Symantec Endpoint Protection 12.0 has started into a beta period with the final version expected out in the summer for Windows, Mac and Linux and recommended as optimized for VMware- or HyperV-based desktop environments. "It's checking files and processes real-time, and at the point it's executing, we open it in a sandbox," says Romer, noting the goal of SONAR is to stop anything that slips by Insight or signature-based detection. A third detection method, called SONAR, which Symantec introduced previously in its consumer product for behavior-based detection, will also be added for the first time in an updated version into its enterprise product. Signature-based antivirus protection would still be there as another line of defense. There could be a cautionary note not to open it though the user would make the choice. The Insight capability will let the security manager apply policy settings for users based on groups and the "configuration dial" settings in Symantec Endpoint Protection 12.0 would allow for different low or high "risk thresholds."ĭepending on risk, it would be possible to decide to block any file, from the Web or e-mail, or just inform the user what's known about the file if it's suspicious. The new release of Endpoint Protection will make use of the Insight technology in a way that enterprise security managers will be able to decide to use it or not as an option, Romer points out.
0 Comments
Leave a Reply. |