►Protecting Every Angle 2 2/16/11 Confidential McAfee Internal Use Only
SECURITY CHALLENGE 2/16/11 Confidential McAfee Internal Use Only
Protecting Enterprise Applications  Attacks from Every Angle  Web, mail, media, and direct attack vectors. Botnets are public enemy #1.  Web 2.0 Risks  Hundreds of thousands of compromised websites & deliberate malware hosts  Productivity and Continuity  Rapid expansion of new vulnerabilities forcing IT Impact into more out-of-cycle patches  Growth & Scalability  10Gbps requirements becoming real; Appliance sprawl an ops issue  Global Security  “Swivel Chair Integration” inadequate for global Management deployments 4 2/16/11 Confidential McAfee Internal Use Only
Threat Trends Continue to Accelerate  Hundreds of Application Vulnerabilities 2005 2006 2007 2008 2009  5000 DoS Targets/day  400,000 Web Malware Hosts 5 2/16/11 Confidential McAfee Internal Use Only
“PATCH and PRAY” install the patch and pray it works. 2/16/11 Confidential McAfee Internal Use Only
Market Positioning MCAFEE IPS : NETWORK SECURITY PLATFORM 2/16/11 Confidential McAfee Internal Use Only
NSP is the Industry’s Leading IPS “The M-8000 offers the highest accuracy and throughput of any product we've tested to date.” McAfee’s Network Security Manager (NSM) was simple to use and flexible, allowing for rapid deployment of devices with effective pre-defined policy choices. Tuning and maintenance is simple and well-thought out. No other vendor can show such sustained excellence in IPS! According to the 2010 NSS Group Summary Report: McAfee Confidential—Internal Use Only
McAfee: Uniquely Qualified to Protect Your Network  Validated 10G+ performance, 100% accuracy Network IPS  Dedicated Security R&D  Years of Award Winning 9 2/16/11 Confidential McAfee Internal Use Only
The Advantages of Product MCAFEE IPS : NETWORK SECURITY PLATFORM McAfee Confidential—Internal Use Only
Introducing the Network Security Platform McAfee Global Threat Intelligence  Cutting-edge Network IPS  World’s most advanced threat Protocol & Network Application Behavior protection platform Behavior  Integration with world-class Security portfolio Evasion & Attacks and Obfuscation Exploit Content, Source, and Web Reputation 11 2/16/11 Confidential McAfee Internal Use Only
Benefits of the Network Security Platform  Vulnerability-based Threat Protection  Best Zero-day vulnerability coverage  Best-in-class protection for all major application vulnerabilities: Adobe, Oracle, Cisco, Microsoft, etc.  Best-in-class Protection: Bots to Datacenters  Best Denial of Service protections  Real-time web-borne malware protection  Built-in anti-phishing and P2P  SSL Decryption  Architected for High Performance Networks  10G Certified  High density and high-availability M-Series Network  Class-leading virtual systems Security Platform Family support  Lifecycle protection 12 2/16/11 Confidential McAfee Internal Use Only
Scalability to Protect Your Global Network M-8000 10 Gbps M-6050 5 Gbps M-4050 3 Gbps M-3050 10GE Connectivity 1.5 Gbps M-2750 600 Mbps M-1450  Beyond 10 Gigabit performance 200 Mbps  High-reliability and Scalability M-1250  Highest port-density available 100 Mbps  Common Management Console SMB and Branch Office Enterprise Perimeter Enterprise, Data Center Enterprise Core, Service Providers Data Center Service Providers 13 2/16/11 Confidential McAfee Internal Use Only
How McAfee Global Threat Intelligence Works Delivering the Most Comprehensive Intelligence in the Market Threat Intelligence Feeds Other feeds Endpoints Appliances Servers Firewalls & analysis McAfee Labs File Reputation Email Reputation Engine Engine Web Reputation Network Reputation Engine Engine Vulnerability Information ePO IPS Firewall Email Web AV AWL DLP Mobile McAfee Confidential—Internal Use Only
Why McAfee is Best Positioned to Deliver GTI The Most Robust Telemetry Data in the Market • 2.5B Malware Reputation Queries/Month • 20B Email Reputation Queries/Month • 75B Web Reputation Queries/Month Queries • 2B IP Reputation Queries/Month • 300M IPS Attacks/Month • 100M Ntwk Conn Rep Queries/Month • 100+ BILLION QUERIES • Malware: 40M Endpoints • Email: 30M Nodes Nodes • Web: 45M Endpoint and Gateway Users • Intrusions: 4M Nodes • 100+ MILLION NODES, 120 COUNTRIES 15 February McAfee Confidential—Internal Use Only 16, 2011
World’s Most Advanced Denial of Service Protections  Threshold-based Protection  Optimized and simplified to set and forget  Easy to set thresholds  ICMP, TCP SYN, UDP, IP fragments, and other settings  Self-learning Profiles  Patented techniques to learn your network behavior and adapt  Self-learning for entire enterprises and target environments  Fully segmented on VIPS 16 2/16/11 Confidential McAfee Internal Use Only
Simplifying Threat Management Integration with ePO to give real-time system visibility System-Aware IPS with ePO Host Data  Simple right-click provides real- time details of Source or Destination IPs  Provides hostname, user name, OS, patch level, MAC address, last scan date and other protection policies Top 10 Host Intrusion events System-Aware IPS Benefits  Faster time-to-confidence  Visibility  Efficiency  Relevance  Leverages ePO investment 17 2/16/11 Confidential McAfee Internal Use Only
Simplifying Risk Management Integration with Vulnerability Manager gain real-time visibility into events Real-Time Risk-Aware IPSFeatures • Auto import of Vulnerability Manager scan reports • “Scan now” provides on-demand VM relevancy on a per-host(s) basis Real-Time Risk-Aware IPS Benefits • Improved focus on critical events • Automated, accurate relevance • Real-time update of vulnerability details for specific host(s) • Leverages Foundstone investment 18 2/16/11 Confidential McAfee Internal Use Only
Optimized for Real Networks  Simplified Network Integration  High Density Perimeter  Highest port density, 10GE support  WAN Edge  Low latency, bump in the wire  WAN Aggregation  High throughput across product models  Virtual systems per branch, internal network  Redundant pair, load sharing  Flexible 10/100/1000/10G and VLAN support  Data-Center Ready  High Availability  10Gbps Certified performance  Flexible Fail Open/Closed modes  Up to 1000 Virtual Systems  Dual hot-swappable AC & DC power  10GE Connectivity  Purpose-built HW, no removable media Data Center Branch Site Enterprise Campus M-8000 M-1250 M-3050 19 2/16/11 Confidential McAfee Internal Use Only
The Result Unparalleled Protection Operational Excellence Lifecycle Protection McAfee M-Series Network IPS 20 2/16/11 Confidential McAfee Internal Use Only
Mcafee ips nsp-2011

Recommandé

From Physical to Virtual to Cloud
From Physical to Virtual to CloudFrom Physical to Virtual to Cloud
From Physical to Virtual to Cloud
Cisco Security
 
Defending the Data Center: Managing Users from the Edge to the Application
Defending the Data Center: Managing Users from the Edge to the ApplicationDefending the Data Center: Managing Users from the Edge to the Application
Defending the Data Center: Managing Users from the Edge to the Application
Cisco Security
 
IBM Security Day, Cuenca - Ecuador
IBM Security Day, Cuenca - EcuadorIBM Security Day, Cuenca - Ecuador
IBM Security Day, Cuenca - Ecuador
Olmedo Abril Arboleda
 
Best Practices Guide: Introducing Web Application Firewalls
Best Practices Guide: Introducing Web Application FirewallsBest Practices Guide: Introducing Web Application Firewalls
Best Practices Guide: Introducing Web Application Firewalls
alexmeisel
 
Data Center Security Now and into the Future
Data Center Security Now and into the FutureData Center Security Now and into the Future
Data Center Security Now and into the Future
Cisco Security
 
Securing Public Web Servers
Securing Public Web ServersSecuring Public Web Servers
Securing Public Web Servers
webhostingguy
 
Meraki Company And Product Overview
Meraki Company And Product OverviewMeraki Company And Product Overview
Meraki Company And Product Overview
xanstevenson
 
MX Deep Dive PPT
MX Deep Dive PPTMX Deep Dive PPT
MX Deep Dive PPT
omar awad
 

Recommandé

From Physical to Virtual to Cloud
From Physical to Virtual to CloudFrom Physical to Virtual to Cloud
From Physical to Virtual to Cloud
Cisco Security
 
Defending the Data Center: Managing Users from the Edge to the Application
Defending the Data Center: Managing Users from the Edge to the ApplicationDefending the Data Center: Managing Users from the Edge to the Application
Defending the Data Center: Managing Users from the Edge to the Application
Cisco Security
 
IBM Security Day, Cuenca - Ecuador
IBM Security Day, Cuenca - EcuadorIBM Security Day, Cuenca - Ecuador
IBM Security Day, Cuenca - Ecuador
Olmedo Abril Arboleda
 
Best Practices Guide: Introducing Web Application Firewalls
Best Practices Guide: Introducing Web Application FirewallsBest Practices Guide: Introducing Web Application Firewalls
Best Practices Guide: Introducing Web Application Firewalls
alexmeisel
 
Data Center Security Now and into the Future
Data Center Security Now and into the FutureData Center Security Now and into the Future
Data Center Security Now and into the Future
Cisco Security
 
Securing Public Web Servers
Securing Public Web ServersSecuring Public Web Servers
Securing Public Web Servers
webhostingguy
 
Meraki Company And Product Overview
Meraki Company And Product OverviewMeraki Company And Product Overview
Meraki Company And Product Overview
xanstevenson
 
MX Deep Dive PPT
MX Deep Dive PPTMX Deep Dive PPT
MX Deep Dive PPT
omar awad
 
Meraki Overview
Meraki OverviewMeraki Overview
Meraki Overview
Cloud Distribution
 
Cisco Meraki Cloud Managed Networking
Cisco Meraki Cloud Managed NetworkingCisco Meraki Cloud Managed Networking
Cisco Meraki Cloud Managed Networking
Cisco Russia
 
Cisco Meraki Overview
Cisco Meraki OverviewCisco Meraki Overview
Cisco Meraki Overview
SSISG
 
Adam Sonzogni\'s Resume
Adam Sonzogni\'s ResumeAdam Sonzogni\'s Resume
Adam Sonzogni\'s Resume
Adam Sonzogni
 
Cisco Meraki Portfolio Guide
Cisco Meraki Portfolio GuideCisco Meraki Portfolio Guide
Cisco Meraki Portfolio Guide
Maticmind
 
Meraki Cloud Wireless Lan
Meraki Cloud Wireless LanMeraki Cloud Wireless Lan
Meraki Cloud Wireless Lan
ChikPea
 
The F5 DDoS Protection Reference Architecture (Technical White Paper)
The F5 DDoS Protection Reference Architecture (Technical White Paper)The F5 DDoS Protection Reference Architecture (Technical White Paper)
The F5 DDoS Protection Reference Architecture (Technical White Paper)
F5 Networks
 
Cisco Connect Toronto 2018 the intelligent network with cisco meraki
Cisco Connect Toronto 2018 the intelligent network with cisco merakiCisco Connect Toronto 2018 the intelligent network with cisco meraki
Cisco Connect Toronto 2018 the intelligent network with cisco meraki
Cisco Canada
 
Vfm palo alto next generation firewall
Vfm palo alto next generation firewallVfm palo alto next generation firewall
Vfm palo alto next generation firewall
vfmindia
 
Windows 7 security enhancements
Windows 7 security enhancementsWindows 7 security enhancements
Windows 7 security enhancements
Narenda Wicaksono
 
50357 a enu-module01
50357 a enu-module0150357 a enu-module01
50357 a enu-module01
Bố Su
 
Intrinsic Security—The Key to Effective Hybrid DDoS Protection
Intrinsic Security—The Key to Effective Hybrid DDoS ProtectionIntrinsic Security—The Key to Effective Hybrid DDoS Protection
Intrinsic Security—The Key to Effective Hybrid DDoS Protection
F5 Networks
 
Cisco Meraki Product Launch Q1 2017
Cisco Meraki Product Launch Q1 2017Cisco Meraki Product Launch Q1 2017
Cisco Meraki Product Launch Q1 2017
Maticmind
 
F5 - BigIP ASM introduction
F5 - BigIP ASM introductionF5 - BigIP ASM introduction
F5 - BigIP ASM introduction
Jimmy Saigon
 
Meraki Solution Overview
Meraki Solution OverviewMeraki Solution Overview
Meraki Solution Overview
Claudiu Sandor
 
Meraki overview sales deck inside sales
Meraki overview sales deck inside salesMeraki overview sales deck inside sales
Meraki overview sales deck inside sales
Haffizulla Rahman
 
Cisco Meraki: Let Simple Work For You
Cisco Meraki: Let Simple Work For YouCisco Meraki: Let Simple Work For You
Cisco Meraki: Let Simple Work For You
Cisco Canada
 
50357 a enu-module00
50357 a enu-module0050357 a enu-module00
50357 a enu-module00
Bố Su
 
Backup2013 - Barracuda Networks
Backup2013 - Barracuda NetworksBackup2013 - Barracuda Networks
Backup2013 - Barracuda Networks
Kappa Data
 
Meraki overview 2011 general (2) (1)
Meraki overview 2011 general (2) (1)Meraki overview 2011 general (2) (1)
Meraki overview 2011 general (2) (1)
subtitle
 
F5 Networks: architecture and risk management
F5 Networks: architecture and risk managementF5 Networks: architecture and risk management
F5 Networks: architecture and risk management
AEC Networks
 
Cisco Meraki- Simplifying IT
Cisco Meraki- Simplifying ITCisco Meraki- Simplifying IT
Cisco Meraki- Simplifying IT
Cisco Canada
 

Contenu connexe

Tendances

Cisco Meraki Cloud Managed Networking
Cisco Meraki Cloud Managed NetworkingCisco Meraki Cloud Managed Networking
Cisco Meraki Cloud Managed Networking
Cisco Russia
 
Adam Sonzogni\'s Resume
Adam Sonzogni\'s ResumeAdam Sonzogni\'s Resume
Adam Sonzogni\'s Resume
Adam Sonzogni
 
Vfm palo alto next generation firewall
Vfm palo alto next generation firewallVfm palo alto next generation firewall
Vfm palo alto next generation firewall
vfmindia
 
Windows 7 security enhancements
Windows 7 security enhancementsWindows 7 security enhancements
Windows 7 security enhancements
Narenda Wicaksono
 
50357 a enu-module01
50357 a enu-module0150357 a enu-module01
50357 a enu-module01
Bố Su
 
F5 - BigIP ASM introduction
F5 - BigIP ASM introductionF5 - BigIP ASM introduction
F5 - BigIP ASM introduction
Jimmy Saigon
 
50357 a enu-module00
50357 a enu-module0050357 a enu-module00
50357 a enu-module00
Bố Su
 
Backup2013 - Barracuda Networks
Backup2013 - Barracuda NetworksBackup2013 - Barracuda Networks
Backup2013 - Barracuda Networks
Kappa Data
 
Meraki overview 2011 general (2) (1)
Meraki overview 2011 general (2) (1)Meraki overview 2011 general (2) (1)
Meraki overview 2011 general (2) (1)
subtitle
 

Tendances (20)

Meraki Overview
Meraki OverviewMeraki Overview
Meraki Overview
 
Cisco Meraki Cloud Managed Networking
Cisco Meraki Cloud Managed NetworkingCisco Meraki Cloud Managed Networking
Cisco Meraki Cloud Managed Networking
 
Cisco Meraki Overview
Cisco Meraki OverviewCisco Meraki Overview
Cisco Meraki Overview
 
Adam Sonzogni\'s Resume
Adam Sonzogni\'s ResumeAdam Sonzogni\'s Resume
Adam Sonzogni\'s Resume
 
Cisco Meraki Portfolio Guide
Cisco Meraki Portfolio GuideCisco Meraki Portfolio Guide
Cisco Meraki Portfolio Guide
 
Meraki Cloud Wireless Lan
Meraki Cloud Wireless LanMeraki Cloud Wireless Lan
Meraki Cloud Wireless Lan
 
The F5 DDoS Protection Reference Architecture (Technical White Paper)
The F5 DDoS Protection Reference Architecture (Technical White Paper)The F5 DDoS Protection Reference Architecture (Technical White Paper)
The F5 DDoS Protection Reference Architecture (Technical White Paper)
 
Cisco Connect Toronto 2018 the intelligent network with cisco meraki
Cisco Connect Toronto 2018 the intelligent network with cisco merakiCisco Connect Toronto 2018 the intelligent network with cisco meraki
Cisco Connect Toronto 2018 the intelligent network with cisco meraki
 
Vfm palo alto next generation firewall
Vfm palo alto next generation firewallVfm palo alto next generation firewall
Vfm palo alto next generation firewall
 
Windows 7 security enhancements
Windows 7 security enhancementsWindows 7 security enhancements
Windows 7 security enhancements
 
50357 a enu-module01
50357 a enu-module0150357 a enu-module01
50357 a enu-module01
 
Intrinsic Security—The Key to Effective Hybrid DDoS Protection
Intrinsic Security—The Key to Effective Hybrid DDoS ProtectionIntrinsic Security—The Key to Effective Hybrid DDoS Protection
Intrinsic Security—The Key to Effective Hybrid DDoS Protection
 
Cisco Meraki Product Launch Q1 2017
Cisco Meraki Product Launch Q1 2017Cisco Meraki Product Launch Q1 2017
Cisco Meraki Product Launch Q1 2017
 
F5 - BigIP ASM introduction
F5 - BigIP ASM introductionF5 - BigIP ASM introduction
F5 - BigIP ASM introduction
 
Meraki Solution Overview
Meraki Solution OverviewMeraki Solution Overview
Meraki Solution Overview
 
Meraki overview sales deck inside sales
Meraki overview sales deck inside salesMeraki overview sales deck inside sales
Meraki overview sales deck inside sales
 
Cisco Meraki: Let Simple Work For You
Cisco Meraki: Let Simple Work For YouCisco Meraki: Let Simple Work For You
Cisco Meraki: Let Simple Work For You
 
50357 a enu-module00
50357 a enu-module0050357 a enu-module00
50357 a enu-module00
 
Backup2013 - Barracuda Networks
Backup2013 - Barracuda NetworksBackup2013 - Barracuda Networks
Backup2013 - Barracuda Networks
 
Meraki overview 2011 general (2) (1)
Meraki overview 2011 general (2) (1)Meraki overview 2011 general (2) (1)
Meraki overview 2011 general (2) (1)
 

Similaire à Mcafee ips nsp-2011

ReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered serviceReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered service
Gen-i
 
NetSafe - 11nov2011
NetSafe - 11nov2011NetSafe - 11nov2011
NetSafe - 11nov2011
Agora Group
 
Express Data - BYOD
Express Data - BYODExpress Data - BYOD
Express Data - BYOD
Gen-i
 
Express Data - BYOD
Express Data - BYODExpress Data - BYOD
Express Data - BYOD
Gen-i
 
F5 Value For Virtualization
F5 Value For VirtualizationF5 Value For Virtualization
F5 Value For Virtualization
Patricio Campos
 
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
Cisco Canada
 
Sophos utm-roadshow-south africa-2012
Sophos utm-roadshow-south africa-2012Sophos utm-roadshow-south africa-2012
Sophos utm-roadshow-south africa-2012
dvanwyk30
 
Customer Highleveloverview
Customer HighleveloverviewCustomer Highleveloverview
Customer Highleveloverview
rehanf5
 

Similaire à Mcafee ips nsp-2011 (20)

F5 Networks: architecture and risk management
F5 Networks: architecture and risk managementF5 Networks: architecture and risk management
F5 Networks: architecture and risk management
 
Cisco Meraki- Simplifying IT
Cisco Meraki- Simplifying ITCisco Meraki- Simplifying IT
Cisco Meraki- Simplifying IT
 
Forcepoint SD-WAN and NGFW + IPS
Forcepoint SD-WAN and NGFW + IPSForcepoint SD-WAN and NGFW + IPS
Forcepoint SD-WAN and NGFW + IPS
 
Palo Alto Networks, The Networking Security Company
Palo Alto Networks, The Networking Security CompanyPalo Alto Networks, The Networking Security Company
Palo Alto Networks, The Networking Security Company
 
ReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered serviceReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered service
 
Building The Right Network
Building The Right NetworkBuilding The Right Network
Building The Right Network
 
NetSafe - 11nov2011
NetSafe - 11nov2011NetSafe - 11nov2011
NetSafe - 11nov2011
 
Bapinger Network Security
Bapinger Network SecurityBapinger Network Security
Bapinger Network Security
 
Express Data - BYOD
Express Data - BYODExpress Data - BYOD
Express Data - BYOD
 
Express Data - BYOD
Express Data - BYODExpress Data - BYOD
Express Data - BYOD
 
F5 Value For Virtualization
F5 Value For VirtualizationF5 Value For Virtualization
F5 Value For Virtualization
 
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
SP Virtual Managed Services (VMS) for Intelligent WAN (IWAN)
 
Sophos utm-roadshow-south africa-2012
Sophos utm-roadshow-south africa-2012Sophos utm-roadshow-south africa-2012
Sophos utm-roadshow-south africa-2012
 
Presentation cisco nexus enabling the cloud infrastructure
Presentation cisco nexus enabling the cloud infrastructurePresentation cisco nexus enabling the cloud infrastructure
Presentation cisco nexus enabling the cloud infrastructure
 
BIG-IP Data Center Firewall Solution
BIG-IP Data Center Firewall SolutionBIG-IP Data Center Firewall Solution
BIG-IP Data Center Firewall Solution
 
Cisco Connect 2018 Thailand - Enabling the next gen data center transformatio...
Cisco Connect 2018 Thailand - Enabling the next gen data center transformatio...Cisco Connect 2018 Thailand - Enabling the next gen data center transformatio...
Cisco Connect 2018 Thailand - Enabling the next gen data center transformatio...
 
Segurdad de red para la generacion de la nube symantec
Segurdad de red para la generacion de la nube symantecSegurdad de red para la generacion de la nube symantec
Segurdad de red para la generacion de la nube symantec
 
5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...
5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...
5 Steps to a Secure Hybrid Architecture - Session Sponsored by Palo Alto Netw...
 
Решения конвергентного доступа Cisco. Обновление продуктовой линейки коммутат...
Решения конвергентного доступа Cisco. Обновление продуктовой линейки коммутат...Решения конвергентного доступа Cisco. Обновление продуктовой линейки коммутат...
Решения конвергентного доступа Cisco. Обновление продуктовой линейки коммутат...
 
Customer Highleveloverview
Customer HighleveloverviewCustomer Highleveloverview
Customer Highleveloverview
 

Dernier

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Roshan Dwivedi
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 

Dernier (20)

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
HTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation StrategiesHTML Injection Attacks: Impact and Mitigation Strategies
HTML Injection Attacks: Impact and Mitigation Strategies
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 

Mcafee ips nsp-2011

  • 1. Global Network Protection McAfee Network Intrusion Prevention Luluk Kristiawan IT Security Consultant 9-Nov-11 Confidential McAfee Internal Use Only
  • 2. Agenda ►New Economy, New Challenges ►Introducing the McAfee Network Security Platform ►Protecting Every Angle 2 2/16/11 Confidential McAfee Internal Use Only
  • 3. SECURITY CHALLENGE 2/16/11 Confidential McAfee Internal Use Only
  • 4. Protecting Enterprise Applications  Attacks from Every Angle  Web, mail, media, and direct attack vectors. Botnets are public enemy #1.  Web 2.0 Risks  Hundreds of thousands of compromised websites & deliberate malware hosts  Productivity and Continuity  Rapid expansion of new vulnerabilities forcing IT Impact into more out-of-cycle patches  Growth & Scalability  10Gbps requirements becoming real; Appliance sprawl an ops issue  Global Security  “Swivel Chair Integration” inadequate for global Management deployments 4 2/16/11 Confidential McAfee Internal Use Only
  • 5. Threat Trends Continue to Accelerate  Hundreds of Application Vulnerabilities 2005 2006 2007 2008 2009  5000 DoS Targets/day  400,000 Web Malware Hosts 5 2/16/11 Confidential McAfee Internal Use Only
  • 6. “PATCH and PRAY” install the patch and pray it works. 2/16/11 Confidential McAfee Internal Use Only
  • 7. Market Positioning MCAFEE IPS : NETWORK SECURITY PLATFORM 2/16/11 Confidential McAfee Internal Use Only
  • 8. NSP is the Industry’s Leading IPS “The M-8000 offers the highest accuracy and throughput of any product we've tested to date.” McAfee’s Network Security Manager (NSM) was simple to use and flexible, allowing for rapid deployment of devices with effective pre-defined policy choices. Tuning and maintenance is simple and well-thought out. No other vendor can show such sustained excellence in IPS! According to the 2010 NSS Group Summary Report: McAfee Confidential—Internal Use Only
  • 9. McAfee: Uniquely Qualified to Protect Your Network  Validated 10G+ performance, 100% accuracy Network IPS  Dedicated Security R&D  Years of Award Winning 9 2/16/11 Confidential McAfee Internal Use Only
  • 10. The Advantages of Product MCAFEE IPS : NETWORK SECURITY PLATFORM McAfee Confidential—Internal Use Only
  • 11. Introducing the Network Security Platform McAfee Global Threat Intelligence  Cutting-edge Network IPS  World’s most advanced threat Protocol & Network Application Behavior protection platform Behavior  Integration with world-class Security portfolio Evasion & Attacks and Obfuscation Exploit Content, Source, and Web Reputation 11 2/16/11 Confidential McAfee Internal Use Only
  • 12. Benefits of the Network Security Platform  Vulnerability-based Threat Protection  Best Zero-day vulnerability coverage  Best-in-class protection for all major application vulnerabilities: Adobe, Oracle, Cisco, Microsoft, etc.  Best-in-class Protection: Bots to Datacenters  Best Denial of Service protections  Real-time web-borne malware protection  Built-in anti-phishing and P2P  SSL Decryption  Architected for High Performance Networks  10G Certified  High density and high-availability M-Series Network  Class-leading virtual systems Security Platform Family support  Lifecycle protection 12 2/16/11 Confidential McAfee Internal Use Only
  • 13. Scalability to Protect Your Global Network M-8000 10 Gbps M-6050 5 Gbps M-4050 3 Gbps M-3050 10GE Connectivity 1.5 Gbps M-2750 600 Mbps M-1450  Beyond 10 Gigabit performance 200 Mbps  High-reliability and Scalability M-1250  Highest port-density available 100 Mbps  Common Management Console SMB and Branch Office Enterprise Perimeter Enterprise, Data Center Enterprise Core, Service Providers Data Center Service Providers 13 2/16/11 Confidential McAfee Internal Use Only
  • 14. How McAfee Global Threat Intelligence Works Delivering the Most Comprehensive Intelligence in the Market Threat Intelligence Feeds Other feeds Endpoints Appliances Servers Firewalls & analysis McAfee Labs File Reputation Email Reputation Engine Engine Web Reputation Network Reputation Engine Engine Vulnerability Information ePO IPS Firewall Email Web AV AWL DLP Mobile McAfee Confidential—Internal Use Only
  • 15. Why McAfee is Best Positioned to Deliver GTI The Most Robust Telemetry Data in the Market • 2.5B Malware Reputation Queries/Month • 20B Email Reputation Queries/Month • 75B Web Reputation Queries/Month Queries • 2B IP Reputation Queries/Month • 300M IPS Attacks/Month • 100M Ntwk Conn Rep Queries/Month • 100+ BILLION QUERIES • Malware: 40M Endpoints • Email: 30M Nodes Nodes • Web: 45M Endpoint and Gateway Users • Intrusions: 4M Nodes • 100+ MILLION NODES, 120 COUNTRIES 15 February McAfee Confidential—Internal Use Only 16, 2011
  • 16. World’s Most Advanced Denial of Service Protections  Threshold-based Protection  Optimized and simplified to set and forget  Easy to set thresholds  ICMP, TCP SYN, UDP, IP fragments, and other settings  Self-learning Profiles  Patented techniques to learn your network behavior and adapt  Self-learning for entire enterprises and target environments  Fully segmented on VIPS 16 2/16/11 Confidential McAfee Internal Use Only
  • 17. Simplifying Threat Management Integration with ePO to give real-time system visibility System-Aware IPS with ePO Host Data  Simple right-click provides real- time details of Source or Destination IPs  Provides hostname, user name, OS, patch level, MAC address, last scan date and other protection policies Top 10 Host Intrusion events System-Aware IPS Benefits  Faster time-to-confidence  Visibility  Efficiency  Relevance  Leverages ePO investment 17 2/16/11 Confidential McAfee Internal Use Only
  • 18. Simplifying Risk Management Integration with Vulnerability Manager gain real-time visibility into events Real-Time Risk-Aware IPSFeatures • Auto import of Vulnerability Manager scan reports • “Scan now” provides on-demand VM relevancy on a per-host(s) basis Real-Time Risk-Aware IPS Benefits • Improved focus on critical events • Automated, accurate relevance • Real-time update of vulnerability details for specific host(s) • Leverages Foundstone investment 18 2/16/11 Confidential McAfee Internal Use Only
  • 19. Optimized for Real Networks  Simplified Network Integration  High Density Perimeter  Highest port density, 10GE support  WAN Edge  Low latency, bump in the wire  WAN Aggregation  High throughput across product models  Virtual systems per branch, internal network  Redundant pair, load sharing  Flexible 10/100/1000/10G and VLAN support  Data-Center Ready  High Availability  10Gbps Certified performance  Flexible Fail Open/Closed modes  Up to 1000 Virtual Systems  Dual hot-swappable AC & DC power  10GE Connectivity  Purpose-built HW, no removable media Data Center Branch Site Enterprise Campus M-8000 M-1250 M-3050 19 2/16/11 Confidential McAfee Internal Use Only
  • 20. The Result Unparalleled Protection Operational Excellence Lifecycle Protection McAfee M-Series Network IPS 20 2/16/11 Confidential McAfee Internal Use Only