ADVANCED 6.5
Advanced protection and hardening for advanced threats.
Data Sheet: Security Management
Symantec Data Center Security: Server Advanced 6.5
Solution Over Solution Overviewview
Symantec™ Data Center Security: Server Advanced enables organizations to secure and harden their physical and virtual servers, as well as secure and continuously monitor the security and compliance posture of their on-premise, public, and private cloud data centers.
Symantec Data Center Security: Server Advanced 6.5 introduces hardening of OpenStack Keystone. Keystone is an OpenStack project that provides identity, token, catalog and policy services for use specifically by projects in the
OpenStack family. Keystone implements the OpenStack identity API. It provides a central directory of users mapped to the OpenStack services they can access and a common authentication system across the cloud operating system. Keystone integrates with existing backend directory services like LDAP and supports multiple authentication mechanisms including standard user name and password credentials, token-based systems, and AWS log-ins. The catalog also provides a single registry of all the services deployed in the OpenStack cloud that users and third-party tools can query to determine the resources they can access. (Source: http://docs.openstack.org/developer/keystone/#)
Customers of Symantec Data Center Security: Server Advanced 6.5 also gain access to the new and standard features delivered in:
• Data Center Security: Monitoring Edition 6.5 such as security monitoring of physical and virtual servers, as well as AWS and all modules of OpenStack.
• Data Center Security: Server 6.5 such as agentless network IPS, automated policy-based security orchestration and provisioning via Operations Director, and the Unified Management Console (UMC).
For more information, see:
• Symantec Data Center Security: Server 6.5 DataSheet
• Symantec Data Center Security : Monitoring Edition 6.5 Datasheet
Symantec Data Center Security: Server Advanced 6.5 enables enterprises to migrate securely to software-defined data centers, and consistently manage security across their physical and virtual environments, and across their on-premise, public, and private cloud environments.
Wh
Why Sy Symantec Data Center Securitymantec Data Center Security: Sery: Server Advver Advanced 6.5?anced 6.5?
Symantec Data Center Security: Server Advanced is a good fit for your organization if your team is asking any of the questions below:
• How do I protect and harden my heterogeneous virtual and physical server environments?
• How do I secure my OpenStack Keystone implementation?
• How can I protect and harden critical applications running on legacy and end-of-life (EOL) platforms?
• How can I effectively deliver security while migrating off EOL server platforms?
• How do I secure my organization’s critical server infrastructure against zero-day threats and new vulnerabilities?
• How do I effectively execute and monitor application- and instance-level security in my organization’s AWS and Openstack cloud deployments?
• How do I quickly provision application-centric security hardening for newly created physical and virtual workloads?
• How do I embed security provisioning and hardening into my organization's IT processes?
What’s New in S
What’s New in Symantec Data Center Securitymantec Data Center Security: Sery: Server Advver Advanced?anced?
• Enhanced IDS including the ability to:
– Monitor and harden OpenStack servers.
– Monitor extended file attributes and Access Control List (ACL) changes
– Enable real-time File Integrity Monitoring (RT-FIM) support for Veritas File Systems (VxFS) – Support Windows and Linux agents on AWS Virtual systems
– Enable security-Enhanced Linux (SELinux)/AppArmor – Support Red Hat Enterprise Linux 7.0
• Enhanced IPS including:
– Application Centric Hardening (database schema changes)
– Linux Apache MySQL PHP (LAMP) support on UNIX (new sandboxes for MySQL and PHP in Unix policy)
– Upgraded third-party components(OpenSSL, cURL, FIPSOPENSSL) – Prevention policy now supports no run exception list
– Execution of files with non-executable extensions is blocked – Red Hat Enterprise Linux 7.0 and CentOS 7 support
– ACL changes on Windows and UNIX
• Features and capabilities delivered in Data Center Security: Monitoring Edition 6.5 such as:
– Security monitoring of OpenStack Data Centers
– Expanded platform support to KVM, Ubuntu, and RHEL.
– Security Monitoring across physical and virtual servers including:
◦ Real-time file integrity monitoring
◦ Configuration Monitoring
◦ Consolidated Event Logging
◦ File and System Tamper Prevention
• Features and capabilities available in Symantec™ Data Center Security: Server 6.5 including:
– Agentless antimalware, agentless network IPS and file reputation services.
– Auto-deployment and provision of Security Virtual Appliance to ESX host in a cluster.
– Network based threat detection and protection (Network IPS).
– Operations Director to automate and orchestrate security provisioning for newly created workloads.
– Unified Management Console (UMC) delivers a consistent management experience across Data Center Security products.
• KVM, Ubuntu, RHEL support.
• Support for NSX 6.1.2 and vSphere 5.5 U2.
DataCenter Securit
DataCenter Security: Sery: Server Advver Advanced does noanced does not require VMware NSXt require VMware NSX
SSymantec Data Center Securitymantec Data Center Security: Sery: Server Advver Advanced Standard Fanced Standard Featureseatures
• Out of the BoOut of the Box Hox Hosst IDt IDS and IPS PS and IPS Policies:olicies: Prebuilt policies for Windows® environments that will monitor and prevent suspicious server activity.
• SandboSandboxing and Process Access Control (Pxing and Process Access Control (PAACC):): Prevention against a new class of threats utilizing comprehensive IPS protection.
• HoHosst Firewall:t Firewall: Control inbound and outbound network traffic to and from servers.
• Compensating HIPS Controls:Compensating HIPS Controls: Restrict application and operating system behavior using policy-based least privilege access control.
• File and SFile and Sysystem Ttem Tamper Prevention:amper Prevention: Lock down configuration, settings, and files.
• Application and Device Control:Application and Device Control: Lock down configuration settings, file systems, and use of removable media.
Cus
Customer Benefitstomer Benefits
• Protect server from zero day attacks including an added ability to integrate Data Center Security: Server Advanced into the customer’s data center toolset to quickly deploy additional monitoring and targeted hardening to applicable servers via REST APIs.
• Unbreakable. Data Center Security: Server Advanced remains unbreakable in the two years that Symantec ran the
“Capture the Flag” hacking challenge at the annual Black Hat Conference in Las Vegas, NV.
• Secure unpatched applications and systems running on legacy and End-of-life platforms.
• Virtualization-technology agnostic and broad platform support means that customers can secure workloads regardless of where it resides and can protect entire data centers including legacy systems that cannot be patched.
• Monitor and protect physical and virtual data centers using a combination of host-based intrusion detection (HIDS), intrusion prevention (HIPS), and least privilege access control. Fully instrumented REST API provides corresponding API for all console activities to enable full internal and external Cloud automation.
• Enable the secure migration and operationally cost-efficient migration from end-of-life platforms.
• Mitigate patching for new and legacy systems
• Enable application and instance level security for public and hybrid cloud deployments
• Gain continuous monitoring of data center infrastructure for cybersecurity and compliance.
Over
Overview of Sview of Symantec™ymantec™ Data Center SecuritData Center Security Solutionsy Solutions
Symantec™ Data Center Security enables organizations to harden their physical and virtual servers, securely transition into software-defined data centers, and enable application-centric security across their public, private and private cloud environments.
The S
The Symantec™ Data Center Securitymantec™ Data Center Security Product family includes:y Product family includes:
SSymantec™ Data Center Securitymantec™ Data Center Security: Sery: Serverver delivers friction-less threat protection with agentless anti-malware, network based IPS and file reputation services for the VmWare environments. It supports in-guest quarantine feature to isolate suspected malware files and remediate based on policy. Symantec™™ Data Center Security: Server auto-delivers Security Virtual Appliances (SVA) that scales out, resulting in huge savings in OpEx costs.
SSymantec™ Data Center Securitymantec™ Data Center Security: Monitoring Ey: Monitoring Editiondition enables organizations to continuously monitor the security and compliance posture of its physical and virtual infrastructure, as well as its public (AWS) and private (OpenStack) clouds. It combines agent-less malicious code protection along with the IPS/IDS monitoring, file integrity monitoring, and
configuration monitoring. This product is intended to enable customers automate and centralize their security operations and compliance monitoring and reporting objectives.
SSymantec™ Data Center Securitymantec™ Data Center Security: Sery: Server Advver Advancedanced delivers security detection, monitoring, and prevention capabilities for both physical and virtual server infrastructures. In addition to delivering agentless antimalware protection and security monitoring for virtual and physical infrastructures and across the AWS and OpenStack clouds, Symantec™™ Data Center Security: Server Advanced protects both physical and virtual servers by delivering application and protected whitelisting, fine-grained intrusion detection and prevention; file, system and admin lockdown; and file integrity and configuration monitoring. It also supports full hardening of OpenStack Keystone.
SSymantec™ Control Compliance Suiteymantec™ Control Compliance Suite enables asset and network autodiscovery, automates security assessments and calculates and aggregates the CVSS/CIS risk scores. Customers use Control Compliance Suite to enable basic security hygiene, and gain visibility into their security, compliance, and risk postures. Customers use this intelligence to prioritize remediation and optimize security resource allocation.
SSymantec™ymantec™ ProProtection Enginetection Engine delivers content scanning, antimalware, outbreak detection, anti-spam, insight and
reputation services, and granular content filtering technologies for various types of data stores such as cloud storage, NAS, email, and AWS. Out-of-the-box support is available for NetApp NAS, Microsoft Exchange, and Sharepoint Data Stores, and a robust SDK enables custom integration for other data stores.
More Information Visit our website
http://enterprise.symantec.com
To speak with a Product Specialist in the U.S.
Call toll-free 1 (800) 745 6054
To speak with a Product Specialist outside the U.S.
For specific country offices and contact numbers, please visit our website.
About Symantec
Symantec Corporation (NASDAQ: SYMC) is an information protection expert that helps people, businesses, and
governments seeking the freedom to unlock the opportunities technology brings—anytime, anywhere. Founded in April 1982, Symantec, a Fortune 500 company operating one of the largest global data intelligence networks, has provided leading security, backup, and availability solutions for where vital information is stored, accessed, and shared. The company's more than 20,000 employees reside in more than 50 countries. Ninety-nine percent of Fortune 500 companies are Symantec customers. In fiscal 2014, it recorded revenue of $6.7 billion. To learn more go towww.symantec.comor connect with Symantec at:go.symantec.com/socialmedia.
Symantec World Headquarters 350 Ellis St.
Mountain View, CA 94043 USA +1 (650) 527 8000
1 (800) 721 3934 www.symantec.com
Copyright © 2015 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, and the Checkmark Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.
