Professional Documents
Culture Documents
10/5/2012
Hybrid Cloud
Public Cloud
Hybrid Cloud
Assets are moved
between private and
public clouds
Public Cloud
Cloud assets are hosted
by one or more service
providers
10/5/2012
Private Cloud
Hybrid Cloud
Public Cloud
10/5/2012
Virtualization &
Private Cloud
Public Cloud
IaaS
End-User (Enterprise)
Public Cloud
PaaS
Public Cloud
SaaS
Service Provider
10/5/2012
3:00am Scan
Security Storm
10/5/2012
Active
Reactivated with
Dormant
out dated security
Cloned
10/5/2012
10/5/2012
Reconfiguring
agents
Rollout
patterns
Patch
agents
10/5/2012
Medical
ATM, POS
Other
8
2009/
2010
10/5/2012
Cost of refresh
Compliance restrictions
Service Level Agreements
Next?
10
Windows (2000, XP, 2003, Vista, 2008, 7), Sun Solaris (8, 9, 10), Red Hat EL (4, 5), SuSE
Linux (10,11)
Database servers
Mail servers
Microsoft Exchange Server, Merak, IBM Lotus Domino, Mdaemon, Ipswitch, IMail,,
MailEnable Professional,
FTP servers
Backup servers
Symantec, Veritas
DHCP servers
ISC DHCPD
Desktop applications
Microsoft (Office, Visual Studio, Visual Basic, Access, Visio, Publisher, Excel Viewer,
Windows Media Player), Kodak Image Viewer, Adobe Acrobat Reader, Apple Quicktime,
RealNetworks RealPlayer
Mail clients
Outlook Express, MS Outlook, Windows Vista Mail, IBM Lotus Notes, Ipswitch IMail Client
Web browsers
Anti-virus
Other applications
Samba, IBM Websphere, IBM Lotus Domino Web Access, X.Org, X Font Server prior,
Rsync, OpenSSL, Novell Client
11
12
Firewall
Anti-Virus
Web Reputation
Integrity
Monitoring
Log
Inspection
Virtual Servers
Cloud
13
(1.)
Network Segmentation
(1.x)
Firewall
(5.x)
Anti-virus
(6.1)
Virtual Patching*
(6.6)
AntiMalware
Firewall
Log
Inspection
Integrity
Monitoring
Physical
Servers
10/5/2012
Virtual
Servers
Cloud
Computing
Endpoints
& Devices
14
Deep Security
Manager
Trend Micro
Network Security
Security
Admin
IDS/IPS
Web App Protection
Application Control
Firewall
APPs
APPs
OS
APPs
Integrity Monitoring
On-Demand Scans
Kernel
OS
BIOS
vShield Endpoint
API
VMsafe-net
API
vShield Manager
VI
Admin
vCenter
Legend
10/5/2012
Trend Micro
filter driver
VMware Tools
vShield Endpoint
ESX Module
Trend Micro
product
components
VMware
Platform
15
vShield
Endpoint
Components
10/5/2012
16
Anti-malware
File integrity monitoring
IDS / IPS
Deep Security
Bi-direction firewall
Log inspection
Application control
SecureCloud
Credit Card
Payment
Encryption
with
PolicyPatientSecurity
Medical
Records
Sensitive
Social
Research
Numbers
Results
Information
SecureCloud
17
Private Cloud
Security
Virtual
Appliance
VM VM VM VM
Hybrid Cloud
Public Cloud
VM VM VM VM VM VM
SecureCloud console
10/5/2012
18
PHYSICAL
Intrusion
Prevention
10/5/2012
Anti
Malware
Firewall
19
CLOUD
Web
Reputation
Integrity
Monitoring
Log
Inspection
Deep Security 9
Extending Datacenter Security to Hybrid Cloud
AWS and vCloud API integration
Single management pane-of-glass between
VMs in internal VMware datacenters,
VPCs, and public clouds
Hierarchical policy
management
Inheritance enables customized
policies for different VMs or
datacenters, while central IT
can mandate compliant baseline
settings
10/5/2012
20
Deep Security 9
Agile Security Management for the Cloud
Multi-tenant Deep Security Manager architected for key attributes of cloud computing*:
Resource-pooling independent tenant policies/data for shared, multi-tenant clouds
Elasticity - Automated deployment of components to cloud scale
Self-service Policies can be delegated by cloud admin to tenants through
self-service GUI
Broad network access Web-based console built on REST APIs for extensibility
and integration with broader cloud management frameworks
Same architecture can be deployed as security-as-a-service by IaaS public cloud
providers, or within enterprise ITaaS for private clouds
*e.g. NIST definition of Cloud Computing
10/5/2012
21
Single Pane
Scalable
Redundant
Deep Security
Manager
Threat
Intelligence
Manager
SecureCloud
Reports
Deep Security
Agent
Includes:
Intrusion Prevention
Firewall
Anti-malware
Web Reputation
Integrity Monitoring
Log Inspection
Recommendation Scan
10/5/2012
Amazon AWS
or vCloud
Provider
Delivers:
ALL Security Modules PLUS
vCloud Director Integration
(NEW)
Amazon Integration (NEW)
Multi-tenant Ready (NEW)
22
Deep Security
Virtual Appliance
Includes:
Intrusion Prevention
Firewall
Anti-malware
Web Reputation
Integrity Monitoring
Hypervisor Integrity
Monitoring (NEW)
Recommendation Scan
(NEW)
Securing workloads:
physical, private
and public cloud
Asset visibility across
networks into the cloud
Simultaeously manage
physical, virtual, cloud
Enforce consistent
security policy
Corporate Network
Physical
Virtual
Cloud Providers
10/5/2012
Database
Web
Server
Web
Storage
Mail
Server
23
10/5/2012
24
VM
Corporate
App
VM
VM
Hypervisor
Trend Micro
SecureCloud Console
Shared Storage
Enterprise Key
10/5/2012
My Data
25
VM
Identity
Is it mine?
10/5/2012
Integrity
Is it okay?
IP Address
Services open
Location
Mount point
26
Firewall
AV
Self integrity check
Deep Security info
Value:
End user: gain additional knowledge about cloud risk factors; ability to
safely access efficiencies and economics offered by public IaaS
CSP: offer additional security components that help increase user base,
add revenue and differentiate cloud service from peer CSPs
10/5/2012
29
30
Avantages
Source http://www.hydroquebec.com/residentiel/eclairage/avantages.html
31
Avantages
http://www.hydroquebec.com/residential/eclairage/avantages.html
32
+CO2
Traditional Security
Deep Security
Agent Less
Protection
10/5/2012
33
+CO2
34
With Traditional
Antivirus
+ CO2
75
25
14
40
or
Traditional AV Kill VMS
and your infrastructure
Merci!
www.cloudjourney.com
Appendix
10/5/2012
38
Private Cloud
Finance
Security Profile 1
Highly Sensitive
Security
Virtual
Appliance
VM VM VM VM
Hybrid Cloud
Public Cloud
VM VM VM VM VM VM
Human Resources
Security Profile 1
Highly Sensitive
10/5/2012
R&D
Security Profile 2
Moderately Sensitive
39
*VCE Vblock Infrastructure Platforms combine industry-leading technologies from Cisco, EMC, and
VMware to deliver a pre-configured, rapidly deployable, converged infrastructure for cloud computing.
This certification provides Trend Micro customers with effective security solutions certified to work with
the Vblock Infrastructure Platform.
10/5/2012
40
10/5/2012
41
10/5/2012
42
Success stories
Major Electronics Retailer
Enabled PCI compliance and optimized operational efficiency
Restaurant Chain
Maximizing protection and cost efficiency
10/5/2012
43
Success stories
UK Grocer
Virtual Patching for Legacy Application Enables PCI compliance
International Grocer
PCI Compliance across a highly distributed retail environment
10/5/2012
44
More Profitable
More Sophisticated
More Frequent
# of days until
vulnerability is
first exploited,
after patch is
made available
28 days
18 days
10 days
More Targeted
Zero-day
2003
2005
2004
MS- Blast Sasser Zotob
45
Zero-day
2006
2010
WMF IE zero-day