Gartner Wired and WLAN Magic Quadrant (2014)

. 数据脱敏数据脱敏(Data Masking),又称数据漂白、数据去隐私化或数据变形。

百度百科对数据脱敏的定义为：指对某些敏感信息通过脱敏规则进行数据的变形，实现敏感隐私数据的可靠保护。

这样，就可以在开发、测试和其它非生产环境以及外包环境中安全地使用脱敏后的真实数据集。

可以看到数据脱敏具有几个关键点：敏感数据、脱敏规则、使用环境。

敏感数据，又称隐私数据，常见的敏感数据有: 姓名、身份证号码、地址、电话号码、银行账号、邮箱地址、所属城市、邮编、密码类( 如账户查询密码、取款密码、登录密码等)、组织机构名称、营业执照号码、银行帐号、交易日期、交易金额等。

随着大数据时代的到来,大数据商业价值的挖掘,用户的精准定位,大数据中蕴藏的巨大商业价值被逐步挖掘出来,但是同时也带来了巨大的挑战–个人隐私信息的保护。

个人信息与个人行为(比如位置信息、消费行为、网络访问行为)等，这些都是人的隐私，也是我们所关注的一类敏感信息，在大数据价值挖掘的基础上如何保护人的隐私信息，也将是数据脱敏必须解决的难题。

脱敏规则，一般的脱敏规则分类为可恢复与不可恢复两类。

可恢复类，指脱敏后的数据可以通过一定的方式，可以恢复成原来的敏感数据，此类脱敏规则主要指各类加解密算法规则。

不可恢复类，指脱敏后的数据被脱敏的部分使用任何方式都不能恢复出。

一般可分为替换算法和生成算法两大类。

替换算法即将需要脱敏的部分使用定义好的字符或字符串替换，生成类算法则更复杂一些，要求脱敏后的数据符合逻辑规则，即是“看起来很真实的假数据”。

使用环境，主要指脱敏之后的数据在哪些环境中使用。

普遍按照生产环境和非生产环境（开发、测试、外包、数据分析等）进行划分。

在最近一期的Gartner关于数据脱敏的报告（Magic Quadrant for Data Masking Technology-2014年12月）中根据数据脱敏产品应用场景的将数据脱敏划分为静态数据脱敏（static data masking[SDM]）和动态数据脱敏（dynamic data masking[DDM]）。

JUNIPER AI-DRIVEN ENTERPRISEQUICK START GUIDEEverything YouNeed to GetStarted SellingJuniper AI-Driven EnterpriseSolution⏹⏹⏹If you need additional information, please reach out toyour local partner account manager or field marketingmanager who will assist you with any queries, or email*************************************.⏹⏹Table of ContentsThe Basics (4)Sales Enablement Resources (5)T echnical Training Resources (6)Marketing Resources (7)Customer Events (8)INTRODUCTION TO THE JUNIPER AI-DRIVEN ENTERPRISEAt Juniper, we are driven to deliver network experiences that transform the way people connect, work, and live.When you sell Juniper Mist solutions, you can deliver a superior user experience for your customers while also simplifying IT operations. Optimizing IT experiences saves time and money and allows your customers to best align with their key business objectives.For the most current information on the Juniper AI-Driven Enterprise solution, check here:The products and services that comprise the Juniper Mist solution include: ⏹E X Series Ethernet Switches are designed for enterprise branch, campus, campus and data center.⏹J uniper Wireless Access Points and Juniper Mist Edge convergeWi-Fi, Bluetooth® LE and Io T, and work in conjunction with Juniper Mist cloud architecture driven by AI.⏹J uniper Cloud Services, driven by Mist AI, deliver amazing wired and wireless experiences for end users, Io T devices, and clients while simplifying and automating operations for IT teams.⏹J uniper Mist Wi-Fi Assurance replaces manual troubleshooting tasks with automated wireless operations.⏹J uniper Mist Wired Assurance enables simpler operations, streamlined troubleshooting, and better visibility into the experiences for connected devices.⏹J uniper Mist WAN Assurance enables simpler operations, and better visibility into user experiences across the WAN.⏹M arvis Virtual Network Assistant simplifies everyday troubleshooting with self-driving actions and network performance analysis.⏹P remium Analytics offers network visibility and business insights to drive customers’ digital transformation journey.⏹U ser Engagement uses Virtual BLE array technology and cloud-based machine learning to drive down deployment costs and improve accuracy of real-time indoor location services.⏹A sset Visibility makes it easy to find key assets and people, with detailed location analytics always at your fingertips.Experience-First Networking eGuide – Discover how to maximize user and IT experiences with secure client-to-cloud automation, insight, and AI-driven actions. Watch our CEO explain “Why Juniper”.The AI-Driven Campus White Paper – Deep dive into the power of AIto deliver better user experiences and simplify IT operations. Read the whitepaper.VISITTHE HUBTHE BASICSReady to be bold with Juniper?Whether you’ve recently signed up or just joined as a Juniper Partner, we’ve assembled some useful links below to initiate your journey.These will give you all the information you need to begin selling Juniper AI-Driven Enterprise solutions.PARTNER PROGRAM BASICSUnderstand the Juniper Partner Advantage Program hereBecome a Juniper partner: If you are not currently a Juniper Mist Partner, apply here.Obtain your Juniper Partner Center login here.Partner Center houses resources to help you manage and build your Juniper partner business such as configuration tools, partner program information and sales enablement resources.Visit the dedicated Juniper Mist section of Partner Center here.For our Japanese-speaking partners, we have a dedicated Japanese Partner Center section here.Juniper’s Latest News and AnnouncementsReceive updates on Juniper news with News On Demand updates.Follow Juniper on social media:Corporate:Fac ebookTwitterYouTubeLinkedInVISITTHE HUB Partner: Fac ebook Twitter YouTube LinkedInVISITTHEHUB TECHNICAL TRAINING RESOURCEST o become an authorized Juniperpartner, you will need training andcertification on the fundamentalsand certain specializations. Weoffer ongoing training for you andyour engineers to build the bestskills to support your professionaldevelopment and practice building.Jumpstart Junos OS – Start learning the Junos ® operating system today with learning webinars. Learn the fundamentals or advance your knowledge. Open to anyone regardless of partner or customer status.Mist AI Learning Path – Plot your path to becoming a Juniper Networks Certified Specialist, Mist AI (JCNIS-Mist AI), or a Juniper Network Certified Associate, Mist AI (JNCIA-Mist AI).Juniper’s AI-Driven Enterprise Demo – Learn how to demo the Juniper AI-Driven Enterprise solution.Mist AI-Driven Access Gold Demo – See how to demo Juniper Mist solutions to your customers.On-Demand Partner Webinars – Get up to speed at your own pace.AI-Driven Enterprise Bootcamp Training – Give your engineers the in-depth knowledge they need to present, quote and demo the AI-driven Enterprise solutions.Juniper Learning Academy – This is the best place to start for training on products and tools, available at no charge for partners. Once you complete the training, you can give live demos to prospects and customers.Get trained on Juniper – View the schedule of Juniper training classes, including Juniper Mist solutions. Get trained on-demand or choose an all-access pass for the best value.MARKETING RESOURCESTake advantage of a selectionof great content you can use to engage customers and help drive success in your business.VISIT THE HUBWe provide partner marketing materials in a portal called the Hub. You’ll find marketing campaigns and materials available to support your Juniper Mist lead generation and nurture efforts, including campaigns in a box, recorded webinars, weekly live demos and more. T o access resources on the Hub, you must have valid Partner Center credentials. If you are having login issues, please contact thehub@.Inspire your customers with the Mist AI anthem video.See how Juniper’s mission is to power connections and empower change.Gartner Names Juniper a Leader in the 2020 Magic Quadrant for Wired and Wireless LAN Access InfrastructureDiscover why Juniper solutions, driven by Mist AI, leads the market. Watch this video to see how you can outsource your toughest networking challenges to Marvis Virtual Network Assistant.Invite your customers to join the weekly Wired and Wireless Wednesday live demonstrations. Juniper authorized partners can request a custom invitation and tracking code and receive an attendee report.Take a self-guided tour of the Hub, your source for Juniper marketing assets and cobrandable campaigns.Stop by the AI-Driven Enterprise portal for content to get you started, including website copy, customer invitations, product images, and more. See the latest partner promotions and programs on Partner Center. Get the latest on MDF eligibility and guidelines.VISIT THE HUBDownload Juniper marketing assets, brand imagery, and cobrandable campaigns on the Hub.https:///VISITTHE HUBVISIT THEHUB CUSTOMER EVENTSInvite your customers and prospectsto events, summits and bootcampsto deepen their understanding ofJuniper solutions. Get the latest global event lineup. Join our weekly live demo: Wired and Wireless Wednesdays Track customers who attend Juniper events. Request your own partnerURL for Juniper Mist Events.Follow Juniper Networks and Juniper Partners on social media for latestupdates and eventsPartner Center Main PageJuniper Mist Resource LibraryJuniper Price ListFind up-to-date Juniper prices all in one place.Configurator T oolStreamline the sale with this product configuration and quote tool.Network Product SelectorEmploy this user-friendly tool to select the optimal technology platformfor your customers network.Demo Lab ProgramAs a Juniper partner or distributor, purchase demo equipment andHELPFUL CONTACTS AND LINKSPartner:Fac ebook Twitter YouTube LinkedInCorporate:Fac ebookTwitterYouTubeLinkedIn。

We are a cybersecurity and managed security services leader.Trustwave has more than 20 years of experience in cybersecurity. We offer managed security services, security testing, consulting, technologies and cybersecurity education.Industry analysts recognize Trustwave as a global and regional leader in managed security services.Gartner placed T rustwave in the Leaders quadrant in the 2018 Gartner “Magic Quadrant for Managed Security Services, Worldwide,”1 a global report that assessed 17 of the industry’s top managed security service providers.IDC named Trustwave a leader in managed security services in the IDC MarketScape: Asia/Pacific Managed Security Services 2018,2 as well as the IDC MarketScape: Canadian Security Services Providers, 2018 Vendor Assessment.3You Get Follow-the-Threat™ Security Operations.We deliver our services through a global network of 10 Advanced Security Operations Centers -- your mission control for cybersecurity. But instead of landing space shuttles, these global centers are staffed around the clock to monitor and immediately respond to security incidents that may be impacting your organization.Trustwave SpiderLabs ®, our elite security team, is on your side.Our security breach investigations, threat hunters, malware reverse-engineering projects, millions of scans, thousands of penetration tests, leadership of open-source security projects and contributions to the security community have established Trustwave SpiderLabs as world-renowned experts on the past, present and future of security.Our Trustwave SpiderLabs Fusion Center is a true industry game changer.Our cybersecurity command center employs pioneering actionable threat intelligence to track threat actors, detect them with their clients, and instantly kill those threats inside an organization down to individual endpoints, a feat unprecedented in the managed security services industry.We go way beyond the basics of cybersecurity.Our Threat Detection & Response managed security and professional services help short-circuit an attacker’s activities by detectingcybersecurity threats much earlier and then shutting them down before real damage is done.Through our cyber range in Singapore, a hybrid between an advanced cyber range and an educational center, the Cyber Security Institute is a first-of–its-kind facility to test and train companies in dealing with sophisticated cyber threats.We offer and manage the best of the best, industry-leading security technologies.In addition to Trustwave technologies, we partner with otherleaders in cybersecurity and provide security services to manage solutions from vendors such as Palo Alto Networks, Fortinet, Carbon Black, Splunk and many more. Our technology agnostic approach helps you get the best ROI from your technology investments.Our channel partner program has a 5-Star rating in CRN’s 2018 Partner Program Guide.The 5-Star Partner Program Guide rating recognizes an elitesubset of companies that offer solution providers the best partnering elements and training in their channel programs.Customers in 96 countries rely on Trustwave for their cybersecurity needs.Whether you’re a bank, hotel chain, law firm or government agency, you’re in good company with Trustwave. We tailor our services and your experience based on industry and needs.More than 2,000 security-minded professionals back you up.Our team is deployed across the globe to offer worldwide coverage with regional expertise.1. Source: Gartner, “Magic Quadrant for Managed Security Services, Worldwide” by Toby Bussa, Kelly M. Kavanagh, Pete Shoard, Sid Deshpande, February 27, 2018.2. Source: IDC MarketScape: Asia/Pacific Managed Security Services 2018, (IDC# AP42609818, June 2018)3. Source: IDC MarketScape: Canadian Security Services Providers, 2018 Vendor Assessment (IDC# CA3005218, March 2018)16789102345For more information: Copyright © 2018 Trustwave Holdings, Inc.T o p 10_0818。

跨域认证简单解决方案-使用第三方Cookie概述跨域认证，意味着用户在一个入口登录后可以无障碍的漫游到其它信任域。

也就是所谓的单点登录(SSO)。

对于大型的服务提供着，常用的方法有：使用安全断言标记语言(SAML)、基于公开密钥技术(PKI-Pubic Key Infrastructure)的Kerberos网络认证协议或者使用Windows采用的认证方案LanManager认证(称为LM协议-对于NT 安装Service Pack4以后采用NTLM v2版本)。

这些认证方式需要单独的认证服务器，对于普通的使用者来说，既难已实现，也不太可能搭建单独的服务器。

有没有一种简单又安全的认证方式呢？本文的目标使用Cookie和SHA1结合实现简单又安全的认证，如用户在中登录后，无需再次登录就可以直接使用中提供的服务。

Cookie是什么Cookie 是由Web 站点创建的小文本文件，存储在您的计算机上。

这样，当您下一次访问该站点时，它可以自动获取有关您的信息，例如浏览喜好，或您的姓名、地址及电话号码。

关键词SSO(Single Sign-On）-单点登录SAML(Security Assertions Markup Language)-安全断言标记语言Cross-Realm Authentication -跨域认证PKI(Pubic Key Infrastructure)-公开密钥技术SHA1(Secure Hash Algorithm 1)-安全哈希算法1P3P(The Platform for Privacy Preferences)隐私参数选择平台单一认证模型1、用户使用a_logon.aspx登录服务器2、在a_logon.aspx中自动嵌入iframe其src指向的b_auth.php3、认证成功后在客户端写入Cookie，通过iframe调用b_auth.php 传递认证参数(经过SHA1后)4、b_auth.php认证成功后在客户端写入认证Cookie5、完成和的统一认证问题：上面提到的过程如果使用FireFox浏览器b_auth.php能够成功写入Cookie,如果使用IE6.0及以上版本b_auth.php写入Cookie失败。

Gartner 2023 年十大战略技术趋势解析Gartner 2023 年十大战略技术趋势解析 (1)1.元宇宙与AI 依然备受瞩目 (2)2.十大技术战略，能否应对全球经济衰退？ (3)3.开拓 (4)3.1元宇宙（Metaverse） (4)3.2超级应用（Superapps） (5)3.3自适应AI（Adaptive AI） (5)4.优化 (6)4.1数字免疫系统（Digital Immune System） (6)4.2应用可观测性（Applied Observability ） (6)4.3AI信任、风险和安全管理（Trust, Risk and SecurityManagement） (7)5.扩展 (8)5.1行业云平台（Industry Cloud Platforms） (8)5.2平台工程（Platform Engineering） (9)5.3无线价值实现（Wireless Value Realization） (9)临近年末，许多人已经开始扛起了下一年度的目标KPI ，及时了解不断变化的技术格局以应对随时可能面临的机遇和挑战，对大家来说尤为重要。

全球极具权威的IT研究与顾问咨询公司Gartner 每年都会发布下一年的十大战略技术趋势，今年也不例外，Gartner 2023 年十大战略技术趋势近日新鲜出炉。

新的一年，元宇宙及AI关注度依然超高，其面临的技术挑战与发展前景备受关注。

在全球经济形势放缓的背景下，“可持续性”这一关键词贯穿了2023 年的所有战略技术趋势。

下面是Gartner 高级研究总监高挺（Arnold Gao）对2023 年十大技术趋势的详细解读。

1.元宇宙与AI 依然备受瞩目今年发布的十大技术趋势，最受关注的依然是AI 与元宇宙方向。

关于“元宇宙”在应用层面的可能迎来突破的领域，高挺表示“数字人、工业元宇宙”是离我们更近、更有商业价值的案例。

一些更远的方向如NF T，泡沫比较大，且不太适合我国的监管环境。

Magic Quadrant for Endpoint Protection Platforms2 January 2013 ID:G0*******Analyst(s): Peter Firstbrook, John Girard, Neil MacDonaldVIEW SUMMARYThe endpoint protection platform provides a collection of security utilities to protect PCs and tablets. Vendors in this market compete on the quality of their protection capabilities, the depth and breadth of features, and the ease of administration.Market Definition/DescriptionThis document was revised on 27 March 2013. The document you are viewing is the corrected version. For more information, see the Corrections page on .The enterprise endpoint protection platform (EPP) market is a composite market primarily made up of collections of products. These include:∙Anti-malware∙Anti-spyware∙Personal firewalls∙Host-based intrusion prevention∙Port and device control∙Full-disk and file encryption, also known as mobile data protection∙Endpoint data loss prevention (DLP)∙Vulnerability assessment∙Application control (see Note 1)∙Mobile device management (MDM)These products and features are typically centrally managed and ideally integrated by shared policies.DLP, MDM and vulnerability assessment are also evaluated in their own Magic Quadrant or MarketScope analyses. Longer term, portions of these markets will get subsumed by the EPP market, as the personal firewall, host intrusion prevention, device control and anti-spyware markets have in the past. EPP suites are a logical place for convergence of these functions. Indeed, 53% of organizations in a recent Gartner survey1 already use a single vendor for several of these functions, or are actively consolidating products. In particular, mobile dataprotection is the leading complement to EPP and purchasing decisions regarding the two products are increasingly made together. For most organizations, selecting a mobile data protection system from their incumbent EPP vendors will meet their requirements.In 2012, the large enterprise EPP market is still dominated by Symantec, McAfee and Trend Micro, which together represent approximately 68% of the total revenue of Magic Quadrant participants. Sophos and Kaspersky Lab are the two other global leaders that are competitive across multiple functions and geographies, and push the combined Leaders quadrant market share to 85%. Despite the introduction of new players, the displacement of incumbents is still a significant challenge in the large enterprise market. The biggest impact of the Magic Quadrant Challengers and Visionaries is to push the dominant market players to invest in new features and functionality (sometimes via acquisitions) to stay ahead, and to keep pricing rational. In the less demanding small and midsize market, competition is more intense. A number of Niche Player solutions are dominant in specific regions.The total EPP revenue of the Magic Quadrant participants at year-end 2011 was roughly $2.8 billion, up 4% from 2010. We attribute this growth primarily to increased buying ofmore-expensive suites, offset by lower prices for low-end malware-only solutions. Consequently, EPP revenue growth is more a result of an inflow of revenue from other markets. We anticipate that growth will continue to be in the low single digits in 2013.Microsoft is the best vendor in a position to challenge the incumbent Leaders, primarily due to attractive pricing in its enterprise agreements. Approximately one-third of enterprise buyers1 indicate they are actively considering Microsoft or plan to do so during their next renewal periods. However, Microsoft's slow development, the lack of a single unified security management interface and mediocre test results will temper its adoption. Longer term, we believe that increased displacement of Windows endpoints with application-controlled OSs (such as Microsoft WinRT and Apple's iOS and OS X Mountain Lion) is the biggest market threat. These solutions shift the value proposition of EPP solutions from traditional anti-malware to MDM and data protection capabilities.Return to TopMagic QuadrantFigure 1. Magic Quadrant for Endpoint Protection PlatformsSource: Gartner (January 2013)Return to TopVendor Strengths and CautionsArkoon Network SecurityArkoon Network Security's StormShield EPP solution (formerly offered by SkyRecon Systems) is designed as a seamless integrated EPP with a focus on behavioral protection. Arkoon's Ability to Execute score is hampered by its relatively small market share and limited geographic presence, as well as its still-maturing management capabilities. StormShield EPP is a reasonable shortlist solution for organizations that are in supported geographies seeking abehavior-based approach to malware detection, and for those that are willing to invest extra effort to administer the advanced capabilities of the offering.Strengths∙The vendor's flagship product, StormShield Security Suite, is designed to address system and data protection via an extensible EPP capability that integrates multiplelayers of security. These include a host-based intrusion prevention system (HIPS), a personal firewall, device control, encryption, and an optional, fully integratedsignature-based, anti-malware engine licensed from Avira. The suite boasts a singlelightweight agent (15MB, including anti-malware protection) that is extensible tosupport multiple functions and runs at the kernel level.∙We particularly like Arkoon's focus on advanced behavioral-based HIPS techniques, such as memory overflow protection, anti-keylogging, application control, rootkitdetection, honey pots, privilege escalation, reboot protection and driver management.Remediation and status assessment are enabled with administrator-generated scripts.∙StormShield effectively uses policy-based restrictions to minimize the attack surface with object-oriented policies and configurations that are easy to set up. Policy-based application blacklisting/whitelisting is improved by a challenge response mechanism, which allows users to add software if they type in the justification for the installation ina pop-up window.∙Full-disk encryption and encryption for files and folders on fixed hard drives and removable devices is available. Recent improvements include support for fullyencrypted logical containers in addition to per-file encryption.∙Arkoon has created a bundled mobile data protection product that includes Security Box and StormShield, but without any technical integration.Cautions∙Although it continues to grow rapidly, StormShield has a very small market share in this Magic Quadrant. Neither SkyRecon nor its parent company Arkoon has significant brand recognition or a significant enterprise client base outside of Europe.∙StormShield does not participate in any of the prominent endpoint protection malware tests, so it is difficult to compare its malware detection performance against othersolutions in the market.∙StormShield supports Windows only, and provides no Mac, Linux, Unix, mobile or email server support. Although it works in a virtual machine (VM) environment, there are no features specific to virtualization.∙The full-disk encryption product is immature, compared with those offered by the Leaders in this Magic Quadrant.∙Application control is suitable for allowing or blocking specific applications, or completely locking clients down, but it does not have workflow features or anapplication database that would allow a flexible application control environment.∙The only option for signature-based anti-malware protection is from Avira. Arkoon hasa very small malware research team and is dependent on Avira for signature-basedprotections.∙The management interface is comprehensive, but not recommended for nontechnical users. The console lacks dashboards and context-sensitive help. Much of the advanced capability is achieved by administrators creating their own scripts.∙Ad hoc reporting is not supported. Reports can be filtered, but not changed, and it is not possible to drill down into details.∙There is no out-of-the-box security state assessment beyond the EPP agent status, and no significant integration with operations tools, such as vulnerability.∙The vendor does not yet offer a client DLP solution.Return to TopBeyondTrustBeyondTrust acquired eEye Digital Security in May 2012, and plans to combine eEye's vulnerability analysis and endpoint protection with its privileged management solutions. Current Beyond Trust and eEye Retina customers and enterprises that value integrated vulnerability analysis should consider BeyondTrust's eEye Blink.Strengths∙The management console of eEye Retina and eEye Blink is a Flash-based user interface that manages the various eEye offerings. It provides role-based reporting anddashboards, dynamic associations of target machines via Active Directory and Smart Groups, and additional reporting modules for compliance, configuration and patching.It also provides integration into Microsoft System Center.∙BeyondTrust enables the removal of Windows administrator rights while still selectively escalating privileges for legacy applications. It also provides tools for databasemonitoring and endpoint DLP.∙In addition to licensed anti-malware signature libraries from Norman, BeyondTrust now has a small, but very skilled, team of malware experts that provides excellenttechnical support and malware information.∙The anti-malware techniques include process execution rules, registry protection and file integrity monitoring.∙BeyondTrust is one of the few providers in this Magic Quadrant analysis to offer a service-level agreement (within 48 hours) on new critical exploits, meaning that it will protect against these exploits within 48 hours, even if the system is unpatched.∙BeyondTrust PowerBroker Mobile offers cloud-managed MDM, and Retina can providea mobile vulnerability scan.Cautions∙Prior to the acquisition, eEye was growing quite rapidly, however it had a very small market share in the EPP market, and did not come up in calls with Gartner clients often.eEye was one of the smallest vendors in this market. Its total staff size, including the research and engineering groups, was small compared, with the EPP industry average.Most of its installed base is in North America.∙The vendor's solution has the capability to blacklist applications, but it is a manual process with no trusted sources of change, not a full application control solution.∙BeyondTrust PowerBroker Mobile is in a separate, cloud-based management interface.∙Although the Blink team develops its own signature spyware database and cleanup routines, the solution relies on Norman for anti-malware signatures; therefore,business disruptions at Norman could impact Blink customers. Although the Norman anti-malware engine is tested regularly, Blink does not participate in any industry tests (other than the Virus Bulletin's VB100 test) to demonstrate the effectiveness of itscollection of technologies. Automated malware damage cleanup capabilities arelimited.∙Blink has limited device control capabilities and no encryption capabilities. It lacks the ability to enforce encryption on data that is written to external storage devices, but it does have a number of policies to limit access and writing to external devices.∙Blink supports only Windows OS desktop and server platforms (including Microsoft Internet Information Services [IIS]).∙The anti-malware agent works on a virtualized Windows host. However, it is not optimized for a virtualized environment.Return to TopCheck Point Software TechnologiesCheck Point Software Technologies is a well-known, long-term network security company. It will appeal to organizations that value strong integration between remote access solutions, full-disk and media encryption, and the EPP suite.Strengths∙Check Point offers selective activation of capabilities packaged as "software blades."Blades include a personal firewall, anti-malware (licensed from Kaspersky Lab),full-disk encryption, network access control (NAC) and an integrated VPN.∙Check Point's endpoint management console offers a clean interface with easy navigation and quick access to summary data. The dashboard can be customized for each administrator. Administrators may develop and view user-specific policies across multiple devices.∙In April 2012, Check Point launched ThreatCloud, which compiles a database of known Internet Protocol (IP) addresses that distribute malware, plus URLs and signatures of malicious applications.∙Check Point's Mobile VPN supports iPhone, iPad and Android mobile devices, and manages Exchange email synchronization.Cautions∙Despite its significant enterprise network presence, brand and channel, the vendor has failed to significantly improve its market share or mind share in the EPP market,beyond its installed base of VPN, host firewall and encryption customers. Gartnerclients rarely inquire about Check Point's EPP solutions, nor does Check Point appear in competitive reviews from other sources.∙Check Point's dependence on Kaspersky Lab's engine and signature updates continues to challenge enterprise buyers to differentiate it from Kaspersky Lab, which is rapidly adding other competitive features.∙Check Point views MDM as a network manager's tool; consequently, MDM capabilities are in the SmartDefense dashboard, not the EPP dashboard.∙Check Point protection is oriented to Windows endpoint PCs. Not all software blades are available for OS X, and it doesn't offer protection for specialized servers, such asMicrosoft Exchange, SharePoint or Lotus Notes.∙Although its agent will run in VMs, Check Point has no specific optimization for virtualized environments.∙Check Point's application control capabilities (which it calls "program control"), augmented with its Program Advisor service, are suitable for blocking or allowing aspecific set of applications, but do not provide a manageable default deny application execution environment.∙Check Point does not currently offer integrated network and endpoint DLP, but is pursuing a 2013 road map in response to customer interest.Return to TopEsetEset has built a substantial installed base in EMEA, particularly in Eastern Europe, and it has a rapidly growing small or midsize business (SMB) presence in North America. Its Completeness of Vision score benefits from good malware effectiveness in a lightweight client, but it still suffers from weak enterprise management capabilities and lack of investment inmarket-leading features, such as data protection or more holistic security state assessments. Eset is a good shortlist option for organizations seeking an effective, lightweight anti-malware solution.Strengths∙The flagship enterprise product, Eset Endpoint Security, includes integrated anti-malware, anti-spam, HIPS, device control, Web content filtering and a personalfirewall in a single-agent footprint. Installation can be tailored to specific needs byselecting only the modules that are desired.∙The low performance impact of the Eset product has been noted by many customers.∙Its anti-malware engine is a consistently solid performer in test results. The Eset engine has a strong reliance on heuristics and generic signatures, and includesclient-based malicious URL filtering and sandbox heuristics, which run all executablefiles in a virtual emulator. The vendor recently introduced Eset Live Grid, a cloud-based reputation service.∙The vendor supports a broad range of Windows clients and servers, including Exchange, Lotus Notes/Domino, Linux, and Novell NetWare and Dell storage servers; mobiledevices (Windows Mobile, Android and Symbian); and Apple OS X and Linux desktop platforms. In December 2012, the vendor launched Eset Endpoint Security for Android phones and tablets.∙Eset offers a limited MDM solution with the launch in 2011 of Eset Mobile Security Business Edition for Windows Mobile and Symbian. Eset recently launched EndpointSecurity for Android.Cautions∙The management interface is adequate, but it is still a Win32 application. Eset has a great point-in-time system inspector function, Eset SysInspector, but it cannot storehistoric asset information, nor does it provide any vulnerability or configurationinformation that would aid in security state assessments that go beyond AV status. A separate Web-based dashboard provides a flexible customizable reporting interface,but it does not allow for direct drill-down into the management console.∙Eset is reluctant to advance to data protection with encryption or DLP solutions.∙Removable media/port protection is a good addition, but policy is complicated by drop-down menus making it awkward, and a lack of encryption means policy cannotinclude the option to encrypt data on removable media.∙Clients can be distributed by the management console; however, deinstallation of competitive solutions is an additional service cost that isn't included in the solution.∙Heuristics can add a performance impact, especially on older PCs, although it is not turned on by default.∙Eset doesn't yet offer application control.∙Although Eset Endpoint Security operates in a virtual environment and has a low system impact, it has not been optimized for these environments.Return to TopF-SecureF-Secure, a veteran of the anti-malware industry for more than 20 years, has a very good track record for malware testing results. The vendor is focused on endpoint protection and is less interested in other aspects of the EPP market, such as data protection. F-Secure is a good choice for organizations in supported geographies that prefer dedicated malware protection solutions.Strengths∙F-Secure has consistently good malware test results and performance tests. It provides cloud-based look-ups and a file reputation feature, which considers filemetadata (such as prevalence, source and age) before allowing files to execute. Weparticularly like the sandbox environment for behavior testing on Windows clients,which tests unknown applications in a virtual sandbox for malicious behavior.∙The vendor offers one of the better rootkit detection and removal tools, called BlackLight.∙F-Secure client agents are lightweight, with minimal performance impact.∙Basic device control functionality was recently introduced.∙F-Secure has mobile clients for Android, Research In Motion, Symbian and Windows Mobile, and a cloud-based MDM capability primarily aimed at SMBs. It also offersprotection for a broad range of Linux variants and Mac platforms.Cautions∙F-Secure has very little presence or brand recognition in markets outside of Northern Europe. It has a minimal market share, despite its long-term presence in the market, and it is growing much slower than the overall market.∙Although F-Secure develops some its own signatures and behavioral detection techniques for advanced threats, its solution relies heavily on Bitdefender for themajority of anti-malware signatures; business disruptions at Bitdefender could impact F-Secure customers.∙F-Secure's client/server-based (Windows or Linux) management interface is very limited and is lacking numerous enterprise features. It only has two roles (full orread-only). It does not offer any security state or asset information beyondanti-malware status, and does not provide any significant customizable dashboardcapability or any drill-down into remediation capability. Autodiscovery of newunmanaged agents and Active Directory synching is partly a manual process and can't be scheduled, although automation exists for importing new agents and removinginactive agents. The reporting capability is very basic and does not allow for ad hocreporting.∙F-Secure does not offer encryption or DLP capability. Device control is basic. It does not offer any application control capability.∙MDM capability is not integrated into the endpoint management console. Mac clients are not managed in the same console as Windows clients.∙F-Secure does not provide any protection for SharePoint servers (this is due in 1H13).∙Virtualization support is limited to optimization of the AV clients with randomization of scheduled tasks.Return to TopGFI SoftwareGFI Software has a portfolio of security offerings targeted at SMBs. It has expanded its Vipre Business offering during the past year, integrating patch management and MDM capabilities.GFI is squarely aimed at the SMB market, where ease of use and "set and forget" functionality are sought-after attributes. The vendor should be considered by SMBs looking for straightforward and easily managed anti-malware protection with a low performance impact.Strengths∙The GFI Vipre console is straightforward and easy to use, and provides consistent management across Windows and Mac clients, as well as email anti-malware scanning.∙The latest version of Vipre Business Premium includes integrated PC application patch management capabilities from the GFI LanGuard offering, which will appeal toorganizations that have no other solution for patch management.∙The latest versions of Vipre Business Premium and Vipre Antivirus Business include MDM capabilities for Android and iOS, also using the same integrated console.∙GFI offers a free, Web-hosted malware analysis engine that provides immediate forensic feedback on submitted application files.∙Signature-based anti-malware scanning is augmented with GFI's MX-Virtualization sandboxing technology, which analyzes malware in real time within a partitionedenvironment on the PC.Cautions∙Network discovery of machines without agents uses NetBIOS or Active Directory, which limits discovery of devices to Windows-only devices.∙GFI's patch management capabilities are limited to Windows and Windows applications.Mac OS is on its road map.∙ A device control solution is available separately for an additional cost; however, it usesa different management console, and GFI offers no option for full-drive encryption.∙Other than Exchange email filtering, GFI offers no DLP capabilities.∙GFI has no application control capabilities.∙GFI offers no specific integration with VMware's vShield APIs, although scanning can be randomized to reduce loading.∙The agent would benefit from better tamper protection.∙MDM capability is limited.Return to TopIBMIBM's EPP offering is built on the foundation of its strong client management tool platform, the Tivoli Endpoint Manager (TEM; formerly BigFix). The core malware engine (now called TEM for Core Protection) is provided by Trend Micro, and advanced HIPS capability is provided by Proventia (formerly ISS). These tools are augmented with IBM's X-Force research labs. Large organizations that are considering IBM for client management tools or those looking at Trend Micro should include IBM on their shortlists.Strengths∙TEM provides a converged endpoint management and security operations console that supports large enterprise needs across multiple endpoint types, including mobiledevices.∙TEM for Security and Compliance offers fully integrated patch, configuration and vulnerability management, as well as the ability to monitor other EPP agents, such as McAfee, Symantec and Microsoft.∙TEM for Mobile Devices enables unified MDM of iOS, Android, Windows Phone, Windows Mobile and Symbian devices with the same management infrastructure. Servicesinclude inventory profile management, remote locate and wipe, and app deployment.IBM is rated a Visionary in the MDM software Magic Quadrant.∙Add-on components include TEM for Data Protection, which provides port/device control and DLP. Application control is offered via Bit9 integration with the TEMplatform.∙The security and compliance analytics Web interface can establish and monitor built-in and admin-created key performance metrics and show compliance over time.∙The IBM Global Services group offers a mature managed security services.∙IBM server protection products boast very broad server support for Windows, Linux, HP-UX, Solaris and AIX, including 64-bit support for Windows and Linux, and new AIX6.1 support.Cautions∙IBM is starting to show some traction in this market; however, mind share for this solution, as represented by Gartner client inquiries, is still very low, despite IBM'sobvious size and channel advantages.∙IBM appeals mostly to very large enterprise customers that value the integration of operations and security. The Win32 console is complicated and is not designed fornontechnical users.∙The vendor has a large and somewhat confusing product portfolio in this market, and prospective customers must carefully match desired features with specific productofferings. The complete suite is expensive.∙The TEM console is very powerful, and has more reporting and management capabilities than most EPP security solutions; however, it is still not fully optimized for the security role.∙TEM for Core Protection does not provide AV for Exchange, SharePoint, Lotus Notes and other specialized servers.∙Although IBM has its X-Force security analysis team, it is dependent on Trend Micro for its broad signature database. Disruptions at this critical partner could have an impact on IBM's customers. Integration of the latest Trend Micro engine into the TEM client can take a few months.Return to TopKaspersky LabKaspersky Lab continues to be one of the fastest-growing large vendors in this Magic Quadrant, and its brand awareness is growing outside its large European installed base, improving its ability to execute. The vendor continues to broaden its offering with internally developed features that are tightly integrated into the client and management console, allowing for cross-feature policies. At the same time, Kaspersky Lab continues to perform very well in malware effectiveness testing. Organizations looking for an alternative vendor to the traditional market leaders should evaluate this vendor.Strengths∙The MMC management console is comprehensive and offers granular control and policy.The dashboards can be customized with predefined graphs and are task-oriented. We particularly like the security status dashboard, which rolls up warnings of vulnerability, AV client status, infection information, network events and OS error reports.∙Kaspersky is building out an impressive array of traditional client management tools, including vulnerability analysis, patch management, application inventory, application control and MDM.∙Kaspersky Mobile Security provides MDM capability and security agents for mobile clients. Advanced functionality includes Web threat protection, application control and jailbreak detection.∙Application control capabilities provide a fully categorized application database and trusted sources of change, as well as offering client-level Web filtering for managingwebsites and Web applications.∙Kaspersky Lab is introducing centrally managed file-level and full-disk encryption with preboot authentication for hard drives and removable devices, integrated withendpoint security policies and application and device controls.∙Device control capabilities are very detailed. The solution was recently improved with the addition of integrated files, removable media and a full-disk encryption solution.Encryption is integrated into device control policy to optionally force encryption onremovable media.∙The malware research team has a well-earned reputation for rapid and accurate malware detection. The vendor offers advanced HIPS features, including an isolatedvirtual environment for behavior detection, application and Windows registry integrity control, real-time inspection of code at launch, and integrated malicious URL filtering.On PCs, the endpoint agent (Kaspersky System Watcher) can perform a systemrollback.∙The agent has a small disk and memory footprint for an integrated solution, and signature updates are small and frequent.∙Kaspersky Lab offers broad endpoint platform support, including an agentless VMware vShield solution with an intrusion prevention system/intrusion detection system(IPS/IDS) using VMware Network Extensibility (NetX) technology, all managed byKaspersky Security Center.。

Gartner公司日前定义在2012年排名前十的战略技术及其发展趋势。

Gratner公司将此定位为将在未来三年对企业产生巨大影响的战略技术。

这些技术有可能是已经在广泛使用的已有技术，也可能是在未来五年有潜力影响市场的新技术。

这些技术的特点有：1）符合多数组织的战略需求。

2）对组织的计划，方案，举措有长期的影响。

2012的十大战略性技术包括：1.平板电脑的媒介及其延伸（Media Tablets and Beyond）企业期望获得可以管理多个智能用户的多样化环境。

2.以移动为中心的应用和接口（Mobile-Centric Applications and Interfaces）应用程序本身有可能转向更集中和简单的应用程序，可以组装成更复杂的解决方案。

这些变化将推动需要新的用户界面设计技巧，以移动为中心，强调触摸，手势，搜索，语音和视频。

同时，移动企业平台工具正在兴起，HTML5可以长期解决跨平台问题。

3.上下文感知及大众用户体验（Contextual and Social User Experience）上下文感知计算利用从终端用户处获得的环境、活动、偏好等方面信息，以提高与用户或者对象在交互方面的质量。

预计到2013年，上下文感知的应用程序会出现4.物联网（ IOT）IOT的主要技术包括：图像识别，嵌入式传感器，近距离无线通讯技术。

这些技术的发展现在已到达临界点，物联网将在未来几年带来经济的引爆点。

5.应用程序商店和市场（App Stores and Marketplaces）Gartner预测，到2014年，全球用户将有超过70亿美元用于在应用程序市场下载手机应用。

企业应该在应用程序市场反面作出努力，并以风险和价值来分割应用程序。

6.下一代的分析方法（Next-Generation Analytics）分析方法在沿着三个关键方面发展：1）从传统的离线分析发展为在线嵌入式分析；2）从分析历史数据解释发生了什么转为分析历史数据和实时数据，在多个系统中进行模拟来预测未来；3）从结构化简单的数据分析转为分析许多类型的复杂信息。

超融合三方论证报告超融合三方论证报告一、背景介绍•超融合是指将计算、存储、网络等基础设施整合在一起，构建高度集成化的虚拟化环境。

•超融合技术在当前的数据中心领域得到广泛应用。

二、超融合的优势1.简化部署和管理：–架构整合了计算、存储和网络功能，降低了配置和部署的复杂性。

–提供集中化的管理界面，便于管理员进行统一管理和监控。

2.提升性能和扩展性：–高度优化的硬件和软件协同工作，提供更高的性能和更低的延迟。

–支持线性扩展，可以根据需求轻松增加计算和存储资源。

3.节约成本：–硬件资源共享，避免了低效的资源利用。

–能够通过软件定义存储和网络，减少了对专用硬件的需求。

三、三方论证1. 学术界观点•许多学术研究指出，超融合架构可以提供更高效的资源利用和更简化的管理方式。

•学术界普遍认为超融合技术是数据中心未来发展的趋势。

2. 业界观点•众多科技公司已经将超融合技术应用于自身的数据中心，取得了显著的成果。

•业界普遍认可超融合技术对于解决传统数据中心面临的挑战具有重要意义。

3. 用户观点•一些企业用户表示，超融合技术让他们的IT部门更加灵活和高效。

•用户们强调超融合架构在降低成本和提升性能方面的显著优势。

四、结论•超融合架构的简化部署和管理、提升性能和扩展性、节约成本等优势已经得到了学术界、业界和用户的三方论证。

•超融合技术有望成为未来数据中心的主流架构，值得进一步推广和应用。

以上是关于超融合的三方论证报告，该报告通过列点的方式呈现了超融合技术的优势，并进行了学术界、业界和用户三个方面的论证。

通过分析不同观点，得出了超融合技术有望成为未来数据中心主流架构的结论。

五、建议•鉴于超融合技术的优势和前景，建议企业在数据中心的规划和更新中，积极考虑采用超融合架构。

•在选择超融合解决方案时，应根据实际需求和预算制定明确的选型标准，选择适合自身业务的产品和厂商。

•引入超融合技术后，应充分利用其集中管理和监控的功能，优化资源配置，提高运维效率。

安全评估类企业排名
根据不同的评估标准和方法，以下是一些安全评估类企业的排名列表，供参考：
1.世界大型保险企业协会（Insurance Information Institute，III）
2.斯坦福生物安全和细菌感染项目（Stanford Biosecurity and Biotech Infection Rankings）
3.全球反恐怖主义指数（Global Terrorism Index）
4.世界经济论坛全球竞争力指数（World Economic Forum Global Competitiveness Index）
5.美国国家公共调查办公室数据（National Public Survey Office Ranking）
6.Gartner魔力象限（Gartner Magic Quadrant）
7.美国消费者信用活动监管局（Consumer Financial Protection Bureau）
8.货币政策和全球金融稳定与发展网络指数（Network for Greening the Financial System）
9.美国国家环境信息系统（National Environmental Information System）
10.美国联邦贸易委员会（Federal Trade Commission）
请注意，这些排名列表可能在不同的时间和评估标准下有所变化，建议根据自己的具体需求和背景进行详细调查和比较，以选出最适合的安全评估类企业。