Trend Micro Deep Security 10.0 公開のお知らせ:サポート情報 : トレンドマイクロ

IT セキュリティ

(情報元のブックマーク数

Trend Micro Deep Security 10.0 リリース。機能追加が沢山あるので、SP2位まで待って適用かな。

Trend Micro Deep Security 10.0 を下記日程にて公開いたします。

■公開開始日

2017 年 03 月 10 日 (金)

■主な新機能

Trend Micro Deep Security 10.0 の主な新機能は以下のとおりです。

  • サンドボックス連携
  • 不正プログラム対策機能の強化
    • ランサムウェアがファイルを暗号化する動きを検知して、動作をブロックするとともに、自動的に暗号化されたファイルを復元する機能を搭載します。また、メモリ領域で実行される疑わしいプロセスの遮断も行います。
  • 公開サーバのセキュリティ強化(アプリケーションコントロール
    • サーバにインストールされたアプリケーションをホワイトリスト化し、許可されていないプログラムが実行された際に検知またはブロックすることで、サーバのセキュリティを強化します。また、サーバの管理者ごとにアプリケーションのアップデート権限を付与できるため、容易な運用が可能です。
  • ユーザビリティの改善
  • 対応プラットフォームの拡充
    • Windows Server 2016 対応(Deep Security Agent)
    • SPARC Solaris版Agentで不正プログラム対策に対応
    • SAP連携のWindows対応、ほか

その他詳細については、付属のReadmeファイルや製品Q&A をご覧ください。

サポート情報 : トレンドマイクロ

そうか、先にマネージャーはアップデートしておかないといけないのか。SQL Serverが暗号化されてると設定をしないとダメっぽ

 1.3 Upgrade Notice
   =====================================================================
   - If you choose to upgrade your Deep Security Manager to version 
   10.0 while running older versions of Deep Security Agents under 
   protection, you will be warned during the upgrade installation if 
   this version will no longer be able to communicate with those Agents. 
   Deep Security Manager 10.0 ONLY supports the latest 9.5 SP1, 9.6 SP1 
   and 10.0 versions of Deep Security Agent, and Deep Security Virtual 
   Appliance. Please refer to the "Known Incompatibilities" section of 
   this readme file for details.

   - Prior to upgrading the Deep Security Manager to 10.0, check if the 
   communication between the Deep Security Manager and MS SQL Server 
   database is encrypted. Note that this is disabled by default and 
   would have been manually configured. To check, verify whether the
   Deep Security Manager\webclient\webapps\ROOT\WEB-INF\
   dsm.properties file contains the line:

   database.SqlServer.ssl=require

   If it exists, disable the encryption by deleting the line and
   restarting the Deep Security Manager service before upgrading. Add
   the line back after the upgrade. Failure to disable the encryption
   will cause the upgrade to fail.

   - Deep Security 10.0 includes significant improvements to the 
   upgrade process which contains functionality that checks your 
   currently installed Deep Security components and makes 
   personalized recommendations for your upgrade path. The upgrade 
   process also upgrades the database schema without requiring 
   manual steps.

   
   - As usual, backup your database before upgrading and consider
   performing the upgrade during off-hours. For more information see 
   "Backup and recover your database" on the Deep Security Help 
   Centre https://help.deepsecurity.trendmicro.com/Manage-Components
   /update-database.html

Managerもいろいろ追加されてる

2. What's New
========================================================================

   2.1 Enhancements
   =====================================================================
   This release includes the following enhancements:

	Application control security module
	Docker deployment protection (containers)
	Document exploit protection using connected threat defense
	Enhanced anti-malware and ransomware scanning with behavior 
        monitoring 
        Secure event forwarding to a Syslog/SIEM server 
	using Transport Layer Security (TLS) Usability Enhancements
	Deep Security Scanner (SAP for Windows)
	Affinity settings: Advanced combined mode
	Better upgrade experience
	Access events with Amazon Simple Notification Service 
	(Amazon SNS)
	Updated cloud connectors
	Updated support for Oracle® Solaris 10 and 11 servers

	Got to https://help.deepsecurity.trendmicro.com/What-is-new/
	release_10_0.html for more details.

Linux版Docker Protectionが追加されてる

3. What's New
========================================================================
  
   2.1  New in Deep Security 10.0	
   =====================================================================
   
   Deep Security Agent 10.0 contains support for 
	- Increase security by using application control
        - Docker deployment protection (containers)
        - Document exploit protection using connected threat defense
  
	
   2.2  Resolved Known Issues
   =====================================================================

   This release includes all resolved issues that were resolved in Deep 
   Security 9.6 SP1 except those explicitly listed in the section 
   "Known Issues in Deep Security Agent 10.0" below.

Unixエージェントはマルウエア検索を追加とのこと

2. What's New
========================================================================

   2.1  New in Deep Security 10.0	
   =====================================================================
   
   Deep Security Agent 10.0 contains support for
	- Antimalware scanning 
  
   2.2 Resolved Known Issues
   =====================================================================
   This release includes all resolved issues that were resolved in Deep 
   Security 9.0 except those explicitly listed in the section "Known 
   Issues in Deep Security Agent 10.0" below.

Windows版はマルウエア検索追加、ランサムウエア検索も

2. What's New
========================================================================
  
   2.1  New in Deep Security 10.0
   =====================================================================
   
   Deep Security Agent 10.0 contains support for 
	- Document exploit protection using connected threat defense
        - Enhanced anti-malware and ransomware scanning with behavior 
          monitoring
        - Deep Security Scanner (SAP for Windows)
 

	
   2.2  Resolved Known Issues
   =====================================================================

   This release includes all resolved issues that were resolved in Deep 
   Security 9.5 SP1 except those explicitly listed in the section 
   "Known Issues in Deep Security Agent 10.0" below.

ホワイトリスト化対応も追加らしい

公開サーバーのセキュリティ強化としては、サーバーにインストールされたアプリケーションをホワイトリスト化し、許可されていないプログラムが実行された際に検知またはブロックする、アプリケーションコントロール機能を追加した。

トレンドマイクロ、標的型攻撃やランサムウェア対策を強化したサーバー向けセキュリティ「Deep Security 10.0」 - クラウド Watch

関連URL

screenshot