-

   Web_Control

 - e-mail

 

 -

 LiveInternet.ru:
: 02.07.2010
:
:
: 84

:

(0)

NetFlow .

, 10 2013 . 10:27 +

Verizon (Verizon Data Breach Investigations Report), 14% . , , 76% , , 29% - . , .


, , , , , , . , . , . , .
, , SIEM, IDS/IPS, NetFlow , . .

NetFlow
, NetFlow , . NetFlow , , , email , ( ).

3867803_InsiderThreatGTRI (700x525, 41Kb) Lancope’s StealthWatch System, NetFlow- , , , . Lancope , , .
3867803_Picture1 (700x495, 39Kb)

- . StealthWatch. ( IT, HR ), NetFlow .


:  
(0)

, Verizon

, 18 2013 . 13:10 +

Verizon   Data Breach Investigations Report. , 47 . 621 , , -. , , . Lancope .

APT (Advanced Persistent Threats)

, 14% 19% , . . ,   . (, , APT) , , . 76% , Verizon, , 29% . , 95% - . ,  , ( APT) - , , .


Verizon, " , . , ".
Verizon NetFlow, " ". NetFlow , Lancope StealthWatch, , - , , .

verizon_report_1

-

Forrester, , Verizon, , Lancope, " ", . Forrester , " . , , , . , , ". , Lancope, .
, Verizon - . , 66% , ( ), , . , , , .

verizon_report_2.jpg
, , , (: Verizon).


, NetFlow -, Lancope "Internal Network Visibility for APTs and Insider Threats".

: http://web-control.livejournal.com/25748.html


:  
(0)

DDoS. ?

, 23 2013 . 23:06 +

" " (distributed denial-of-service, DDoS) 1999 ; trin00, . , : , . , DDoS.

DDoS

DDoS .


  • -, , . , . , - , . DDoS , . , . DDoS. , , .

  • DDoS , . IP-. , . , (spoofing), .

  • : , , DDoS. , , , , . , , "", "". , - .

DDoS- , . , , , .
, . , , . DDoS-. , , .

, Lancope StealthWatch. "" ( ) , . StealthWatch , DDoS:


  • . , , . , .

  • . FlowSensor FlowSensor VE, StealthWatch , - .

  • . StealthWatch , .

  • . , .

  • . . , StealthWatch .

  • SYN. "" TCP SYN, .

  • . HTTP-, , -, , DDoS .

  • . - . " ". StealthWatch .

  • High Concern Index. Lancope, , () , . "" High Concern Index, , , .

  • . , , StealthWatch , .

DDoS - , , . . DDoS - , . DDoS , , , , , , , " ".


:  
(0)

Lancope

, 16 2013 . 13:13 +
Lancope , - StealthWatch Labs Intelligence Center™ (SLIC) Threat Feed, (malware). SLIC Threat Feed , . StealthWatch , .
" , , , .. - , - (Joe Yeager), Lancope. - C StealthWatch, , ".
StealthWatch Labs Intelligence Center (SLIC) - Lancope, - , StealthWatch. StealthWatch Labs , , .

:  
(0)

Gartner 2012 .

, 29 2013 . 12:33 +

  /3867803_greatwall1 (600x450, 102Kb) (2012 .) Gartner 85% . , , . , , 92% . , , , .

, " " zero-day, Symantec Research , , , 312 , 30 . , .

 

, , , . 2000 2005 (Intrusion Detection Systems, IDS). " " . , IDS, , , . , , , , .

/3867803_anonimous (640x480, 26Kb)

-

IDS , (Intrusion Prevention Systems, IPS), . , , . , IPS , , . - , "" . "" . Gartner, "" 4 1.

 

-, , . , .

 

, , , . , , , . , , , . , , . - , , .

 

, , ?

, Gartner, , , . , , .

 

, :
  • P2P- Onion Routing- ?
  • -?
  • , ?
  • ?
, . , , . : , ?

 

, , , . . , . , , , , . , . , . , () .

 

, "", . , . , , - , , , , . , . .. .

 

IDS , . ( ).
: " , , " " , ". "" , , , . , " ".
, , , . , , , () . - .

 

"" . , "", . , : " , ?". , , Lancope StealthWatch, .

:  
(0)

?

, 23 2013 . 20:40 +

. , , . -, , , , - . , . - ...
, :

  • . , "" , "" , .
  • " " . , , , .
  • . IT- " " " " , - . "" .
  • . , , , Syslog, NetFlow .
  • IT . , IT, HR, . " " , .

, "", , .. . , . : http://www.lancope.com/solutions/security-operations/.


:  
(0)

5 NetFlow-

, 27 2012 . 13:41 +

. 5 , NetFlow:
5) . , 20 , . NetFlow IPFIX , , . , , , 100 . , NetFlow.
4) . (Intrusion Protection Systems, IPS) , . Zero-Trust malware, . . IP- Internet Reputation - .
3) . . , , , , . , , , . , , , .
2) . NetFlow IPFIX , syslogs . syslog , IP- , , . (Mean Time To Know, MTTK) , , URL, .
1) . NetFlow- IPFIX- . , , , , . Enterasys Mobile IAM Cisco ISE , StealthWatch. (BYOD), , .


:  
(0)

259%? Lancope StealthWatch

, 08 2012 . 20:39 +

Lancope , StealthWatch (ROI) 259% , Forrester Consulting \" Lancope StealthWatch\", 2012 . , StealthWatch 10 .
StealthWatch, , :

  • ,
  • help desk tier-one tier-three
  • .

19 Lancope , . : http://www.lancope.com/news-events/webinars/achieving-259-roi-with-stealthwatch/.
: http://www.lancope.com/resource-center/industry-re...-economic-impact-stealthwatch/


:  
(0)

Lancope StealthWatch " "

, 21 2012 . 19:30 +

Lancope , StealthWatch , , , command-and-control (CnC) .
- .
Cisco Cyber Threat Defence. , Lancope Cisco, . NetFlow, IPFIX , StealthWatch , . .
, , StealthWatch Management Console, . :

  • - , -
  • - , , " " .
  • command-and-control -
  • "" - , command-and-control

.


:  
(0)

ROI NetFlow

, 27 2012 . 21:27 +

, NetFlow , . , , , - - , , "".
, , .  , NetFlow IPFIX . StealthWatch " " , , . , Gartner , NetFlow , 80%- . , " , , () , ". 
Lancope (ROI, Return on Investment), StealthWatch. , :

  • (The Naval Postgraduate School) 10 , 90 / 900 /.
  • (Dartmouth College) 90%.
  • Aurora Health Care , .  
  • Puget Sound Blood Center 22680 USD, .
  • Grafisch Lyceum 75% .

.


:  
(0)

IPFIX vs. NetFlow. ?

, 16 2012 . 13:49 +

NetFlow v5 , NetFlow v9 , Flexible NetFlow , ..., flexible, IPFIX NetFlow?
IPFIX. :

  • Juniper
  • Lancope
  • Nortel
  • SonicWALL
  • Extreme
  • NTOP
  • Plixer

... , , . , , IPFIX.
.   ...


:  
(0)

: ?

, 14 2012 . 12:48 +

. , , , . , , , . ? NetFlow - Lancope StealthWatch.

, 20% ? , P2P, , , .

, ( ), ? .

, . ...


:  
(0)

Lancope ,

, 08 2012 . 20:51 +

Lancope , StealthWatch , , .. bring-your-own-device (BYOD).
, , StealthWatch , .
, , IDS/IPS BYOD. , StealthWatch NetFlow , , .
" , , , - (Joe Yeager), - Lancope. - " 75% , , StealthWatch, , ".
, , IDS/IPS BYOD. , StealthWatch NetFlow , , .
, StealthWatch , , . , , , , , , . , .

Lancope Web Control.


:  
(0)

Lancope " NetFlow "

, 27 2012 . 22:40 +

(best practices) .
"The State of NetFlow: Advancing Security and Performance through Network Visibility" Lancope, NetFlow . , , . : http://www.lancope.com/resource-center/industry-reports/state-of-netf....
... (http://www.lancope.com/news-events/press-releases/...-network-security-performance/).


:  
(0)

5 2012 Lancope

, 17 2011 . 21:32 +

2012 , . , , . 2011 - WikiLeaks Anonymous LulzSec. , .

Lancope 2012 - :
1. (Advanced persistent threats, APTs) .
2. .
3. .
4. , , .
5. .

...


:  
(0)

Lancope StealthWatch GSN: Government Security News

, 17 2011 . 21:30 +

NetFlow . GSN Homeland Security Awards , , .  Lancope StealthWatch , , .


:  
(0)

TAP, NetFlow? .

, 01 2011 . 12:50 +

, TAP (Test Access Port) . , IDS . NetOptics , AppTap. AppTap , TAP: inline, Ethernet Cat-5, .

AppTap . TAP , -. ...
 


:  
(0)

NetFlow WAN

, 01 2011 . 12:49 +

NetFlow WAN. NetFlow / , .

, . NetFlow . , WAN, .

, WAN, ?

, , 50% -, DSCP -.
...
 


:  
(0)

SonicWall NetFlow/IPFIX SonicOS v.5.8

, 01 2011 . 12:44 +

NetFlow . , SonicWall NetFlow v5/v9/IPFIX SonicOS Enhanced v5.8.

Lancope - . SonicWall, SonicOS v5.8, StealthWatch . ...

SonicWall .
 ...


:  
(0)

: Lancope StealthWatch 6.0

, 09 2011 . 17:58 +

Lancope StealthWatch 6.0 - , . NetFlow , Lancope .

Lancope, Cisco Systems, Grafisch Lyceum Rotterdam (GLR) Concord Hospital, - StealthWatch 6.0.

"NetFlow - , - (Steve Mcowen), Cisco Systems. - Lancope NetFlow, -. , StealthWatch 6.0 ".

StealthWatch - :

  • (deep packet inspection), .
  • , .
  • , .
  • , .
  •  

StealthWatch , , 1,5 . . , , , " " , . StealthWatch , , , , , HelpDesk (Change Management).
Lancope Web Control.

StealthWatch 6.0 http://www.lancope.com/files/Lancope_StealthWatch_What's_New_in_6.0.pdf "Application Performance Monitoring with NetFlow" http://www.lancope.com/news-events/webinars/.
 


:  

 : [2] 1