mollfrey's picture
From mollfrey rss RSS  subscribe Subscribe

Govind Rammurthy - Securing The Endpoints In Networks - Interop Mumbai 2009 



 
 
 
Tags:  antispam software  interop mumbai  firewall 
Views:  677
Downloads:  4
Published:  December 15, 2009
 
0
download

Share plick with friends Share
save to favorite
Report Abuse Report Abuse
 
Related Plicks
Quick Heal

Quick Heal

From: quickheal
Views: 307 Comments: 0
Choose Quick Heal anti-virus software, the best anti-virus solution that ensures complete virus protection to your business from viruses and other malicious threats also provides solutions against Spam, Spywares, Adwares etc.
 
Quick Heal Technologies wins “Business Today’s Best Innovation SME Award” for the year 2010

Quick Heal Technologies wins “Business Today’s Best Innovation SME Award” for the year 2010

From: quickhealantivirus
Views: 268 Comments: 0
Business Today the leading business magazine from India Today group and YES BANK, the new age Indian private sector Bank, announced the second ‘Business Today SME Awards 2010’ on October 28th, 2010 in New Delhi, India. The award was received by Quic (more)

 
Quick Heal Technologies wins Business Today SME Awards 2010

Quick Heal Technologies wins Business Today SME Awards 2010

From: anon-444200
Views: 122 Comments: 0

 
Engineering Presentation for Careers@Directi

Engineering Presentation for Careers@Directi

From: lisanti
Views: 257 Comments: 0

 
Elina Networks

Elina Networks

From: anon-104403
Views: 438 Comments: 0
Elina Networks
 
See all 
 
More from this user
Mirus Credit Market Update112508

Mirus Credit Market Update112508

From: mollfrey
Views: 441
Comments: 0
Diet To Lose Weight In 10 Days - Overweight And Fedup

Diet To Lose Weight In 10 Days - Overweight And Fedup

From: mollfrey
Views: 174
Comments: 0
12social.com - The Great Facebook Fan Service - Presentation

12social.com - The Great Facebook Fan Service - Presentation

From: mollfrey
Views: 44
Comments: 0
How to buy a domain

How to buy a domain

From: mollfrey
Views: 181
Comments: 0
Risk Management 101

Risk Management 101

From: mollfrey
Views: 55
Comments: 1
Savings price in acer as4551 4315 14-inch notebook computer (mesh-black chassis) price low

Savings price in acer as4551 4315 14-inch notebook computer (mesh-black chassis) price low

From: mollfrey
Views: 205
Comments: 0
See all 
 
 
 URL:          AddThis Social Bookmark Button
Embed Thin Player: (fits in most blogs)
Embed Full Player :
 
 

Name

Email (will NOT be shown to other users)

 
 
 
Comments: (watch)
 
 
Notes:
 
Slide 1: Securing the Endpoints in Networks By Govind Rammurthy CEO & Managing Director
Slide 2: Agenda • • • • • Business Continuity Demands Threat Scenario – Past & Present Endpoints & Endpoint Security Layers of Endpoint Security Endpoint Security Best Practices
Slide 3: Business Continuity Demands • Unified Networks for – Email, Text Chat, Web Browsing, File Sharing, Games – Voice, Audio, Video, Tele-presence, Telemedicine – Web Services, EDI, SCADA, Emergency Services • Users To Enjoy Mobility – Any service from any device on any network – Seamless mobility across devices and networks – Strong but easy user authentication • Reliability and Security of Networks.
Slide 4: Business Continuity Demands • • • • • • Increased Access to Sensitive Information Mission-critical network Mobile and remote devices and users Wide variety of endpoints Wide variety of users: employees, customers, contractors, guests Interoperability
Slide 5: Typical Network Security Scenario Desktops Local Users Mobile Laptops Mobile PDA Email Servers Risks Very High Web or App Servers Home Computer High Medium File Servers Vendors Low Very Low
Slide 6: Typical Network Security Scenario Risks Very High High Medium Low Very Low
Slide 7: Business Continuity Vs Security Statistics on Attack Trends that could lead to Data/Identity Theft. 54% 28% 13% 4% 1% Theft / Loss Insecure Policies Hacking Insider Threats Unknown
Slide 8: Threat Scenario – Past & Present Threats were noisy & visible to everyone Threats are silent & unnoticed with variants Threats were indiscriminate, hit everyone Threats are highly targeted, regionalized Threats were disruptive  impact visible Threats steal data & damage brands  impact unclear Remediation action was technical (“remove”) Remediation more complex, may need to investigate data leak Entry through perimeter and gateway Entry through uneducated network clients and endpoints
Slide 9: Endpoints & Endpoint Security Key Influencers: A. Devices and Storage Mediums A. Portability of Data A. Accessibility A. Compliance Laws & Regulations (HIPAA, SOX, etc.) A. Extranet/Intranet Access provided to employees & partners. B. Network Downtime due to infections
Slide 10: Endpoints & Endpoint Security A. Loss/leak of confidential information A. Losing valuable employees A. Unknown/invisible threats and loss of productivity due to using non-complaint storage mediums A. Unauthorized intrusions – via Web Servers, email Servers, etc. A. Access to internal networks via individual end points B. Loss of Productivity due to Infections
Slide 11: Endpoints & Endpoint Security A. IPODs / Portable Entertainment devices A. Bluetooth Cell Phones A. Wireless LAN A. USB Devices A. Open Non-authenticated Mail/Proxy Servers A. Lack of defined employee security policies A. Authorized Applications
Slide 12: Endpoints & Endpoint Security Endpoint Security Is Mission Critical Key Data to be Protected • Data in Motion • Emails • Instant Messaging • P2P • File Transfers • Web Posts • Blogs • Data at Rest • Laptops/Desktops/File Servers • USB
Slide 13: Endpoints & Endpoint Security Reducing Threat Exposure Information Protection & Control • Data in Motion • Data in Rest Asset Protection & Control • Asset management • Desktop computing support • Application Control • Security Incident Alerts/logs • Policy Implementation & Oversight • NAC/NAP
Slide 14: Endpoints & Endpoint Security • Endpoint management costs are increasing – – Cost of downtime impacts both productivity and revenue Costs to acquire, manage and administer point products are increasing, as well as the demand on system resources Complexity and man power to manage disparate endpoint protection technologies are inefficient and time consuming Stealth-based and silent attacks are increasing, so there is a need for anti-virus to do much more • Complexity is increasing as well – • Growing number of new known and unknown threats – • The Perfect Endpoint Security system is with a Centrally Managed Client Security Solution. Some of the Major Technology based threats – Bluesnarfing - Using Bluetooth – – – Podslurping – Using iPods Thumbsucking – Using Thumb Drives Zero-day threats – New and evolving threats
Slide 15: Layers of Endpoint Security Network Access Control / Network Access Protection Device Control Intrusion Prevention Firewall Antispam / Antiphising Web Protection AntiVirus / Antispyware
Slide 16: Layers of Endpoint Security AntiVirus / Antispyware • Real-Time AV Scanning • Spyware, Adware, Keylogger, & Rootkit Blocker • Suspicious Application Detection • Registry Monitoring • Protection against web based threats • Protection against email based threats • Spyware and rootkit detection and removal • Ability to safely remove infections & restore system files effectively Detect, prevent and remove malicious code & Vulnerability-based protection
Slide 17: Layers of Endpoint Security Web Protection • Web/FTP/CHAT Scanning • Domain and IP reputation based checker • Block websites with restricted words • Block web content (Multi-Media & Applications) • Block web applets, Cookies, Scripts • Block Pop-Ups • Browser Cleanup
Slide 18: Layers of Endpoint Security Antispam / Antiphising • Real-Time Antispam filter • Sender reputation checker • Antiphising filter • Attachment Control
Slide 19: Layers of Endpoint Security Firewall • • • Managed desktop firewall Adaptive policies allowing for location awareness Network, port, protocol, and application control
Slide 20: Layers of Endpoint Security Intrusion Prevention • • • Behavior-based prevention Network traffic inspection Application inspection
Slide 21: Layers of Endpoint Security Device Control • • Device control to prevent data leakage at the endpoint Protection against mp3 players, USB drives, etc.
Slide 22: Layers of Endpoint Security Network Access Control / Network Access Protection Control Access – to critical resources – to entire network Based on – User identity and role – Endpoint identity and health – Other factors With – Remediation – Management
Slide 23: Endpoint Security Best Practices 1. 2. 3. 4. 5. 6. 7. 8. Inventory all IT resources Group resources into levels of sensitivity Define end user access scenarios Associate end user access scenarios with levels of sensitivity Validate the policies with a select group using event logging Roll policies into full production User must Be authenticated 1. With Identity Management System • • • • 9. • Anti-Virus software running and properly configured Recent scan shows no malware Personal Firewall running and properly configured Patches up-to-date No port scanning, sending spam Endpoint Must Be Healthy Behavior Must Be Acceptable
Slide 24: Any Questions and Queries?
Slide 25: THANK YOU!!!

   
Time on Slide Time on Plick
Slides per Visit Slide Views Views by Location