Why ALTIRIS is Important for SYMANTEC - A Partner Point of View
Symantec Vision + Altiris ManageFusion: SVMF08 EMEA (Den Haag)
(EN draft version ;-)
- The backup and archiving of data merging their resources to maximize storage.
Symantec announces to the "Green IT" with the release of version 8 of "Symantec Enterprise Vault". A single-pass backup provides backup emails or documents users ("Granular restore"). But it also includes data from physical systems or virtual to allow a rapid return to service ("Disaster Recovery").
- Content control should allow:
- detect the presence of sensitive data (eg credit card numbers) to encrypt or move (DLP),
- as the presence of "infested" to clean or isolate (eg, spyware).
- The detection of flow networks with "sensitive" or "abnormal" may be correlated with the activities and analyzes the content of clients machines, with version 9 of Symantec Data Loss Prevention (DLP).
- With the Altiris tools, we can massive reinstall all suspicious machines remotely in about an hour.
We can also keep a few machines where the agent "DLP" did not detect significant content for the company, to isolate them in a quarantine network and establish an "escalation" in Symantec labs (see below). Because it is a permanent war on the Net for several years.
- In 2007: The rising volumes of data "unstructured" (ie, the office files) from 23% to 63%
- In 2007: The number of threats is growing 468% ...
Public image of Symantec is suffering a limitation as an antivirus software publisher. To the general public, make security "IT" is simply to protect a computer by installing antivirus software "updated", some more clevers told also to install a firewall. This is no longer true, and that is not enough todays. New threads bypass all "signature based" antivirus & firewall let you go the Net using http, like Trojan does. Security concerns all the elements used for the transportation and information processing:
|Software applications,||components for storage or transport (systems and networks)|
|From the depths of "Datacenter"||the position of terminal user interface, including at home or on their phone / PDA *|
|Protections for physical access (doors, locks, cameras, guards, ...)||What is difficult to do for portable terminals and Home workers (crypting solutions. ..)|
|Is to prevent "leakage" of money or information.||To stop "threats" (steal CPUs/Bandwidth, stops services)|
- Business continuity (BCP = Business Continuity Plan) through ongoing preventive activities adjusts the elements of protection and redundancy to increase availability.
- The ability to quickly restore service activities, with adequate infrastructure & plans (DRP = Disaster Recovery Plan).
- And preventing the loss of sensitive information, through awareness-raising measures and tools (DLP = Data Loss Prevention).
|The owner of a set of laboratories for 24/24h threats monitoring and research.||
4 (or 5?) "Security Operations Centers" (SOC), +29 "Global Support Centers"
|Solutions against are build are taken;||In six (or 11?) "Symantec Security Response Labs" (security research centers)|
|Updates components detection and defense world are published as soon as possible;||With the solution "LiveUpdate" set up by Symantec. It is used by more than 300 million customers.|
"LiveUpdate" allows to update the signatures and the necessary data for a large number of Symantec software (not just the antivirus).
But this is not enough to protect a business.
We need a consistent platform and inter-connected with all hardware, software and human processes. Altiris brings a part of the solution: an open architecture that provides a range of tools to be added to its CMDB*:
- The Connector Solution "allows to easily build a model from a web page on importing, exporting or simply to update structured external data.
- The Software Developer Kit (SSDK) enables the development of addon in Java, VB or C #, also as "web services" or simple command line (CLI).
- The use of ".Net" structure allows to integrate into a SOA* architecture without any specific developments.
- The "workflow" (Tlogic) allows to build easily process with a human interface connected any structured database, and the Altiris CMDB.
- The combination of solutions CMDB* and Asset Management provides objects based structures, quickly adaptable to new types can inherit attributes and predefined associations.
- The heart Altiris Notification Server helps ensure the consistency checks and notifications via "pager / SMS / Email / Web Reports" for all interfaced solutions.
- Groups of machines or users ( "collections" or "filters" in v.7) are built dynamically from all these criteria and the CMDB*. They are shared and reused by the various solutions.
The major change from Altiris (version 7) is "finally" expected this year (2009). All components and solutions is impacted due to a major restructuring to facilitate the delegation of authorities (with hierarchical inheritance).
- Client/Server Management suite: Include several basic solutions that are heavily modified like "Software Delivery":
How to capture software management change from multiple rules/items configurations, to a predefined easy workflow. Logic is more 'human'. It is based first on list of software detected or reported. A single series of simple operations manage the deployment of software, with the dependencies and updates (patches). It is integrating an update of the inventory according the target into the CMDB*. This will be a little disturbing at the outset for the "regulars" of the version 6, but the adjustment should come easily.
- The new solution "helpdesk" to "Service Desk 7" (Optimus project replacing the Kitty Hawk project):
It will be based on the workflow solution for the interface with users. It will include management of known issues & standard ITIL* process. The combination of the CMDB with Workflow, makes Altiris an ideal platform to build ITIL* processes like.
- The new "Deployment Solution" version 7:
It will integrate more and more in the "Notification Server" to be used in the workflow, throw the Server Tasks.
A year 2009 which will be full of changes, but it is just a beginning.
* Green IT: IT in the world seems to contribute 2% of CO2 production from Gartner. Added to economy of operations "remotly" that became possible thanks to developments in IT and the Internet.
* PDA: Pocket Desktop Assistant (phone, calendar and other electronic accessories like)
* CMDB: Configuration Management Data Base, a structured database that keeps track of configuration information of IT components and enterprise. It is a term derived from ITIL version 2, renamed CMS for Configuration Management System in version 3.
* SOA: Service Oriented Architecture, main idea is to support the "function calls" inter-application through a query such as a simple web URL (http or https), this is related also "Web 2.0" concepts.
* ITIL: See www.itsmf.com and wikipedia.org.