Symantec Endpoint Protection and Symantec Endpoint Protection Small Business Edition will provide businesses of all sizes with advanced new protection while improving system performance. Complete with advanced features to secure virtual infrastructures and powered by Insight, Symantec’s award-winning community-based reputation technology, Symantec Endpoint Protection 12 will detect sophisticated new threats earlier and more accurately than any other security product. Symantec Endpoint Protection offers comprehensive defense against all types of attacks for both physical and virtual systems. It seamlessly integrates 9 essential security technologies in a single, high performance agent with a single management console.
Register for the public beta program here: http://tinyurl.com/6xslnfn
2. Jan, 2007 - 250,000 viruses
Dec, 2009 – over 240 million
2
3. Malware authors have switched tactics
75% of malware infect less than
50 machines
From: To:
A mass distribution of a A micro distribution model e.g.
relatively few threats e.g.
The average Vundo variant is
Storm made its way onto millions distributed to 18 Symantec users!
of machines across the globe The average Harakit variant is
distributed to 1.6 Symantec users!
3
4. A Security Catastrophe… the growth in AV signatures
10,000,000
8,000,000
6,000,000
Signature based scanning
4,000,000
won’t keep up
2,000,000
0
5. Introducing Symantec Endpoint Protection 12
Malware
Protection What’s New
Access Personal - Unrivaled Security
Control Firewall Insight
Symantec SONAR
Endpoint
- Blazing Performance
Protection Faster Scans
App Intrusion
Control Prevention
- Built for Virtual Environments
Identify and Manage Virtual
Device Clients
Control Reduced Scan Overheads
5
6. Powered by
Insight
Proactive protection against new, mutating threats
• puts files in context, using their age, frequency, location and
more to expose threats otherwise missed
• using community-based security ratings
• derived from Symantec's more than 175 million endpoints
6
7. How Insight Works Check the DB
4
during scans
2 Rate nearly
2.5 billion
every file on
the files
internet
1 Build a
175
collection
million
network
PCs
Is it new?
Bad reputation?
Prevalence
Age
Source
Provide 3 Look for
5 associations Behavior
actionable data Associations
8. Unrivaled Security
Hackers mutate threats to evade fingerprints
Mutated threats stick out like a sore thumb
It’s a catch-22 for the virus writers
– Mutate too much =Insight finds it
– Mutate too little = Easy to discover & fingerprint
8
9. SONAR – Completes the Protection Stack
SONAR
Network IPS &
Browser
• Monitors processes and
Protect threads as they execute
• Rates behaviors
Insight • Feeds Insight
Lookup
File Based
Protection –
Sigs/Heuristics Only hybrid behavioral-
reputation engine on the planet
Real time Monitors 400 different
behavioral application behaviors
SONAR Selective sandbox (ex Adobe)
9
10. Proven Most Effective in Real World Test
100% 100%
3.8%
13.5%
90% 90%
26.9%
3.8% 32.7%
80% 40.4% 80%
44.2%
70% 70%
% of samples
3.8% 15.4%
% False Positives
60% 60%
5.8%
3.8%
50% 50%
96.2%
40% 82.7% 40%
30%
63.5% 30%
57.7%
53.8% 51.9%
20% 20%
Infected
10% 10% Partial
Blocked
4% FP
0% 0%
Symantec Sophos Kaspersky Trend Micro Microsoft McAfee
10
11. Most Effective Remediation
120 30
110
100 104 25
Number of False Positives
94 93
Remediation Score
80 20
75
(higher is better)
(lower is better)
69
60 15
40 10
20 24 5
1
0 0
Symantec Kaspersky Microsoft Sophos Malwarebytes McAfee Trend Micro
11
12. Insight: Faster than Traditional Scanning
Insight - Optimized Scanning
Traditional Scanning Skips any file we are sure is good,
Has to scan every file leading to much faster scan times
On a typical system, 70% of active
applications can be skipped!
12
13. Tests Prove SEP 12 Outperforms Competition
Symantec Endpoint Protection 12 Scans:
3.5X faster than McAfee
2X faster than Microsoft
Ranked 1st in overall Performance!
160
140
120
100
80
60
40
20
0
Symantec Kaspersky Trend Micro Microsoft Sophos McAfee Average
13
14. Lowest Memory Use
180.0
160.0
140.0
120.0
100.0
80.0
60.0
40.0
20.0
0.0
Symantec Kaspersky Trend McAfee Sophos Microsoft Average
Memory Usage Micro
Symantec Endpoint Protection 12 uses:
66% less memory than McAfee
76% less memory than Microsoft
PassMark™ Software, Feb., 2011 - http://www.passmark.com/AVReport 14
15. Built for Virtual Environments
Virtual Client Virtual Image Shared Insight Resource
Tagging Exception Cache Leveling
Together – up to 90% reduction in disk IO
15
16. Symantec Endpoint Protection
Small Business Edition 12.1
Fastest •Powered by Symantec
Insight and SONAR
•Support for Macintosh
Most Effective
•Faster Installs and
Upgrades
Simple
•Smart Scanning
16
18. What’s Right For Your Business?
Endpoint
Endpoint
Feature Protection Small
Protection
Business Edition
Seats 5-99 seats 100+ seats
Antivirus/Antispyware • •
Desktop Firewall • •
Intrusion Detection/Prevention • •
Generic Exploit Blocking • •
Protection for Mac OS X and Windows • •
Protection for Linux •
Device and Application Control •
Network Access Control Self-Enforcement •
Flexible, granular policy management •
Enhanced Virtualization Features •
18
20. Disclaimer
“Any forward-looking indication of plans for products is
preliminary and all future release dates are tentative and are
subject to change. Any future release of the product or planned
modifications to product capability, functionality, or feature are
subject to ongoing evaluation by Symantec, and may or may not
be implemented and should not be considered firm
commitments by Symantec and should not be relied upon in
making purchasing decisions.”
20