Security policy e Risk Management: la tecnologia BindView · Risk Management: la tecnologia...
31
NETWORK SECURITY COMPANY Luca Ronchini [email protected] Security policy e Risk Management: la tecnologia BindView www.bindview.com
Transcript of Security policy e Risk Management: la tecnologia BindView · Risk Management: la tecnologia...
NETWORK SECURITY COMPANY
Luca [email protected]
Security policy eRisk Management:
la tecnologiaBindView
www.bindview.com
I problemi da affrontare:
• autenticazione e gestione password
• autorizzazioni
• analisi, gestione, controllo della security (nel tempo)
• disaster recovery (analisi, documentazione, strumenti specifici)
• piattaforme eterogenee
• flessibilità della struttura e turnover
• documentazione
• management avanzato (oltre gli strumenti standard)
• complessità
• tempo e costi
Security policy e Risk Management : vulnerabilty management esecurity assessment, management avanzato e Directory Services
Security policy e Risk Management
• Conoscenza dell’azienda
• Struttura di analisi, creazione e implementazione di policy aziendali
• Struttura di analisi, controllo e gestione di una piattaforma di rete
eterogenea
• Struttura di management avanzato
• Delega amministrativa su più livelli gerarchici (controllabili)
• Struttura di auditing
• Struttura di alerting e gestione degli eventi
• Operatività quotidiana semplificata e flessibile
• Misurazione dei Vantaggi/Benefici (tempo, costi, efficienza, efficacia)
Gli strumenti necessari
Security policy e Risk Management
Assign
Certify/Verify
Define RulesRepeat
Remediate Audit/Analyze
Assign Notify
PublishCertify/Verify
Define RulesRepeat
Policy ComplianceVulnerability Management
Directory Administration e Migration
Risk Management Lifecicle
Il framework BindViewSviluppo di conoscenza, policy, standard diconfigurazione, best practice, template da utilizzare incongiunzione con con bv-Control/bv-Admin.
I prodotti:
- Policy Operation Center
- Compliance Center
- Decision Support Center
Implementazione policy e standard (Legge Privacy),hacking, analisi, controllo, find and fix, auditing,alerting, gestione degli eventi, reporting, networkinventory
I prodotti:
- bv-Control
- NETinventory
Directory management, migration, turnover, passwordmanagement, scripting, analisi e controllo, delega
I prodotti:
- bv-Admin
- Password Self Service
• Policy Development:
- Policy Operation Center
- Decision Support Center
- Compliance Center
Modelli di Riferimento: CIS, SANS, CERT, Configuration Advisor
• Regulatory ComplianceModelli di Riferimento: HIPAA, Sarbanes-Oxley Section 404, Gramm-Leach-Bliley Act
• Standards ComplianceModelli di Riferimento: ISO 17799, CIS, COBIT
Il framework BindView
• Assessment, Audit e Security
• Application Management
• Platform Management
Il framework BindView
bv-Control- gestione delle configurazioni di rete e dei sistemi
- problematiche operative sulla rete, sui sistemi, sui client
- gestione/assessment policy: password, gruppi, user, risorse
- analisi e reporting della struttura di rete/risorse
- analisi e reporting delle vulnerabilità
- assessment
- auditing
- alerting
Il framework BindView
Assessment, Audit e Security
- bv-Control for Windows e Active Directory
- bv-Control for Microsoft Exchange
- bv-Control for MS SQL Server
- bv-Control Netware
- bv-Control for NDS eDirectory
- bv-Control for Unix/Linux
- bv-Control for AS400
- bv-Control for SAP System
- bv-Control for Internet Security
- bv-Control for CheckPoint
- bv-Control for Web Services
- NETinventory/NetRc
bv-Control
Il framework BindView
Application Management
- bv-Control for Microsoft Exchange
- bv-Control for MS SQL Server
- bv-Control for SAP System
bv-Control
Il framework BindView
Platform Management
- bv-Control for Windows e Active Directory
- bv-Control Netware
- bv-Control for NDS eDirectory
- bv-Control for Unix/Linux
- bv-Control for AS400
- bv-Control for Web Services
bv-Control
Il framework BindView
Console(MMC)
InformationServer
BVIS(Service)
+MS SQLServer
Snap-ins
BindView RMSBindView RMS
Internet Security
Netware / NDS
UNIX/Linux
NETinventoryExchange
IntelliPACS
Web Services
AD
RMS Web
SAP
OS/400
Architettura bv-Control
Check Point
Windows
Architettura bv-Control for Windows
bv-Control for Windows 2000
BindView RMSBindView RMS
ECSMaster Query Engine
Slave Query Engine Slave Query Engine
DCA-DataCollection Agent
Console(MMC)
BVIS(Service)
bv-Control for MS Exchange
BindView RMSBindView RMSInformation
Server
MAPI – DAPI – Win32 Calls
Architettura bv-Control for MS Exchange
Console(MMC)
BVIS(Service)
bv-Control for Active Directory
BindView RMSBindView RMSInformation
Server
API - Calls
Architettura bv-Control for Active Directory
Console(MMC)
BVIS(Service)
bv-Control for Unix
BindView RMSBindView RMSInformation
Server
Sun Solaris Linux
bv-Control for Unix Agent
HP UX AIX
Architettura bv-Control for Unix
Console(MMC)
BVIS(Service)
bv-Control for OS/400
BindView RMSBindView RMSInformation
Server
IBM AS/400OS/400 Agent
IBM
Architettura bv-Control for OS/400
Console(MMC)
BVIS(Service)
bv-Control for Internet Security
BindView RMSBindView RMS
InformationServer
IP Devices
bv-CIS Agents
RapidFire Updates
Architettura bv-Control for Internet Security
bv-Control for Netware/NDS
BindView RMSBindView RMS
Novell Client 32
API
Calls
Console(MMC)
BVIS(Service)
InformationServer
Architettura bv-Control forNetware/NDS/eDirectory
Architettura NETinventory
NETinventory Server
BindView RMSBindView RMS
BindView EMSBindView EMS
Login Server
Audit Server
Login Server
Architettura bv-Control IntelliPACS
Console(MMC)
BVIS(Service)
BindView RMSBindView RMSInformation
Server
EDBSSQL
Server
IntelliPACS Agents
bv-Control forIntelliPACS
Alerts
• Directory Administration
• Migration
• Password Management
• Web Services
Il framework BindView
- gestione semplificata da un’unica interfaccia di una rete eterogenea
(Windows NT, 2000, 2003, XP, AD, Netware, Exchange, Web Services)
- gestione semplificata da un’unica interfaccia di un ambiente MS Exchange
complesso
- amministrazione e gestione delle risorse e delle policy
- analisi e reporting
- find-and-fix
- migrazione Windows NT vs. Windows 2000/2003
- migrazione Netware vs Windows NT/2000/2003 e viceversa
- migrazione MS Exchange 5.5 vs Exchange 2000/2003
- migrazione nella gestione operativa
bv-Admin
Il framework BindView
- bv-Admin for Windows Nt/2000/2003/XP/Active Directory
- bv-Admin for MS Exchange
- bv-Admin for Web Services
- bv-Admin for Novell NDS/eDirectory
- bv-Admin for Microsoft Exchange Migration
- bv-Admin for Windows Migration
- bv-Admin for Novell Migration
bv-Admin
Il framework BindView
bv-Admin Architecture
bv-AdminConsole
bv-Admin for Win /Exchange
bv-AdminDetails
bv-AdminWeb
bv-Admin Win/ExchMigration
bv-Admin NDSMigration
bv-Admin for Windows NT/2000/2003The Delegation Architecture - Domain and Local Resources
bv-AdminServer
Domain A
Domain B
Domain C
bv-AdminWeb Console
bv-Admin Console
ADSI/COM/XML/.NETScrips
Clients
DirectMap
ProxyAccount
bv-Admin for Windows 2000/2003The Delegation Architecture – Active Directory Resources
bv-A
dmin
Ser
ver
bv-AdminWeb Console
bv-Admin Console
ADSI/COM/XML/.NETScripts
Clients
DirectMap
ProxyAccount
Admin TasksCreate – Modify User,
Groups, OU’s, etc.
Delegation TasksAssign Roles to Users
or Groups.
Permissionsstamped in Active
Directory
bv-Admin for Windows 2000/2003The Delegation Architecture – Windows 2000/2003 Local Resources
bv-AdminWeb Console
bv-Admin Console
ADSI/COM/XML/.NETScrips
Clients
Windows2000/2003Computer
(User,Groups,Shares,Services, etc.)
DirectMap
ProxyAccount
bv-AdminServer
bv-Admin Migration
bv-Admin W2K/2003Migration
Domain A Domain B Domain C
ADDomain
AccountActivator
SID - History
Password Management:
- Direct login
- Disponibilità 24x7
- Supporto multipiattaforma: Active Directory, Windows NT,
NDS, Microsoft SQL Server, Unix (AIX, Sun, HP, Linux)
- Restrizioni per Utenti e Gruppi
Password Self-Service
Il framework BindView
