web view技术建议书. 专供. xx集团. 2011年03月31日 建议书用户: xx集团. ....
TRANSCRIPT
DLP
XX
20110331
XX
2011331
XX
XX
XX
25 XX
XX
2010 Symantec Corporation. 2010 Symantec Corporation All Rights Reserved.
6
1
6
2
6
2.1
8
2.1.1 Symantec Data Loss Prevention
8
2.1.2 Symantec Data Loss Prevention Endpoint Prevent
9
2.1.3 Symantec Data Loss Prevention Endpoint Discover
9
2.1.4 Symantec Data Loss Prevention Network Discover
10
2.1.5 Symantec Data Loss Prevention Network Protect
10
2.1.6 Symantec Data Loss Prevention Data Insight
11
2.1.7 Symantec Data Loss Prevention Network Monitor
12
2.1.8 Symantec Data Loss Prevention Network Prevent for Email
12
2.1.9 Symantec Data Loss Prevention Network Prevent for Web
13
2.1.10 Symantec Data Loss Prevention Enforce Platform
13
2.2
16
2.3
36
2.3.2
57
2.3.3
90
2.3.4
97
2.3.5
106
2.3.6
107
3
107
3.1
108
3.2
108
3.2.1 DLP
113
3.2.2 DLP
118
3.2.3 DLP
122
4
122
4.1
122
4.1.1
131
4.1.2
134
4.1.3
135
4.1.4
136
4.1.5
137
4.1.6
137
4.2
137
4.2.1
138
4.2.2
139
4.2.3
139
5
139
5.1
142
5.2
142
5.2.1 /
150
5.2.2
151
5.2.3
153
5.3
157
5.3.1
159
5.3.2 DLP
1
XXXX
XXXXXX
XX201112XX
2
2.1
Symantec DLP/
SYMANTEC DLP
Microsoft Word Powerpoint PDFEnforce EnforceEnforce
Enforce SYMANTEC DLPSYMANTEC DLP ANDOR NOT
SYMANTEC DLP 60
SYMANTEC DLP SYMANTEC DLP 15 USB SMTP/HTTP/HTTPS/FTP SMTP 1000 10
DLPDMZ
2.1.1 Symantec Data Loss Prevention
Symantec Data Loss Prevention
Network DiscoverEndpoint Discover Data Insight
Network Monitor Endpoint Prevent
Network ProtectNetwork Prevent Endpoint Prevent
Enforce Platform
Symantec Data Loss Prevention
Data Loss Prevention
2.1.2 Symantec Data Loss Prevention Endpoint Prevent
Symantec Data Loss Prevention Endpoint Prevent IMWeb FTP USBCompact FlashSD CD/DVD Print Screen
Data Loss Prevention Endpoint Prevent
XX
CD/DVD
PrintScreen
2.1.3 Symantec Data Loss Prevention Endpoint Discover
Symantec Data Loss Prevention Endpoint Discover
Data Loss Prevention Endpoint Discover XX Data Loss Prevention Endpoint DiscoverXX
XX
2.1.4 Symantec Data Loss Prevention Network Discover
Symantec Data Loss Prevention Network Discover Web
Data Loss Prevention Network DiscoverXX
Data Loss Prevention Network DiscoverXX
2.1.5 Symantec Data Loss Prevention Network Protect
Symantec Data Loss Prevention Network Protect (ERM) (ERM) XX ERM Ransom noteXX IT FlexResponse
XX
ERM
2.1.6 Symantec Data Loss Prevention Data Insight
Symantec Data Loss Prevention Data Insight XX
Data Loss Prevention Data Insight Network Discover Data Insight XX
XX Data Insight Data Insight XX
Data Insight
2.1.7 Symantec Data Loss Prevention Network Monitor
Symantec Data Loss Prevention Network Monitor IMWebFTPP2P TCP
WebIMFTPP2P TCP GB
Data Loss Prevention Network MonitorXX PCI Web Facebook FTP
Data Loss Prevention Network MonitorXX
2.1.8 Symantec Data Loss Prevention Network Prevent for Email
Symantec Data Loss Prevention Network Prevent for Email
/Data Loss Prevention Network Prevent for Email (TLS) XX Microsoft Outlook Web Access
Data Loss Prevention Network Prevent for Email XX
2.1.9 Symantec Data Loss Prevention Network Prevent for Web
Symantec Data Loss Prevention Network Prevent for Web Web
Data Loss Prevention Network Prevent for Web Web 2.0 / Web XX Web Facebook XX
IMWeb FTP
2.1.10 Symantec Data Loss Prevention Enforce Platform
Symantec Data Loss Prevention Enforce Platform
XX XX XX XML Web
XX
2.2
Symantec Data Loss Prevention
Symantec Data Loss Prevention
Network Discover
Network Protect
Data Insight
Endpoint Discover
Network Monitor
Network Prevent
Network Prevent for Email
Network Prevent for Web Web
Enforce Platform
-
(, "123456789", "123-45-6789", "123456789", "123.45.6789")
( 20)
200
-
( 100,000 )
(, SOX, PCI, BASEL )
(, , , )
300
VontuVontuVontu
/
AND/OR
agentagent
/Vontu
LDAPLDAP
(
()
(500,000)
APIs
Syslog
( Guidance Encase)
API(DRM)
Reporting APIVontuDBVontu
-
CORE IMPLEMENTATION SERVICES
ENTERPRISE ENABLEMENT SERVICES,
2.3
2.3.1.1
3.3.1.1.1
1 policy->index documents->add document profile->
2 policy->add policy->add blank policy->content match document signaturebody
3 Email prevent
3.3.1.1.2
1 policy->index documents->add document profile->
2 policy->add policy->add blank policy->content match document signatureattachments
3 Email prevent
3.3.1.1.3
Proxyweb
1 policy->index documents->add document profile->
2 policy->add policy->add blank policy->content match document signaturebody
3 web prevent
3.3.1.1.4
Proxyweb
1 policy->index documents->add document profile->
2 policy->add policy->add blank policy->content match document signatureattachments
3 web prevent
3.3.1.1.5
1 policy->add policy->add blank policy->content matches keywordbody
2 Email prevent
3.3.1.1.6
1 policy->add policy->add blank policy->content matches keywordattachments
2 Email prevent
3.3.1.1.7
Proxyweb
1 policy->add policy->add blank policy->content matches keywordbody
2 web prevent
3.3.1.1.8
Proxyweb
1 policy->add policy->add blank policy->content matches keywordattachments
2 web prevent
3.3.1.1.9
1 policy->add policy->add blank policy->content matches regular expressionbody
2 Email prevent
3.3.1.1.10
1 policy->add policy->add blank policy->content matches regular expressionattachments
2 Email prevent
3.3.1.1.11
Proxyweb
1 policy->add policy->add blank policy->content matches regular expressionbody
2 web prevent
3.3.1.1.12
Proxyweb
1 policy->add policy->add blank policy->content matches regular expressionattachments
2 web prevent
3.3.1.1.13
1 policy->add policy->add blank policy->
attachments
2 Email prevent
3.3.1.1.14
Proxyweb
1 policy->add policy->add blank policy->attachments
2 Web prevent
3.3.1.1.15
DLP330admin guidepage2798-1 file types
DLP
3.3.1.1.16
meta
advance setting ContentExtraction.EnableMetaDataonmeta
3.3.1.1.17
3.3.1.1.18
C++CJavaC#PerlVHDL
DLPIDM
3.3.1.1.19
1 1Symantec_DLP_10.5_Admin_Guidepage 2982DLPanalyzer3)
2 1
3.3.1.1.20
Symantec DLP330
3.3.1.1.21
EPD 2007EPD205
Symantec DLPIDM
3.3.1.1.22
PCBbrdALLEGRO 16.2ALLEGRO 15.5.1dwgdxf
1 v10.5dwg/dxf/vsdbrd
2 brd20111231
3.3.1.1.23
docdocxxlsxlsxpptpptxmpp
vsdtxtRTFpdfemlrarzipnsfpst
SymantecDLP330110
3.3.1.1.24
gztar7zipbzip
1 v10.5gztar7zip
2 bzip20111231
3.3.1.1.25
RARZIP7
10RAR/ZIP
3.3.1.1.26
1
1 policy
2 select all
2 DLP
3.3.1.1.27
XX
1 SymantecDLPmeta
2 XX/XX/
3.3.1.1.28
SymantecDLPmeta
3.3.1.1.29
SymantecDLPContentExtraction API20111231
3.3.1.1.30
SymantecDLP
1Symantec_DLP_10.5_Admin_Guidepage 298
2DLPanalyzer
3)
3.3.1.1.31
Base64Quoted-printable
Base64Quoted-printable
bodyMIMEEmail preventMIME Content-Transfer-Encoding
Email prevent Content-Transfer-EncodingBase64Quoted-printable
3.3.1.1.32
CCBcc
Email preventcc/bcc
3.3.1.1.33
ToCCBcc
1 v10.5tocc/bccbcccc
2 bccbcccc20111231
3.3.1.1.34
1 v10.5
2 /20111231
3.3.1.1.35
ICAPProxy
Network Prevent (Web) Internet (I