|
|
| |
|
For
more information please call 800-745-0602 |
| |
|
  |
Host-Based
Intrusion Detection and Security Policy Management |
Symantec
Host IDS provides real-time monitoring, detection,
and prevention of security breaches, delivering
automated policy enforcement and incident response
for servers, applications, and data. As a complement
to firewalls and other access controls, it enables
administrators to develop proactive policies to
stop hackers or authorized users with malicious
intent from misusing systems.
| Highlights |
- Monitors
systems in real time to detect and respond
to security breaches and other unauthorized
activities
- New!
Process Reporter provides access to granular
process data so administrators can make informed
decisions regarding server security
- New!
Process Monitor allows administrators to define
a wide variety of security configurations
to provide a fault-tolerant, secure environment
tailored to the organization's security policy
- New!
Process Blocker restricts server abilities
and protects against malicious processes through
administrator defined responses
- Enables
the creation of customizable host-based intrusion
protection policies and responses
- Centralized
management tools simplify the monitoring and
enforcement of host intrusion protection security
policies
- Integrates
with the Symantec Security Management System
to deliver enhanced prioritization, identification,
containment, and removal of security threats
- Provides
audit data for incident and forensic analyses
and generates graphical reports of host intrusion
activity
- New!
Intuitive, Java-based policy editor simplifies
the development and deployment of policies
for the Symantec Host IDS sensors/agents
- Platform
support for Windows 2000, Windows NT 4.0,
Windows XP, and Sun Solaris 8 and 9
- Backed
by Symantec Security Response, the world's
leading Internet security research and support
organization
|
New process management capabilities combine multiple
intrusion prevention technology functions, including
process reporting, monitoring, and blocking. Process
Reporter provides access to granular process data
so administrators can make rapid, informed decisions
regarding server security. Process Monitor allows
administrators to define a wide variety of security
configurations to provide a fault-tolerant, secure
environment. Process Blocker allows administrators
to restrict server capabilities through defined
policies to prevent malicious activity. These technologies
provide an efficient and non-intrusive intrusion
protection solution to stop threats such as buffer
overflow attacks.
Symantec Host IDS is highly scalable and easily
managed from a single administrative console. Administrators
can create and deploy monitoring and response policies,
collect and archive audit logs for incident analysis
and reporting, and automatically receive the latest
intrusion signatures through a centralized management
console. And the solution includes specialized software
agents that support a variety of server platforms.
To lower the cost of ownership, Symantec Host IDS
integrates with the Symantec Security Management
System, a management framework that provides consolidated
data collection, logging, and reporting for Symantec
and select third-party products. With Symantec Security
Management System, administrators can view security
alerts and manage incident response for a range
of security products across the enterprise.
|
|
|
