• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
分会场八云及虚拟环境安全防护
 

分会场八云及虚拟环境安全防护

on

  • 764 views

Symantec 2010 @ BJ

Symantec 2010 @ BJ

Statistics

Views

Total Views
764
Views on SlideShare
764
Embed Views
0

Actions

Likes
0
Downloads
0
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    分会场八云及虚拟环境安全防护 分会场八云及虚拟环境安全防护 Presentation Transcript

    • 云计算及虚拟化数据中心安全防护 Yu-Min Lin, CISSP, CISA, SCSP Senior Principal System EngineerCopyright © 2010 Symantec Corporation. All rights reserved. 1
    • 大纲 1 走近云世代 2 虚拟化数据中心安全防护 3 云计算安全威胁与对策 4 安全产品的云化 5 结论Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 2
    • 走近云世代Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 3
    • 信息科技的三大发展趋势 云计算 移动互联网 社交网络Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 4
    • 正在改变你我生活的云技术Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 5
    • 新一代的工作环境与模式 Mobility Cloud Services Employees Customers Partners Collaboration Rich Media SocietyCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 6
    • 采用云计算的阻碍与顾虑 } 31% Source: Springboard Research, 9/2010Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 7
    • 风险与效率的平衡 安全风险 运维效率Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 8
    • 虚拟化数据中心安全防护Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 9
    • 虚拟化数据中心基础架构的变革 应用程序 应用程序 应用程序 操作系统 操作系统 操作系统 虚拟机 虚拟机 虚拟机 虚拟化 虚拟化平台 物理机Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 10
    • 虚拟化数据中心安全风险(I) 应用程序 应用程序 应用程序 操作系统 操作系统 操作系统 虚拟机 虚拟机 虚拟机 虚拟化平台 物理机Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 11
    • 虚拟化数据中心安全风险(II) 应用程序 应用程序 应用程序 操作系统 操作系统 操作系统 虚拟机 虚拟机 虚拟机 虚拟化平台 物理机Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 12
    • 虚拟化数据中心安全风险(III) 应用程序 应用程序 应用程序 应用程序 操作系统 操作系统 操作系统 操作系统 虚拟机 虚拟机 虚拟机 虚拟机 虚拟化平台 虚拟化平台 物理机 物理机Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 13
    • 虚拟化数据中心防护趋势 更安全!更节能! 更轻!更快!Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 14
    • 云计算安全威胁与对策Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 15
    • 云计算安全威胁Information at Rest Information in Use Information in Motion•防护边界消失 • 拒绝服务攻击•云端资源滥用 • 黑客攻击及假冒身份•数据隔离、外泄与销毁 • 网络钓鱼及恶意网站 •恶意代码•双向审计及服务保障 • 数据传输加密 •敏感数据外泄•免责条款及永续经营 •系统漏洞 Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 16
    • 赛门铁克信息核心云安全模型 Policy Compliance Reporting Identity Remediation Classification Threats Encryption Ownership DiscoveryCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 17
    • 赛门铁克云安全解决方案 Information at Rest Information in Use Information in Motion Security & Hosted Services • SSL Certificates • Hosted Messaging Security • Hosted PKI • Hosted Web Security • VIP • Hosted Endpoint Protection • Trust Services • Mail Security Gateway• Critical System Protection • Data Loss Prevention • Web Security Gateway • Symantec Endpoint Protection• Control Compliance Suite • Encryption • Network Access Control • Data Loss Prevention•Endpoint Protection for Servers •Encryption• NetBackup & Backup Exec • Norton Security Suites• Enterprise Vault • Mobile Antivirus• Storage Foundation • Mobile Management• Workflow • Altiris IT Mgmt Suite Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 18
    • 安全产品的云化Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 19
    • 恶意代码趋势 (2002 – 2009) 2009年… • 57% 恶意代码只出现在单一计算机 • 传统防病毒机制已力有未逮!! 成长17倍!!Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 20
    • 赛门铁克云端文件信誉评级工作原理 数据提交服务器 2 1 蒐集数据 计算文件信誉评级 云端信誉评级发布服务器 文件杂凑 好/坏 信心指数 普遍性 首次出现时间 3 发布文件信誉评级Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 21
    • 赛门铁克云端服务 For the Enterprise For the Consumer 14 Data Storage SLAs 87 PB Foundation Centers 32k 10.9 million 72% Pennies/GBCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 22
    • 赛门铁克云安全服务 Software-as-a-Service  E-mail & IM Security  Web Security Enterprise  Endpoint Security  Email Archiving $Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 23
    • 赛门铁克云安全服务成效 Actual SLA Sep‘102.3 Million pieces of AntiSpam Malware captured in 99% 99.99997% Feb 2010 effectiveness 434 Thousand were captured only by Spam false 0.0003% 0.000008% Skeptic positive rate 31 Billion email connections per day in Feb AntiVirus false positive rate 0.0001% 0.000005% 1 Billion web requests per day in Feb Email & Web Service Availability 100% 100%3.0 Billion emails scanned by Skeptic in Feb Average Web scanning time 100 ms 30.2 msCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 24
    • 结论Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 25
    • 云计算安全管理三要素Copyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 26
    • 互联世界 满怀信心 TrustCopyright © 2010 Symantec Corporation. All rights reserved. Symantec Vision 2010 27
    • Thank you! Yu-Min Lin, CISSP, CISA, SCSP yu-min_lin@symantec.com +86 10 85180008 ext. 2130 Copyright © 2010 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.Copyright © 2010 Symantec Corporation. All rights reserved. 28