概述
McAfee Change Control 软件消除了服务器环境中可能会导致安全违规、数据丢失和服务中断的更改活动。McAfee Change Control 使您轻松地满足监管合规要求。
持续监控并实时管理更改 - 通过启用即时更改检测及提供详尽的警报机制,跨越各分散远程位置保护关键系统、配置和内容文件。
防止篡改重要文件和注册表项 — 实施更改策略并阻止所有未经授权的更改,无论这些更改是出于恶意企图还是错误操作。
满足 PCI DSS 监管要求 - McAfee Change Control 文件完整性监控 (FIM) 软件可让您实时验证 PCI 合规性。其中包括简化入门操作的现成 FIM 规则,并包含用于提交简单 PCI 报告的 QSA 友好报告。
避免与更改相关的服务中断和延迟 - 拦截未经授权的更改,同时自动记录并核对应急修复及其他流程外更改,以方便审核。
摆脱资源密集型合规策略 - 消除往往与 SOX 指令及其他法规相关的容易出错的资源密集型手动合规策略需求。借助 McAfee Change Reconciliation 软件(可选),McAfee Change Control 可让您构建自动化 IT 控制框架,在单一报告系统中提供验证合规性所需的全部信息。
实现集中更改管理 - McAfee Change Control 与 McAfee ePolicy Orchestrator (McAfee ePO) 软件集成,以便实施集中 IT 管理。
ePO 与 BMC Remedy 单击集成 - McAfee Change Control 和 McAfee Change Reconciliation 软件(可选)为轻松集成 ePO 软件与各种领先的企业管理平台(包括 BMC Remedy)奠定了基础。
特点和优势
对文件完整性实施不间断监控
通过 McAfee Change Control 文件完整性监控 (FIM) 软件遵守 PCI DSS 要求,同时持续跟踪文件和注册表项更改并确定哪些人员对哪些文件进行了更改。
拦截服务器环境中的恶意更改
保护关键系统文件、目录和配置,防止篡改 McAfee Change Control 的更改防护软件。除非更改符合既定策略,否则绝不允许对服务器环境进行任何更改。
从单一控制台实施控制
使用 McAfee Change Reconciliation 软件(可选)通过 McAfee ePolicy Orchestrator (McAfee ePO) 软件集成 McAfee Change Control 与各种企业管理系统。McAfee Change Reconciliation 软件包含 BMC Remedy 单击集成功能。
内存需求量小且运行开销低
对服务器性能的影响可忽略不计。该软件内存使用量小、不执行文件扫描(因而不会影响系统性能)、易于设置且其运行开销微乎其微。
系统要求
有关系统要求的完整列表,请参阅平台支持矩阵。
演示/教程
McAfee Change Control
Learn about McAfee Change Control features: integrity monitoring, change prevention, and reconciliation.
McAfee Continuous Compliance (English)
Use a single solution and achieve continuous compliance with McAfee Configuration Control.
McAfee Risk & Compliance (English)
Learn how McAfee Risk and Compliance products scan your entire network, providing complete visibility and ensuring proper protection.
新闻/活动
新闻
未找到结果活动
未找到结果按需
未找到结果社区
论坛
未找到结果博客
- RDP+RCE=Bad News (MS12-020)
Jim Walter - 三月 14, 2012
See March 15 and 16 updates at the end of this blog. —————————————————- The March Security Bulletin release from Microsoft was relatively light in volume. Out of the six bulletins released, only one was rated as Critical. And for good reason. MS12-020 includes CVE-2012-0002. This flaw is specific to the Remote Desktop Protocol (RDP) present on Read more... - An Update on DNSChanger and Rogue DNS Servers
Jim Walter - 三月 06, 2012
In late 2011, the FBI released documents and data focusing on “Operation Ghost Click.” This malicious operation, leveraging a variety of DNSChanger-type malware, was defined by the FBI as an “international cyber ring that infected millions of computers.” Associated malware samples and events can be traced back several years, and multiple platforms were targeted. To this day many remain Read more... - McAfee Q4 Threats Report Shows Malware Surpassed 75 Million Samples in 2011
David Marcus - 二月 21, 2012
Today we released our Fourth Quarter 2011 Threat Report, revealing that malware surpassed the our estimate of 75 million unique malware samples last year. Although the release of new malware slowed a bit in Q4, mobile malware continued to increase and recorded its busiest year to date. Malware The overall growth of PC-based malware actually Read more... - Cultural Security: Promoting Security Policies Using Organizational Culture
Steven Fox - 九月 06, 2011
Most of us refer to security policies in much the same way as we refer to our car manuals – when something unexpected happens. We know these documents have useful information. However, their utility is tied to situations where answers do not present themselves readily. According to Chris Noel, SVP of Product Management at ANXeBusiness, Read more... - Building an Arsenal of Best-in-Breed Database Security Solutions
Eric Schou - 八月 19, 2011
Visit any news site on the Web, and undoubtedly you’ll come across a barrage of articles publicizing the details of yet another data breach. With the prominence of SQL injection attacks, and malicious insiders and hackers exploiting sensitive data stored on unpatched and vulnerable databases, enterprise organizations have found themselves reevaluating their security strategies. Following Read more...