Symantec Endpoint Protection

Symantec Endpoint Protection , developed by Symantec , is a security software suite, which consists of anti-malware , intrusion prevention, and firewall features for servers and desktops. [2] It has the largest market-share of any product for endpoint security . [3]

Version history

The first release of Symantec Endpoint Protection was published in September 2007 and named version 11.0. [4] Endpoint Protection is the result of several security software products, including Symantec Antivirus Corporate Edition 10.0, Client Security, Network Access Control, and Sygate Enterprise Edition. [4] Endpoint Protection also includes new features. [4] For example, it can block data transfers to unauthorized device types, such as USB flash drives or Bluetooth devices. [4]

At the time, Symantec Antivirus Corporate Edition has been criticized as having become bloated and unwieldy. [2] Endpoint Protection 11.0 was intended to address these criticisms. [2] The disk footprint of Symantec Corporate Edition 10.0 is 100 MB, while Endpoint Protection is 20 MB. [2]

In 2009, Symantec introduced a managed service and Symantec staff deployed Symantec Endpoint Protection and remotely installations. [5] A Small Business Edition with a faster setup process Was released in 2010. [6] In February 2011, Symantec released version 12.0 of Endpoint Protection. [7] Version 12 is a cloud-based database of malicious files called Symantec Insight. [7] Insight was intended to combat malware that generates mutations of its files to prevent detection by signature-based anti-malware software. [7] In late 2012, Symantec released version 12.1.2, which supports VMware vShield. [8]

A cloud-version of Endpoint Protection was released in September 2016. [9] This was followed by version 14 that November. [10] Version 14 incorporates machine learning technology to find patterns in digital data that may be indicative of the presence of a cyber-security threat. [10] It also incorporates memory exploit mitigation and performance improvements. [3]

Features

Symantec Endpoint Protection is a security suite that includes intrusion prevention , firewall , and anti-malware features. [11] According To SC Magazine , Endpoint Protection aussi HAS some features typical of data loss preventionsoftware. [12] Windows , Linux , or macOS is running on a server . [13] Version 14 is the only currently-supported release. [14]

Endpoint Protection regularly scans computers for security threats. [11] It is used to prevent unauthorized programs from running, [11] and to apply firewall policies that allow block or allow network traffic. [15] It attempts to identify and block a company’s traffic from a web browser . [16] It uses aggregate information from users to identify malicious software. [12] Symantec claims to use data from 175 million devices that have installed Endpoint Security in 175 countries. [12]

Endpoint Protection has an administrative console that allows the department to modify security policies for each department, [11] such as which programs or files to exclude from antivirus scans. [12] It does not manage mobile devices directly, but it does not affect mobile devices. [12]

Vulnerabilities

In early 2012, source code for Symantec Endpoint Protection was published. [17] A hacker group called “The Lords of Dharmaraja” claimed credit, alleging the source code was stolen from Indian military intelligence . [18] The Indian government requires vendors submit source code of any computer program being sold to the government, to ensure that they are not being used for espionage . [17] In July 2012, an update to Endpoint Protection Caused compatibility issues, triggering a Blue Screen of Death is Windows XP running machine some third-party file system drivers .[19] In 2014, Offensive Security discovered an exploit in Symantec Endpoint Protection during a penetration test of a financial services organization. [20] The exploit in the Application and Device Control Driver is a registered user of the system. [20] It was patched that August. [20]

Reception

According to Gartner , Symantec Endpoint Protection is one of the most comprehensive endpoint security products. [3] However, a common criticism is that customers are “fatigued” by “near constant changes” in the product and company direction. [3] SC Magazine said Enpoint Protection 14 was the “most comprehensive tool of its type … with superb installation and documentation.” [12] The review said EndPoint Protection had a “no-brainer setup and administration,” but it does have a “wart” that support fees are “a bit steep.” [12]

Forrester said version 12.1 was the most complete endpoint security software product on the market, but the different IT security functions of the software were not well-integrated. [21] The postponement speculated the Lack of integration Would Be Addressed in version 14. [21] Network World Official Symantec Endpoint Protection sixth in endpoint security products, based on data from NSS Labs testing. [22]

References

  1. Jump up^ “Download the latest version of Symantec Endpoint Protection” . Enterprise Technical Support . Symantec . October 13, 2017.
  2. ^ Jump up to:d Walsh, Lawrence (November 2007). “Troubled Waters” . CSO Magazine . 6 (10). CXO Media.
  3. ^ Jump up to:d Ouellet, Eric; McShane, Ian; Litan, Avivah (30 January 2017). “Magic Quadrant for Endpoint Protection Platforms” . gartner.com . Gartner .
  4. ^ Jump up to:d Messmer Ellen (24 September 2007). “Symantec revamps endpoint security product” . Network World . Retrieved 16 April 2017 .
  5. Jump up^ Messmer, Ellen (23 June 2009). “Symantec unveils endpoint protection services” . Network World . IDG .
  6. Jump up^ Moltzen, Edward (1 January 2010). “Security In 20 Minutes, Really” . CRN . The Channel Company.
  7. ^ Jump up to:c Messmer Ellen (15 February 2011). “Symantec looks to protect users from mutating malware” . Network World . IDG .
  8. Jump up^ Messmer, Ellen (3 December 2012). “Symantec releases first anti-malware software to work with VMware vShield security system” . Network World . IDG .
  9. Jump up^ Kuranda, Sarah (13 September 2016). “Symantec Rolls Out New Cloud-Based Endpoint Protection Solution For SMBs” . CRN . The Channel Company.
  10. ^ Jump up to:b Osborne, Charlie (1 October 2016). “Symantec launches endpoint protection solution based on artificial intelligence” . ZDNet . CBS Interactive .
  11. ^ Jump up to:d Sarrel, Matthew (March 2008). “Security That’s All Business” . PC Magazine . Retrieved 16 April 2017 .
  12. ^ Jump up to:g Stephenson, Peter (22 August 2016). “Symantec Endpoint Protection 14” . SC Magazine . Haymarket Media Group . Retrieved 20 April 2017 .
  13. Jump up^ Stephenson, Peter (1 August 2012). “Symantec Endpoint Protection 12 v12.1” . SC Magazine . Haymarket Media Group . Retrieved 16 April 2017.
  14. Jump up^ “Released versions of Symantec Endpoint Protection” . Enterprise Technical Support . Symantec . March 16, 2017 . Retrieved 18 April 2017 .
  15. Jump up^ “About the Symantec Endpoint Protection firewall” . Enterprise Technical Support . Symantec . October 28, 2016.
  16. Jump up^ “How intrusion prevention works” . Enterprise Technical Support . Symantec . October 28, 2016.
  17. ^ Jump up to:Vijayan b , Jaikumar (6 January 2012). “Symantec confirms source code leak in two enterprise security products” . Computerworld . Retrieved 18 April 2017 .
  18. Jump up^ Akhtar, Iyaz (6 January 2012). “That stolen Symantec source code? It’s for older enterprise products . ” CNET . CBS Interactive . Retrieved 18 April2017 .
  19. Jump up^ Raywood, Dan (16 July 2012). “Symantec fixes’ blue screen of death ‘bug’ . SC Magazine UK . Haymarket Media Group . Retrieved 16 April2017 .
  20. ^ Jump up to:c Kirk Jeremy (5 August 2014). “Symantec patches privilege escalation flaws in Endpoint Protection” . Network World . IDG .
  21. ^ Jump up to:b Sherman, Chris; McClean, Christopher; Schiano, Salvatore; Dostie, Peggy (19 October 2016). “The Wave Forrester: Endpoint Security Suites, Q4 2016” . (Registration required ( help )) .
  22. Jump up^ “NSS Labs rated 13 advanced security products, flagged 2 with bail rating” . Network World . IDG . February 15, 2017 . Retrieved 18 April2017 .

Leave a Reply

Your email address will not be published.