Are you looking for my non-technical blog?

This is now my technical-only blog, my non-technical blog is here.

10 January 2008

End Point Security

So, it it enough to have some Firewalls, UTM's, and IPS's in the different locations of your network to be secured? What about Removable Storage Drives such as Flash Memories and CD's? Isn't it possible for Viruses to got into your PC after copying a file from Flash Memory Drive, even if you are having the most powerful UTM on your network gateway? What about encrypted traffic? How can the gateway security device inspect such traffic when it is encrypted?

That's why, most of the Security Experts believe in Defence in Depth, and Layered Security Approach. It's not enough to have one layer of security to be secured.

The End Point Security in its simplest form is the Antivirus Software you have on your PC. However viruses are not everything, you still need softwares to fight Worms, Spywares, etc. Most of the Security Vendors now a days are moving towards Integrated Threat Management Agents, which are Agents that include a Desktop Firewall, Host-Based IPS, Antivirus, Antispyware, etc.

A Firewall is a single device installed in the network and the IT or Security Administrator can manage it easily and add whatever policies or rules he wants there. But when it comes to Desktop Firewalls, you are having softwares installed on every host, each is responsible of protecting such host. And for sure not all the users are aware of the Security Requirements and the Managers and CXO's do not have time to configure their End Point Security Agents. And that's why most of the Security Vendors have their own Centralized Management that can configure those distributed agents and capable of pushing security updates to them.

Here you are a list of some End Point Security Vendors:
McAfee, Total Protection for Enterprise.
Symantec, Endpoint Security.
CA, Threat Management.

Tags: , , , , , ,