Trend Micro OSCE 10 beta 3

[Михаил Кондрашин 55]

Итак, готовимся к третей бете OfficeScan 10

Key features include:

Cloud Client File Reputation

• With CCFR technology, the OfficeScan client provides more immediate protection with negligible pattern management effort and a lighter footprint

Это самое важное нововведение в OfficeScan 10 (см. ниже)

• Administrators can decide to use either cloud based scanning or traditional scanning technology

Клево, только как понять заранее, какой будет компромисс в части безопасности

Device Access Control

• Capability to granularly control the access and use of fixed and removable devices, such as USB storage.

Некоторые заказчики интересуются. Будет полезно.

Role Based Administration

• Allows to spread responsibilities for endpoint security amongst multiple administrators and to define their management roles based on their login credentials

В beta 2 уже есть муляж этой функциональности. Удобно – теперь не нужно городить огород с Control Manager

Active Directory integration for Security Compliance reports

• Administrators can easily spot ‘unprotected’ machines by connecting OfficeScan to the central Active Directory and by querying various levels in the AD tree (Organization Unit, and Container)

Тем, у кого развернут AD не помешает. В упрощенной схеме подобное существует давно.

Optional End-user control for Scheduled Scans

• Users can decide to postpone or skip scheduled scans based on the privilege assignment by administrators

Сканирование по расписанию кажется уже не так актуально, но ладно, пусть будет.

Application Self Protection

• Provides application control for key components of the OfficeScan client.
• Prevents program files, registry entries and processes from being modified or deleted.

Жизнь показывает, что это все доставляет вирусописателем лишних хлопот на 15 минут, но пусть будет.

Web Reputation configuration improvements

• Added granularity, allowing the assignment of Web Reputation policy at various layers of the OfficeScan client tree.

Для оценки эффективности этой технологии, это очень полезно.

Windows Server 2008 Support

• OfficeScan client and OfficeScan management server are fully supported on Window Server 2008 (excluding server core and Hyper-V for now)

Это приятно.

Вот про технологию CCFR:

Advantages of using the Cloud Client File Reputation technology:

• Significant reduction in pattern management effort. Enterprises, especially large environments and those with a huge share of roaming devices struggle to update patterns to each and every endpoint. Trend Micro’s revolutionary approach addresses this challenge by storing pattern files on central scan servers only and by allowing the central pattern file to be queried from the individual endpoints.
• The increase in the amount of malware increasingly impacts workstation performance. Because the bulk of pattern definitions is stored in the cloud, workstation memory consumption is significantly lower.
• Because all endpoints are protected as soon as the scan server obtained a new pattern, the time to protect is shortened, resulting a more immediate, thus better protection.
• The network bandwidth usage consumed during a traditional pattern update and associated periods of network and product contention during this process are minimized
• As the growth in numbers of malware will prevail, only the cloud based scanning will be able to scale to the degree needed to handle the threat of volume

Информация с сайта http://www.trendbeta.com