Professional Documents
Culture Documents
BO MT THNG TIN
Trnh by bi
Ging Hn Ph
Gim c K Thut
Email: phugh@dass.vn | Phone: 098 899 6104
2013
Ni dung
Gii thiu
Sn phm
Sophos Endpoint Security
Sophos Safeguard Enterprise
Sophos Unified Threat Management
Sourcefire Next-Generation IPS
Trustwave SIEM
Rapid7 Nexpose & Metasploit
GII THIU
Qun l bo mt
Application Security
Bo mt ng dng
Content Security
Bo mt ni dung
Network Security
Bo mt mng
Endpoint Security
Bo mt thit b cui
Trong
Sau
Khm ph mi trng
Pht hin
Xc nh phm vi
Ngn chn
Cng c ti nguyn
Firewall
Application Control
Vulnerability Management
Patch Management
Encryption
IPS
Anti-virus
Anti-malware
IDS
SIEM & Log Mgmt
Forensics
Full Packet Capture
Trong
Sau
Endpoint Security
Vulnerability Management
Firewall
Vulnerability Management
Next-Generation IPS
Client Firewall
Web Protection/Filtering
Device Control
Application Control
Content Security
Bo v Web
Bo co v tnh
trng s dng
Internet
Content Security
Bo v Email
Chc nng yu cu
Anti-malware Filtering Kim
sot phn mm c hi
Ngn chn ly lan virus qua h
thng email
Encryption M ha Email
T ng m ha mt s email c
ni dung nhy cm hoc theo chnh
sch ca t chc
Content Security
Bo v d liu M ha
Nguy c mt d liu
M ha d liu
Firewall
D liu
Mobile
workers
/
Malicious
insiders
Contractors,
outsourcing
Partners,
customers
Web 2.0
Device Encryption
M ha d liu lu tr trn thit b nh
USB, CD, DVD
SOPHOS UTM
Tnh nng bo mt
UTM Endpoint
Protection Antivirus
UTM Wireless
Protection
Antivirus
HIPS
Device Control
UTM Network
Protection
optional
Wireless controller
Multi-zone (SSID) support
Captive Portal
Intrusion prevention
IPSec/SSL VPN & RED
HTML5 VPN Portal
Essential Network
Firewall
Stateful firewall
Network address translation
PPTP/L2TP remote access
UTM Web
Protection
UTM Webserver
Protection
Reverse proxy
Web application firewall
Antivirus
optional
UTM Email
Protection
URL filter
Antivirus & antispyware
Application control
20
Bo v hon chnh
M ha Email
Tng la min ph
10
Qun l d dng
Intuitive dashboard
21
Comprehensive reporting
S dng n gin
10 V d
22
Zero-Config HA
One-click VPN
10
Tch hp AD
UTM
110/120
UTM 220
UTM 320
UTM 425
UTM 525
UTM 625
Multiple
+ RED
Environment
Small
network
Medium
network
Medium
network
Large
network
Large
network
Large
network
Large
networks
+ branches
Network ports
6 & 2 SFP
10 & 4 SFP
10 & 8 SFP
Multiple
Max.
recommended
firewall users
10/80
300
800
1.500
3.500
5.000
10.000+
Max.
recommended
UTM users
10/35
75
200
600
1.300
2.000
5.000
Software
Appliance *
Virtual
Appliance *
23
WIFI: AP 5/10/30/50
H tr USB 3G: UTM / RED
Chuyn d liu
thnh thng tin
iu chnh chnh
sch t ng
hnh ng
theo thi gian thc
Tt c mi thi im
Management Center
APPLIANCES | VIRTUAL
NEXTGENERATION
FIREWALL
NEXTGENERATION
INTRUSION
PREVENTION
CONTEXTUAL AWARENESS
APPLIANCES | VIRTUAL
ADVANCED
MALWARE
PROTECTION
COLLECTIVE
SECURITY
INTELLIGENCE
Ratings*
99% detection & protection
34Gbps inspected throughput
60M concurrent connections
$15 TCO / protected Mbps
Ratings*
99% protection
10Gbps inspected throughput
15M concurrent connections
$33 TCO / protected Mbps
Leadership*
#1 in detection
Class leader in performance
Class leader for TCO
100% evasion free
NSS Labs, Network IPS 2010 Comparative Test Results, December 2010
NSS Labs, Network IPS Product Analysis Sourcefire 3D8260 v4.10, April 2012
NSS Labs, Next-Generation Firewall Product Analysis Sourcefire October 2012
V d
Sourcefire
NGIPS & NGFW
Typical
IPS
Typical
NGFW
Threats
Attacks, Anomalies
Users
Web Applications
Application Protocols
Client Applications
Network Servers
Operating Systems
Windows, Linux
Cisco, Nortel
Linksys, Netgear
Mobile Devices
iPhone, Android
Printers
VoIP Phones
Avaya, Polycom
Virtual Machines
VMware, Xen
Source: Sourcefire
DC1500
Sourcefire 3D
Appliances
DC750
3D7120
1 Gbps
3D8120
2 Gbps
3D8130
4 Gbps
3D8140
6 Gbps
3D8260 20
Gbps
3D8250 10
Gbps
3D7110
500 Mbps
3D2100
250 Mbps
3D2000 100
Mbps
3D5005
Mbps
3D1000
45 Mbps
Sourcefire
SSL Appliance
TRUSTWAVE SIEM
Security Management
SIEM
Qu nhiu thit b, qu nhiu d liu, nhiu cng c, nhiu bo co, nhiu s kin
Security Management
SIEM
Security Portal
Security Platform
Data
Endpoint Security
powered by
Data
Data
Security Management
SIEM
Log Management
- Thu thp log vi hiu sut cao cho
nhiu thit b
- Lu tr log, nn log
- Thu thp khng cn agent hoc c
agent
Event Management
- Thu thp event vi hiu sut cao cho
nhiu thit b
- Sp xp li s kin thng minh
tm kim nhanh
- Phn tch bng giao din trc quan
Bo co
- Bo co theo chun: PCI, SOX,
HIPAA, ISO 27002
Cnh bo
- nh thi cnh bo hay thit lp
cnh bo khi c im bt thng
Rapid7 Nexpose
Vulnerability, Risk Assessment & Management
Asset Discovery
Pht hin nhng ti nguyn tn ti
trn ton h thng
Risk Prioritization
Chm im cc ri ro, phn loi
theo u tin cn x l
Comprehensive Assessment
nh gi hon chnh v l hng
(Vulnerabilities), li cu hnh
(misconfigurations), vi phm chnh
sch (policy violations) bao gm: h
iu hnh, mng, c s d liu,
ng dng web
Automated Workflow
- T ng nh thi thc hin cc
tc v qut, bo co
- xut phng n x l chi tit
trong bo co
Source: Rapid7
Compliance
So snh, theo di, nh gi s tha
mn chnh sch bo mt vi nhng
chun PCI, HIPAA, NERC, FISMA,
SANS
Rapid7 Nexpose
Vulnerability, Risk Assessment & Management
Bo co v hng x l
Rapid7 Nexpose
Vulnerability, Risk Assessment & Management
Enterprise
Rapid7
SIEM/
Log Mgmt
GRC
IDS/IPS
Network
Topology
Network
Performance Analysis
Cung cp d liu
cho cc h thng
khc
Rapid7 Metasploit
Penetration Testing Solutions
KIM CHNG L HNG BO MT
Validate Security Risks
Kim chng l hng bo mt tht t
Penetration Tests
Kim tra xm nhp nh hacker thc th
Quy trnh t ng kim tra
D tm mt khu
Tn cng dng Social Engineer
Bo co cc l hng b khai thc
Rapid7 Metasploit
Penetration Testing
Quy trnh tn cng
Source: Rapid7
TCH HP H THNG
Chc nng
M t
Public Firewall
Internal Firewall
Wireless Internet Firewall Astaro Security Gateway 525 (Network + Web Security)
Inline IPS
IPS Management
SIEM
Vulnerability Scanner
10
Penetration Testing
METASPLOIT PRO
11
Endpoint Security
HI V P
CHN THNH CM N