( 30 )
↓
application delivery behavior blue coat bluecoat code green data loss prevention deep packet inspection distributed traffic capture dlp dpi gartner it security lancope magic quadrant netflow network behaviour network intelligence optimization network monitoring network security network visibility packetshaper procera proxy proxyav proxysg sonicwall st.bernard stbernard stealthwatch traffic management vss monitoring wan optimization web control web filter web security webcontrol websense - - ; ;stbernard
NetFlow . |
|
Verizon (Verizon Data Breach Investigations Report), 14% . , , 76% , , 29% - . , .
, , , , , , . , . , . , .
, , SIEM, IDS/IPS, NetFlow , . .
NetFlow
, NetFlow , . NetFlow , , , email , ( ).
Lancope’s StealthWatch System, NetFlow- , , , . Lancope , , .
- . StealthWatch. ( IT, HR ), NetFlow .
: netflow stealthwatch lancope |
, Verizon |
|
Verizon Data Breach Investigations Report. , 47 . 621 , , -. , , . Lancope .
, 14% 19% , . . , . (, , APT) , , . 76% , Verizon, , 29% . , 95% - . , , ( APT) - , , .
Verizon, " , . , ".
Verizon NetFlow, " ". NetFlow , Lancope StealthWatch, , - , , .
Forrester, , Verizon, , Lancope, " ", . Forrester , " . , , , . , , ". , Lancope, .
, Verizon - . , 66% , ( ), , . , , , .
, NetFlow -, Lancope "Internal Network Visibility for APTs and Insider Threats".
|
DDoS. ? |
|
" " (distributed denial-of-service, DDoS) 1999 ; trin00, . , : , . , DDoS.
DDoS .
DDoS- , . , , , .
, . , , . DDoS-. , , .
, Lancope StealthWatch. "" ( ) , . StealthWatch , DDoS:
DDoS - , , . . DDoS - , . DDoS , , , , , , , " ".
: DDoS DoS lancope StealthWatch netflow |
Lancope |
|
: lancope stealthwatch |
Gartner 2012 . |
|
(2012 .) Gartner 85% . , , . , , 92% . , , , .
-
, , ?
: netflow network behavior stealthwatch lancope |
? |
|
. , , . -, , , , - . , . - ...
, :
, "", , .. . , . : http://www.lancope.com/solutions/security-operations/.
: dlp netflow lancope |
5 NetFlow- |
|
. 5 , NetFlow:
5) . , 20 , . NetFlow IPFIX , , . , , , 100 . , NetFlow.
4) . (Intrusion Protection Systems, IPS) , . Zero-Trust malware, . . IP- Internet Reputation - .
3) . . , , , , . , , , . , , , .
2) . NetFlow IPFIX , syslogs . syslog , IP- , , . (Mean Time To Know, MTTK) , , URL, .
1) . NetFlow- IPFIX- . , , , , . Enterasys Mobile IAM Cisco ISE , StealthWatch. (BYOD), , .
: web security web control webcontrol lancope stealthwatch |
259%? Lancope StealthWatch |
|
Lancope , StealthWatch (ROI) 259% , Forrester Consulting \" Lancope StealthWatch\", 2012 . , StealthWatch 10 .
StealthWatch, , :
19 Lancope , . : http://www.lancope.com/news-events/webinars/achieving-259-roi-with-stealthwatch/.
: http://www.lancope.com/resource-center/industry-re...-economic-impact-stealthwatch/
|
Lancope StealthWatch " " |
|
Lancope , StealthWatch , , , command-and-control (CnC) .
- .
Cisco Cyber Threat Defence. , Lancope Cisco, . NetFlow, IPFIX , StealthWatch , . .
, , StealthWatch Management Console, . :
.
: Cisco Cyber Threat Defence netflow stealthwatch lancope |
ROI NetFlow |
|
, NetFlow , . , , , - - , , "".
, , . , NetFlow IPFIX . StealthWatch " " , , . , Gartner , NetFlow , 80%- . , " , , () , ".
Lancope (ROI, Return on Investment), StealthWatch. , :
: lancope stealthwatch roi monitoring gartner |
IPFIX vs. NetFlow. ? |
|
NetFlow v5 , NetFlow v9 , Flexible NetFlow , ..., flexible, IPFIX NetFlow?
IPFIX. :
... , , . , , IPFIX.
. ...
|
: ? |
|
: netflow network monitoring network security lancope stealthwatch netwok behaviour analysis |
Lancope , |
|
Lancope , StealthWatch , , .. bring-your-own-device (BYOD).
, , StealthWatch , .
, , IDS/IPS BYOD. , StealthWatch NetFlow , , .
" , , , - (Joe Yeager), - Lancope. - " 75% , , StealthWatch, , ".
, , IDS/IPS BYOD. , StealthWatch NetFlow , , .
, StealthWatch , , . , , , , , , . , .
Lancope Web Control.
: lancope netflow BYOD network security network monitoring |
Lancope " NetFlow " |
|
(best practices) .
"The State of NetFlow: Advancing Security and Performance through Network Visibility" Lancope, NetFlow . , , . : http://www.lancope.com/resource-center/industry-reports/state-of-netf....
... (http://www.lancope.com/news-events/press-releases/...-network-security-performance/).
: lancope netflow network security |
5 2012 Lancope |
|
2012 , . , , . 2011 - WikiLeaks Anonymous LulzSec. , .
Lancope 2012 - :
1. (Advanced persistent threats, APTs) .
2. .
3. .
4. , , .
5. .
...
|
Lancope StealthWatch GSN: Government Security News |
|
NetFlow . GSN Homeland Security Awards , , . Lancope StealthWatch , , . …
|
TAP, NetFlow? . |
|
, TAP (Test Access Port) . , IDS . NetOptics , AppTap. AppTap , TAP: inline, Ethernet Cat-5, .
AppTap . TAP , -. ...
|
NetFlow WAN |
|
NetFlow WAN. NetFlow / , .
, . NetFlow . , WAN, .
, WAN, ?
, , 50% -, DSCP -.
...
|
SonicWall NetFlow/IPFIX SonicOS v.5.8 |
|
NetFlow . , SonicWall NetFlow v5/v9/IPFIX SonicOS Enhanced v5.8.
Lancope - . SonicWall, SonicOS v5.8, StealthWatch . ...
SonicWall .
...
|
: Lancope StealthWatch 6.0 |
|
Lancope StealthWatch 6.0 - , . NetFlow , Lancope .
Lancope, Cisco Systems, Grafisch Lyceum Rotterdam (GLR) Concord Hospital, - StealthWatch 6.0.
"NetFlow - , - (Steve Mcowen), Cisco Systems. - Lancope NetFlow, -. , StealthWatch 6.0 ".
StealthWatch - :
StealthWatch , , 1,5 . . , , , " " , . StealthWatch , , , , , HelpDesk (Change Management).
Lancope Web Control.
StealthWatch 6.0 http://www.lancope.com/files/Lancope_StealthWatch_What's_New_in_6.0.pdf "Application Performance Monitoring with NetFlow" http://www.lancope.com/news-events/webinars/.
|
: | [2] 1 |