Hi there,
One of my customer now is planning to upgrade to SEP 14.1. As our SEP 14.1 is very powerful and bundled with quite a number of good features, ie File Reputation Lookup, Advanced Machine Learning, Memory Exploit Mitigation, Emulator, Application Control, Emulator, etc.... The customer would like to ask below quesitons:
Question 1 - What is the scan sequence when a client starts downloading a file from Internet or copy a file from USB thumb drive? Which feature will kick start first?
Question 2 - What is the scan sequence when a client starts open a file? Which feature will kick start first?
Question 3 - Will it be a chance that the SEP endpoint cannot communicate with SEPM and then skip some scanning process? If yes, may I ask is there any report or log showing such information?
thanks a lot
David