p4_1528
24
© 2014 IBM Corporation 日本アイ・ビー・ ソフトウ セキュリティーシス テクニカルセールス&ソ 【P-4】 ゼロデイ攻撃も恐れない!―最前線 不正侵入防御技術でリスクを回避せ
description
IBM Software XCITE Spring 2014
Transcript of p4_1528
-
2014 IBM Corporation
P-4
-
2 2014 IBM Corporation
2013500,000,000 (PII)
20112013
-
3 2014 IBM Corporation
46%
2013
-
4 2014 IBM Corporation
2013
2013Ponemon136
10 40,00054
-
5 2014 IBM Corporation
-
6 2014 IBM Corporation
X-Force :
IBM
URL/Web 200 Web URL
IP Web IP
Web
Web (Gmail ) (Skype )
X-Force
-
7 2014 IBM Corporation
IBM
20,000+
3,700+
150+ /
133
1,000+
170 Web
4000
76000
/
-
8 2014 IBM Corporation
X-Force
WebDB Web
IP
Application Web
3,000IPS
X-Force
X-Force Threat Intelligence
IBM Security Network Protection (XGS)
-
9 2014 IBM Corporation
Proventia
X-ForceVirtual Patch
IBM Security Network Protection
IP & Geo Location FireEye
SSL QRadar
-
10 2014 IBM Corporation
PAM() IBM Security IPS
Deep Inspection
PAM
450
5,000
RFC
TCP&
IPv6
IPv6
SIT
2014/4
-
11 2014 IBM Corporation
Virtual Patch IBM Security Network ProtectionIBM Virtual Patch
IBM X-Force
IBM Security Network Protection
XGS
-
12 2014 IBM Corporation
Nimda Confiker
, P2P,
Windows 2000 /2003 OS Windows 2000 2010713
PC
-
13 2014 IBM Corporation
IBM Security Network IPSNetwork Protection
OpenSSL OpenSSL1.0.11.0.1f 1.02-beta1 release
Internet Explorer Microsoft Internet Explorer6 11
Apache Struts2 Struts2.0.02.3.16.1(v1
Internet Explorer Internet Explorer 611PC
ID Virtual Patch IPS
OpenSSL CVE-2014-0160 TLS_Heartbeat_Short_Request TLS_Heartbeat_Long_Response
201449
Struts CVE-2014-0094 HTTP_Apache_Struts_Interceptor_Bypass 2014424
Internet Explorer CVE-2014-1776 HTML_IE_VML_Use_After_Free 2014430
-
14 2014 IBM Corporation
ID IPS
-
15 2014 IBM Corporation
Active Directory
IBM Security XGS
Facebook NG
Facebook OK
XGS
-
16 2014 IBM Corporation
LDAP Active Directry
XGS
/
-
17 2014 IBM Corporation
XGSWebWeb SSL Web /SNS
Web 68 170,000,000 Web
-
18 2014 IBM Corporation
X-Force IP
~3,500,000,000 ~21,000,000 Anonymous Proxy ~68,000 IP~370,000,000 ~21,000 C & C~600
IP60 50% ) XGS
Src/DstIP
IP
-
19 2014 IBM Corporation
SSL/TLS SSL/TLS ()
Man in the Middle (MITM) SSL Google Mail, Facebook
SSL XGSSSL SSLXGSCA
PC
PAM/) Web //
-
20 2014 IBM Corporation
-
21 2014 IBM Corporation
4-port Fixed fiber (LX) w/ built-bypass
8-port RJ-45 copper w/ built-bypass
4-port Fixed fiber (SX) w/ built-bypass
2-port 10GbE (SR) w/ built-bypass
2-port 10GbE (LR) w/ built-bypass
4-port SFP (requires transcievers)
2-port 10GbE SFP+ (requires transcievers)
XGS 51002 XGS 4100 XGS 3100
-
22 2014 IBM Corporation
Performance Level 1
2.0Gb/s Inspected Traffic
Performance Level 2
3.5Gb/s Inspected Traffic
Performance Level 3
5.0Gb/s Inspected Traffic
Performance Level 1
500Mb/s Inspected Traffic
Performance Level 2
1.0Gb/s Inspected Traffic
Performance Level 1
300Mb/s Inspected Traffic
Performance Level 2
600Mb/s Inspected Traffic
XGS5100
XGS4100
XGS3100 Performance Level 1
-
23 2014 IBM Corporation
-
24 2014 IBM Corporation
IBMIBM IBMIBM IBMIBMIBM IBM IBM
IBMIBM ibm.com Smarter PlanetX-Force Virtual PatchInternational Business Machines Corporation IBM IBM www.ibm.com/legal/copytrade.shtml
2 3 4X-Force : IBMX-ForceIBM Security Network ProtectionPAM()Virtual Patch IDIPSX-Force IPSSL/TLS 23 24
