8e6 Technologies
- Threat Analysis Reporter (NEW)
Closing
The Gap on Internet Threats Download- Data Sheet
As perimeter security becomes more mature,
Web threats increase from users inside the perimeter,
becoming one of the most difficult security challenges
for today's networks. Network administrators need
tools to monitor and control these threats and
enforce their Internet Acceptable Use Policies.
8e6 Technologies' Threat Analysis Reporter is
a scalable appliance designed to deliver real-time
graphical snapshots of Internet traffic, supported
by real-time remediation tools to manage and control
user-generated Web threats.
 Threat
Analysis and Forensics
Along with the Enterprise Reporter,
the Threat Analysis Reporter provides early threat
warning and pinpoints suspect Web activity that
poses a risk to the organization or network. Aided
by extensive drill-down capabilities, administrators
can investigate and analyze further into sources
of the threats, building compelling macro or micro
forensic reports. Better knowledge leads to better
decisions and the Enterprise Reporter and Threat
Analysis Reporter give that advantage to administrators.
KEY
FEATURES:
Threat
Analysis Report Dashboard
The 8e6 Threat Analysis Reporter provides
a unique real-time "dashboard gauge"
view of various threats on the network. These
threats are both categorized by the entire organization
and for individuals. Administrators are able to
get an organizational snapshot of Internet activities
and identify the threat categories at a glance,
as well as spot the "top offenders"
based on predefined thresholds and policies. The
gauges are user-definable and can be "drilled"
to show more detailed views of the particular
threat. Administrators can easily customize gauges
to monitor different groups and threats within
their organization.
Threat
Scoring and Ranking
Administrators can adjust the threat
score by setting category weights based upon policy
requirements. Threat scores can be tuned to meet
the needs of an organization via category weighting
interface. The overall ranking table provides
the administrator with a quick view of the activity
of all the users in the system. The admin can
then utilize the overall ranking table to setup
alerts based on the high scores from the table.
Drill
Down Capability
The 8e6 Threat Analysis Reporter provides
an intuitive interface to drill down from individual
gauges to the subcategories monitored by those
gauges to the individual users for analysis. This
allows the Administrator to follow the trail of
scores on a gauge all to the individual user.
Trend
Charting
The "trend charting" feature
provides a historical trend view of user activities
based upon predefined categories. The trend chart
can identify potential threats and threats based
upon time or policy management for threat scoring.
Administrators can customize the trend chart to
view trends for specific time periods.
Alert
Notification
The alert notification feature allows
Administrators to set predefined alert actions
based upon alert policy settings. Alerts are triggered
when policy violation has occurred. Whenever an
alert is triggered the admin will see a pop-up
window on his/her screen that gives information
about the offending user. In addition, the alert
manager could send out an email or SNMP, record
all activities or lock out the user based on alert
settings.
Threat
Probes
Threat probes enable administrator to
launch real time probes to monitor individual
threat activities. The Probe records all user
activities in a predetermined time frame. Detailed
logs can be generated for further analysis or
legal compliance.
Lock
out and Remediation
Lock out and Remediation allows Administrators
to lock out policy violators or potential threats
to the organization that require immediate action.
The lock out mechanism can be set from low severity
(category lock out), medium severity (internet
access lock out) and high severity (quarantine
no network access). Administrators can do a manual
lock out on a user or set up automatic lock outs
via Alert Manager.
|
