Security policy e Risk Management: la tecnologia BindView

NETWORK SECURITY COMPANY Security policy e Risk Management: la tecnologia BindView www.bindview.com Luca Ronchini lr@symbolic.it

Security policy e Risk Management : vulnerabilty management e security assessment, management avanzato e Directory Services I problemi da affrontare: autenticazione e gestione password autorizzazioni analisi, gestione, controllo della security (nel tempo) disaster recovery (analisi, documentazione, strumenti specifici) piattaforme eterogenee flessibilità della struttura e turnover documentazione management avanzato (oltre gli strumenti standard) complessità tempo e costi

Security policy e Risk Management Gli strumenti necessari Conoscenza dell azienda Struttura di analisi, creazione e implementazione di policy aziendali Struttura di analisi, controllo e gestione di una piattaforma di rete eterogenea Struttura di management avanzato Delega amministrativa su più livelli gerarchici (controllabili) Struttura di auditing Struttura di alerting e gestione degli eventi Operatività quotidiana semplificata e flessibile Misurazione dei Vantaggi/Benefici (tempo, costi, efficienza, efficacia)

Security policy e Risk Management Risk Management Lifecicle Certify/ Certify/ Verify Verify Remediate Repeat Repeat Assign Assign Define Rules Define Rules Policy Compliance Vulnerability Management Directory Administration e Migration Notify Audit/ Analyze Publish

Il framework BindView Sviluppo di conoscenza, policy, standard di configurazione, best practice, template da utilizzare in congiunzione con con bv-control/bv-admin. I prodotti: - Policy Operation Center - Compliance Center - Decision Support Center Implementazione policy e standard (Legge Privacy), hacking, analisi, controllo, find and fix, auditing, alerting, gestione degli eventi, reporting, network inventory I prodotti: - bv-control - NETinventory Directory management, migration, turnover, password management, scripting, analisi e controllo, delega I prodotti: - bv-admin - Password Self Service

Il framework BindView Policy Development: - Policy Operation Center - Decision Support Center - Compliance Center Modelli di Riferimento: CIS, SANS, CERT, Configuration Advisor Regulatory Compliance Modelli di Riferimento: HIPAA, Sarbanes-Oxley Section 404, Gramm- Leach-Bliley Act Standards Compliance Modelli di Riferimento: ISO 17799, CIS, COBIT

Il framework BindView Assessment, Audit e Security Application Management Platform Management

Il framework BindView bv-control - gestione delle configurazioni di rete e dei sistemi - problematiche operative sulla rete, sui sistemi, sui client - gestione/assessment policy: password, gruppi, user, risorse - analisi e reporting della struttura di rete/risorse - analisi e reporting delle vulnerabilità - assessment - auditing - alerting

Il framework BindView Assessment, Audit e Security - bv-control for Windows e Active Directory - bv-control for Microsoft Exchange - bv-control for MS SQL Server - bv-control Netware - bv-control for NDS edirectory - bv-control for Unix/Linux - bv-control for AS400 - bv-control for SAP System - bv-control for Internet Security - bv-control for CheckPoint - bv-control for Web Services bv-control - NETinventory/NetRc

Il framework BindView Application Management - bv-control for Microsoft Exchange bv-control - bv-control for MS SQL Server - bv-control for SAP System

Il framework BindView Platform Management - bv-control for Windows e Active Directory - bv-control Netware - bv-control for NDS edirectory - bv-control for Unix/Linux - bv-control for AS400 - bv-control for Web Services bv-control

Architettura bv-control OS/400 Snap-ins Information Server BVIS (Service) + MS SQL Server BindView RMS Console (MMC) RMS Web AD Check Point Windows Netware / NDS Web Services UNIX/Linux IntelliPACS Internet Security Exchange NETinventory SAP

Architettura bv-control for Windows BindView RMS bv-control for Windows 2000 Master Query Engine ECS Slave Query Engine Slave Query Engine DCA-Data Collection Agent

Architettura bv-control for MS Exchange Information Server Console (MMC) BVIS (Service) BindView RMS bv-control for MS Exchange MAPI DAPI Win32 Calls

Architettura bv-control for Active Directory Information Server Console (MMC) BVIS (Service) BindView RMS bv-control for Active Directory API - Calls

Architettura bv-control for Unix Information Server Console (MMC) BVIS (Service) BindView RMS bv-control for Unix bv-control for Unix Agent Sun Solaris HP UX Linux AIX

Architettura bv-control for OS/400 Information Server Console (MMC) BVIS (Service) BindView RMS bv-control for OS/400 OS/400 Agent IBM IBM AS/400

Architettura bv-control for Internet Security Console (MMC) BindView RMS Information Server BVIS (Service) RapidFire Updates bv-control for Internet Security bv-cis Agents IP Devices

Architettura bv-control for Netware/NDS/eDirectory Information Server Console (MMC) BVIS (Service) BindView RMS bv-control for Netware/NDS Novell Client 32 API Calls

Architettura NETinventory BindView RMS BindView EMS NETinventory Server Audit Server Login Server Login Server

Architettura bv-control IntelliPACS Information Server bv-control for IntelliPACS Console (MMC) BVIS (Service) BindView RMS Alerts EDBS SQL Server IntelliPACS Agents

Il framework BindView Directory Administration Migration Password Management Web Services

Il framework BindView bv-admin - gestione semplificata da un unica interfaccia di una rete eterogenea (Windows NT, 2000, 2003, XP, AD, Netware, Exchange, Web Services) - gestione semplificata da un unica interfaccia di un ambiente MS Exchange complesso - amministrazione e gestione delle risorse e delle policy - analisi e reporting - find-and-fix - migrazione Windows NT vs. Windows 2000/2003 - migrazione Netware vs Windows NT/2000/2003 e viceversa - migrazione MS Exchange 5.5 vs Exchange 2000/2003 - migrazione nella gestione operativa

Il framework BindView bv-admin - bv-admin for Windows Nt/2000/2003/XP/Active Directory - bv-admin for MS Exchange - bv-admin for Web Services - bv-admin for Novell NDS/eDirectory - bv-admin for Microsoft Exchange Migration - bv-admin for Windows Migration - bv-admin for Novell Migration

bv-admin Architecture bv- Admin Console bv-admin Details bv-admin Web bv-admin Win/Exch Migration bv-admin NDS Migration bv-admin for Win / Exchange

bv-admin for Windows NT/2000/2003 The Delegation Architecture - Domain and Local Resources bv-admin Console bv-admin Web Console ADSI/COM/XML/.NET Scrips Clients bv-admin Server Direct Map Proxy Account Domain A Domain B Domain C

bv-admin for Windows 2000/2003 The Delegation Architecture Active Directory Resources Clients bv-admin Console bv-admin Web Console ADSI/COM/XML/.NET Scripts Delegation Tasks Assign Roles to Users or Groups. Admin Tasks Create Modify User, Groups, OU s, etc. bv-admin Server Direct Map Proxy Account Permissions stamped in Active Directory

bv-admin for Windows 2000/2003 The Delegation Architecture Windows 2000/2003 Local Resources bv-admin Console bv-admin Web Console ADSI/COM/XML/.NET Scrips Clients bv-admin Server Direct Map Proxy Account Windows 2000/2003 Computer (User,Groups,Shares,Services, etc.)

bv-admin Migration AD Domain Account Activator SID - History bv-admin W2K/2003 Migration Domain A Domain B Domain C

Il framework BindView - Direct login Password Management: Password Self-Service - Disponibilità 24x7 - Supporto multipiattaforma: Active Directory, Windows NT, NDS, Microsoft SQL Server, Unix (AIX, Sun, HP, Linux) - Restrizioni per Utenti e Gruppi

NETWORK SECURITY COMPANY Grazie per l attenzione Luca Ronchini lr@symbolic.it