云计算及虚拟化数据中心安全防护    Yu-Min Lin, CISSP, CISA, SCSP    Senior Principal System EngineerCopyright © 2010 Symantec Corporation....
大纲           1        走近云世代           2        虚拟化数据中心安全防护           3        云计算安全威胁与对策           4        安全产品的云化       ...
走近云世代Copyright © 2010 Symantec Corporation. All rights reserved.   Symantec Vision 2010   3
信息科技的三大发展趋势      云计算                                                                    移动互联网                             ...
正在改变你我生活的云技术Copyright © 2010 Symantec Corporation. All rights reserved.   Symantec Vision 2010   5
新一代的工作环境与模式 Mobility                                                                              Cloud Services          ...
采用云计算的阻碍与顾虑                                                                                            }         31%      ...
风险与效率的平衡 安全风险                                                                             运维效率Copyright © 2010 Symantec Co...
虚拟化数据中心安全防护Copyright © 2010 Symantec Corporation. All rights reserved.   Symantec Vision 2010   9
虚拟化数据中心基础架构的变革                                                     应用程序          应用程序              应用程序                   ...
虚拟化数据中心安全风险(I)                          应用程序                        应用程序         应用程序                          操作系统       ...
虚拟化数据中心安全风险(II)                          应用程序                        应用程序         应用程序                          操作系统      ...
虚拟化数据中心安全风险(III)    应用程序                        应用程序                                 应用程序                  应用程序    操作系统   ...
虚拟化数据中心防护趋势                                                      更安全!更节能!  更轻!更快!Copyright © 2010 Symantec Corporation. Al...
云计算安全威胁与对策Copyright © 2010 Symantec Corporation. All rights reserved.   Symantec Vision 2010   15
云计算安全威胁Information at Rest                                                                   Information in Use           ...
赛门铁克信息核心云安全模型                  Policy           Compliance                                                   Reporting    ...
赛门铁克云安全解决方案 Information at Rest                                                                                     Inform...
安全产品的云化Copyright © 2010 Symantec Corporation. All rights reserved.   Symantec Vision 2010   19
恶意代码趋势 (2002 – 2009)                          2009年…                              • 57% 恶意代码只出现在单一计算机                     ...
赛门铁克云端文件信誉评级工作原理                                                              数据提交服务器                                     ...
赛门铁克云端服务             For the Enterprise                                      For the Consumer          14 Data            ...
赛门铁克云安全服务                                                                         Software-as-a-Service                   ...
赛门铁克云安全服务成效                                                                                                      Actual   ...
结论Copyright © 2010 Symantec Corporation. All rights reserved.   Symantec Vision 2010   25
云计算安全管理三要素Copyright © 2010 Symantec Corporation. All rights reserved.   Symantec Vision 2010   26
互联世界 满怀信心                                                    TrustCopyright © 2010 Symantec Corporation. All rights reserv...
Thank you!      Yu-Min Lin, CISSP, CISA, SCSP      yu-min_lin@symantec.com      +86 10 85180008 ext. 2130    Copyright © 2...
Upcoming SlideShare
Loading in...5
×

分会场八云及虚拟环境安全防护

694

Published on

Symantec 2010 @ BJ

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
694
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "分会场八云及虚拟环境安全防护"

  1. 1. 云计算及虚拟化数据中心安全防护 Yu-Min Lin, CISSP, CISA, SCSP Senior Principal System EngineerCopyright © 2010 Symantec Corporation. All rights reserved. 1
  2. 2. 大纲 1 走近云世代 2 虚拟化数据中心安全防护 3 云计算安全威胁与对策 4 安全产品的云化 5 结论Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 2
  3. 3. 走近云世代Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 3
  4. 4. 信息科技的三大发展趋势 云计算 移动互联网 社交网络Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 4
  5. 5. 正在改变你我生活的云技术Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 5
  6. 6. 新一代的工作环境与模式 Mobility Cloud Services Employees Customers Partners Collaboration Rich Media SocietyCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 6
  7. 7. 采用云计算的阻碍与顾虑 } 31% Source: Springboard Research, 9/2010Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 7
  8. 8. 风险与效率的平衡 安全风险 运维效率Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 8
  9. 9. 虚拟化数据中心安全防护Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 9
  10. 10. 虚拟化数据中心基础架构的变革 应用程序 应用程序 应用程序 操作系统 操作系统 操作系统 虚拟机 虚拟机 虚拟机 虚拟化 虚拟化平台 物理机Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 10
  11. 11. 虚拟化数据中心安全风险(I) 应用程序 应用程序 应用程序 操作系统 操作系统 操作系统 虚拟机 虚拟机 虚拟机 虚拟化平台 物理机Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 11
  12. 12. 虚拟化数据中心安全风险(II) 应用程序 应用程序 应用程序 操作系统 操作系统 操作系统 虚拟机 虚拟机 虚拟机 虚拟化平台 物理机Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 12
  13. 13. 虚拟化数据中心安全风险(III) 应用程序 应用程序 应用程序 应用程序 操作系统 操作系统 操作系统 操作系统 虚拟机 虚拟机 虚拟机 虚拟机 虚拟化平台 虚拟化平台 物理机 物理机Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 13
  14. 14. 虚拟化数据中心防护趋势 更安全!更节能! 更轻!更快!Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 14
  15. 15. 云计算安全威胁与对策Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 15
  16. 16. 云计算安全威胁Information at Rest Information in Use Information in Motion•防护边界消失 • 拒绝服务攻击•云端资源滥用 • 黑客攻击及假冒身份•数据隔离、外泄与销毁 • 网络钓鱼及恶意网站 •恶意代码•双向审计及服务保障 • 数据传输加密 •敏感数据外泄•免责条款及永续经营 •系统漏洞 Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 16
  17. 17. 赛门铁克信息核心云安全模型 Policy Compliance Reporting Identity Remediation Classification Threats Encryption Ownership DiscoveryCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 17
  18. 18. 赛门铁克云安全解决方案 Information at Rest Information in Use Information in Motion Security & Hosted Services • SSL Certificates • Hosted Messaging Security • Hosted PKI • Hosted Web Security • VIP • Hosted Endpoint Protection • Trust Services • Mail Security Gateway• Critical System Protection • Data Loss Prevention • Web Security Gateway • Symantec Endpoint Protection• Control Compliance Suite • Encryption • Network Access Control • Data Loss Prevention•Endpoint Protection for Servers •Encryption• NetBackup & Backup Exec • Norton Security Suites• Enterprise Vault • Mobile Antivirus• Storage Foundation • Mobile Management• Workflow • Altiris IT Mgmt Suite Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 18
  19. 19. 安全产品的云化Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 19
  20. 20. 恶意代码趋势 (2002 – 2009) 2009年… • 57% 恶意代码只出现在单一计算机 • 传统防病毒机制已力有未逮!! 成长17倍!!Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 20
  21. 21. 赛门铁克云端文件信誉评级工作原理 数据提交服务器 2 1 蒐集数据 计算文件信誉评级 云端信誉评级发布服务器 文件杂凑 好/坏 信心指数 普遍性 首次出现时间 3 发布文件信誉评级Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 21
  22. 22. 赛门铁克云端服务 For the Enterprise For the Consumer 14 Data Storage SLAs 87 PB Foundation Centers 32k 10.9 million 72% Pennies/GBCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 22
  23. 23. 赛门铁克云安全服务 Software-as-a-Service  E-mail & IM Security  Web Security Enterprise  Endpoint Security  Email Archiving $Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 23
  24. 24. 赛门铁克云安全服务成效 Actual SLA Sep‘102.3 Million pieces of AntiSpam Malware captured in 99% 99.99997% Feb 2010 effectiveness 434 Thousand were captured only by Spam false 0.0003% 0.000008% Skeptic positive rate 31 Billion email connections per day in Feb AntiVirus false positive rate 0.0001% 0.000005% 1 Billion web requests per day in Feb Email & Web Service Availability 100% 100%3.0 Billion emails scanned by Skeptic in Feb Average Web scanning time 100 ms 30.2 msCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 24
  25. 25. 结论Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 25
  26. 26. 云计算安全管理三要素Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 26
  27. 27. 互联世界 满怀信心 TrustCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 27
  28. 28. Thank you! Yu-Min Lin, CISSP, CISA, SCSP yu-min_lin@symantec.com +86 10 85180008 ext. 2130 Copyright © 2010 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.Copyright © 2010 Symantec Corporation. All rights reserved. 28

×