McAfee Global Threat Intelligence Proxy (McAfee GTI Proxy) enables McAfee VirusScan Enterprise nodes to perform McAfee GTI file reputation (formerly known as Artemis) queries from within the enterprise network without requiring direct access to the public McAfee cloud from all McAfee VirusScan Enterprise (version 8.7 or later) endpoint systems. With McAfee GTI Proxy, organizations ensure that they have up-to-date threat protection and robust virus detection capabilities, including a strong defense against advanced persistent threats and botnets, even if Internet access is limited.
Consolidated cloud communications — Driven by compliance or other factors, organizations often have unique requirements for allowing applications to access resources on the Internet. For organizations operating limited Internet access environments, McAfee GTI Proxy consolidates communications between McAfee VirusScan Enterprise clients that have McAfee GTI file reputation queries activated and the McAfee cloud via a set of auditable proxy servers.
Streamlined deployment and management — McAfee GTI Proxy is delivered as a VMware virtual appliance and managed by the McAfee ePolicy Orchestrator (ePO) platform. Optimized for efficiency, McAfee GTI Proxy requires little additional network overhead.
Real-time threat protection — Leveraging McAfee GTI via the cloud to resolve real-time file reputation queries, McAfee GTI Proxy identifies suspicious files that may contain malware.
McAfee GTI Proxy supports custom reputation entries enabling local intelligence to override the McAfee Global Threat Intelligence reputation response. Administrators can specify whether a triggered file should have a clean or unclean response regardless of the reputation given by McAfee, enabling rapid response to suspected threats and false positive prevention.
Close the protection gap with McAfee Global Threat Intelligence (GTI). McAfee GTI offers comprehensive, real-time protection against both known and emerging threats and McAfee GTI Proxy enables GTI support for VirusScan Enterprise clients. McAfee GTI, a cloud-based service using reputation-based threat protection in addition to other techniques, correlates real-world data collected from millions of sensors globally and delivers automated intelligence to VirusScan Enterprise via the GTI Proxy.
Support up to 100,000 PCs per virtual appliance, reducing management costs.
Communications between GTI Proxy and the McAfee cloud are handled via UDP wrapped in SSL (which is DTLS on port 443).
These are minimum system requirements. Actual requirements will vary depending on the nature of your environment.
For a technical summary on the McAfee product listed above, please view the product data sheet.
Get answers to commonly asked questions about McAfee Global Threat Intelligence and McAfee GTI Proxy.
Most malware is created for economic purposes. To name just a few of our reports and blogs on this topic, we have written about Cybercrime Exposed, stolen data, and the Target point-of-sale malware. But sometimes it’s not clear to our customers how much time and skill malware authors invest in their tools. A recent case […]
Every year McAfee Labs publishes its McAfee Labs Threats Predictions Report that identifies the top threats it foresees affecting the security landscape over the next year. The recently published 2014 Threats Predictions Report highlights the top forecasted threats based on directions in attack behavior seen 2013. When I review the predictions for 2014, it’s validating […]
The post From Predictions to Prevention: The Big Three in Network Security appeared first on McAfee.
With the plethora of mobile apps flooding the market today, offering literally hundreds of thousands of options for any variety of needs and wants from banking to gaming—it’s probably difficult to pin down a favorite for most people. Or is it? A recent Consumer Intelligence Research Partners (CIRP) poll found the majority of mobile users […]
Last week during the holiday break I spent a lot of time catching up on my industry reading and felt compelled to provide some clarity to you, our channel partners, on a very hot topic with customers –advanced threats. In this blog, I will discuss the changing security threat landscape, the vital need for a […]
At the 2013 RSA Security Conference, Scott Taschler, Systems Engineer at McAfee, helped sum up the McAfee ESM experience: fast, efficient, and easy to use. McAfee Enterprise Security Manager (ESM) delivers fast, intelligent, and accurate SIEM and log management on all systems, networks databases, and applications. McAfee ESM stands out thanks to its tight integration […]