SECUREWORKS - PowerPoint PPT Presentation

1 / 25

About This Presentation

Title:

SECUREWORKS

Description:

secureworks truin 1. 2. truin 3. 1. – PowerPoint PPT presentation

Number of Views:509

Avg rating:3.0/5.0

Slides: 26

Provided by: Yiho

Category:

Tags: secureworks

more less

Transcript and Presenter's Notes

Title: SECUREWORKS

1
SECUREWORKS TRUIN ?? ???
??????
2
?? 1. ???? 2. TRUIN ???
?? 3. ?? ?? ?? ??
3
1. ?? ??
4
TRUIN - ? ?

TRUIN ? ????? ???? ??? ??? ??? ??? ???? ??? ? ???
SSL ? ??? ??? ??? Proxy??? ?? ??? VPN??
?? Network????? ?? ?? Authentication ? SSL, WTLS
??? ??? ???? Appliance? ????? ?? Firewall? ???
???????
????
Internet? ??? ?? ???? ??? ??? ????
?? Infrastructure?? ???? ?? ??? ?? / ?? ??? ??
??? Client????? ?? ???
?? ????? ?? ??? End user ? Back-end ??? ?? ???
???? ? IT??? ?? ??? ?? ?? TCO, ?? ROI??

SSL ?????

Office
Web Server
???
Client
SSL VPN
ERP Server
Solution Provider
DEV Server
Client
.
Employee, Partner
5
TRUIN - ?? ? ??
TRUIN ?? ? ??

Instant Private Web
1?? ??? ?? ??? Web? ?? ?? ??
?? ??? ????? ?? ?? ?? ?? ??
??? ?? ??? ??? ?? ??
1,000? ??? ???? ????? ??? ??
??? ????? ?????? ?? ?? TLS? SSL? ?? ?? Web
Server?
??? ? ?? ???
Browser-Based Interface? ??? ????(Web Base? ???
????)
SSL ??? ? ??
SSL?? ?? ? ???? ??
???? ??? ??? ???? ??(????? ????)
20,000 Session ?? ??

6
TRUIN - ????
TRUIN ?? ??

Web? Non-web ?? ??? ???? ??? ??? ??- SSL? ???
VPN?? ??
- FTP, Telnet ?? Non-Web??? ??? ??
???? ??/??- ???? ?? ?? ??? ??? access control
- ???, Group, Role, Server? ????(EAM)
- ???? ??? ??? ??? ?? ?? (??? ???? ??, ?)
???? / ????- ??? ??? ???? ??? ?? ? ??? ??? ???
control?? ??
- ???? Application Server? ?? ?? ? Routing??
- Application Server?, group?, role? ???
??/?? ??
- ??? / ???? ??
- LAN, WAN, Consol ?? ?? ?? ??
Firewall ?? ?? ?? ???? ??
- Firewall ????? ?? ???? ??? ??? Tool
- ???? ??? ??? ??
- ??? ??????? ??, ???? ??? ??? ????
- ????? ??? ?? ????, ?

7
TRUIN ?????
TRUIN 2000
?? ???? ??
S/W VPN Firewall (??OS)
H/W Intel Xeon 3.6GHz Dual Architecture 4GB Main Memory 2G CF Memory 320GB S-ATA Hard Disk 10/100/1000 Ethernet 4Ports 1000 (LC Type) 4Ports 2U Rack Type ?? - ?? ?? ???(550W Redundancy Power)

??? ??? ????? ??
(RSA(4096), DSA, DH, RC2, RC4, RC5-DES, 3DES,
SHA-1, MD5, SEED, AES)
Protocol SSL v1, v2, TLS v1, WTLS
??????? ?? ?????
EAM, SSO ????
?? ?? ? ?? ???, IP??, ??? ?? ?? ??? ?? ?? ?? ??

8
TRUIN ?????
TRUIN 500
?? ???? ??
S/W VPN Firewall (??OS)
H/W Intel P-D 2.8GHz Dual Architecture 2GB Main Memory 2GB CF Memory 320GB S-ATA Hard Disk 10/100/1000 Ethernet 4Ports 1000 (LC Type) 4Ports 2U Rack Type ?? - ?? ?? ???(550W Redundancy Power)

??? ??? ????? ??
(RSA(4096), DSA, DH, RC2, RC4, RC5-DES, 3DES,
SHA-1, MD5, SEED, AES)
Protocol SSL v1, v2, TLS v1, WTLS
??????? ?? ?????
EAM, SSO ????
?? ?? ? ?? ???, IP??, ??? ?? ?? ??? ?? ?? ?? ??

9
TRUIN ?????
TRUIN 100
?? ???? ??
S/W VPN Firewall (??OS)
H/W Intel P-4 2.8GHz Architecture 512MB Main Memory 2GB CF Memory 80GB IDE Hard Disk 10/100 Ethernet 4Ports 2U Rack Type ?? - ?? ?? (220W Single Power)

??? ??? ????? ??
(RSA(4096), DSA, DH, RC2, RC4, RC5-DES, 3DES,
SHA-1, MD5, SEED, AES)
Protocol SSL v1, v2, TLS v1, WTLS
??????? ?? ?????
EAM, SSO ????
?? ?? ? ?? ???, IP??, ??? ?? ?? ??? ?? ?? ?? ??

10
??? ?? ?? ??
?? ?? ??????? ?? ????? ??? ????
? ? ? ????? ????/ ???? - ??? SSL ?? ??? ???? ? ???? ?? - SEED?? ??? SSL?? ??? ???? ? ???? ?? - ??? SSL?? ??? ???? ? ???? ??, SEED?? - ??? SSL?? ??? ???? ? ???? ?? - ??? SSL?? ??? ???? ? ???? ??
? ? ? ??? ?? - ID/Pass?? - PKI?? ?? - ??????? ID/PASS - ID/Pass??- ????? ??- PKI?? - ID/Pass??- PKI?? - ID/Pass??
? ? ? PC?? ? OTP ?? ?? ??? ?? ??? ???
? ? ? ????? ??(????) ??? ?? ?? ???
? ? ? ??Application - Web Based Application - C/S??? ?? Application - netbios (windows file ??) - Web Based Application - C/S??? ?? Application - Web Based Application - C/S??? ?? Application - netbios (windows file ??) - Web Based Application - C/S??? ?? Application - netbios (???? ??) - Web Based Application - C/S??? ?? Application - netbios (???? ??)
? ? ? ??? ?? Windows, Linux, Mac OS Windows, Linux, Mac OS Windows, Linux, Mac OS Windows, Linux, Mac OS
? ? ? ???? ??, ???, ???, MAC ADDRESS, IP ???,???? ??, ???, ???, MAC ADDRESS, IP ???,???? URL??? ??
? ? ? Client Agent ActiveX, Java Applet ActiveX, Java Applet ActiveX, Java Applet ??? S/W?? ActiveX, Java Applet
? ? ? Idle Time out ?? ?? ?? ?? ??
? ? ? ??? ?? ?? ??? ?? ???? ???
? ? ? ?????? ??(????) ???(??? ??) ???(??? ??) ???(??? ??) ???(??? ??)
? ? ? ?? ???? ?? ?? LDAP, ACTIVE DIRECTORY, RADIUS LDAP, ACTIVE DIRECTORY, RADIUS LDAP, ACTIVE DIRECTORY, RADIUS LDAP, ACTIVE DIRECTORY, RADIUS LDAP, ACTIVE DIRECTORY, RADIUS
11
2. SSL ??? ??
12
TRUIN ???
Mobile Users
Head Office
Application Server
??? ??? ?? ?? ???? ??
Employee
TRUIN (SSLVPN)
?????
?????

Internet? ??? ?? ???? ??
SSL?? ?????/??? ????
L4???? ?? 2?? SSL????
??????
?????? ?? ??

? ?
???
?????
13
TRUIN ??? ????
?
Mobile Users
?? IP? ??
Head Office
????
?? ?? ??/??
?
???? ????? ???? ?? ??Setting
Server1
Server2
Server3
SSL
?
?
Server1??? ????(Domain??)
- Server1??? ??? Domain? ???? ??IP/??
?? ? ?? ??? ?? ??
?????
?????
Partner Company
1.???? ???? Application Server ?? ??
???Application Server? ??IP? ?? ?SSL?
Applcation Server??? DNS? ?? 2.Client? Server1?
?? ????(????? ??) 3.??? ??? ?? Server1?? ????
?? 4.??? ???? ? ??
? ?
???
?????
14
3. ?? ?? ?? ??
15
SSL ??? ??
Client ?????? ???? ??
?? ???
CA??
Application Server
Off-line
SSL
Application Server
Client (browser)
.
????? / ?????
SSL ??? ?? ??
?? ?? ? ??? ?? ??
???? ?? ??? ???? ?? ??? ??
???
Pre-Master?? ???? ?? ????? ??
Pre-Master?
Pre-Master?? ?? Master???
??? Master?? ??
Master?? ?? ??? ???? ??? ?? ??? ???
16
?? ???(??? L4 ???)
Mobile Users
Head Office
L4???? ??? ?????
Application Server
L4 ???
L4 ???
SSL
?????
?????
Partner Company
? ?

???? L4??? ??? Traffic? ?? ??????
??(Active-Active)

???
?????
17
EAM ? SSO (??)
EAM (Extranet Access Management)

???? ???? ??, ??, ?? ?? ?? ???? ??? ???? ???? ???
???
?? ???? ?? ???? ?? ??? Policy Server? ?? ????.

SSO ( Single Sign On)

?? ?? ??? ???? ?? ????? ??? ??? ?? ?? ? ???
?????? ?? ??
????? ???? ??? ? ?? ? ?? ?? ?? ???? ??

EAM
1.SSO? ?? ??? ??? (??? ??? ???? ??)
2. ???? ?? ??
3. ??? ?? ??
4. ??? ???? ??? ?? ? ?? ??
WAS
Policy??
18
EAM ? SSO (SSO)
? ? ?
??? - ?????
SSL??? ??
?
???? SSO?? ??? ??
?
SSL ?? ??? SSO???
????
Head Office
Application Server..

? SSL?? ??? SSO(Single Sign On), EAM(Extranet
Access Management) ???
??? ?? / ????
???? ? ???(?????/?????) ?? ?????(client pc?
????? ??? ??)
???? ? ??? ??? ??? ??? ??(???? ?? ??)
????, ????, ???
?? ???? Application?? ??(IP/Port?), ?? (ex)????),
? (ex)??) ??
??? ??? ?? ??/?/???? ????(??)? ??/??
? ? ??? SSO???? ???? SSL?? SSO??

19
???? (????)
???? ??/??
?? ??
SSL??? ??, ????????, ??? ??, SSL????? 4?? ??? ??
???? ??

lt???? gt
Total ????? ??? ????? display
???? ??
????, ??, ????? ??
??
SSL?????, ????????
??? ??, SSL????

20
???? (????(1))
?? ??
SSL? ??? ??, ??, ?, ??_???, ???? ??? ???? ??? ??
??
???? ??
???? ?? ??
1. Success - ?? ??? ?? ?? 2. Type1 IP?? -
??? IP? ?? ???? 3. Type2 ??? ??? - ?? ???
???? ???? 4. Type3 ??? ???? ?? - ??? ??? ???
?? ???? ?? 5. Type4 ??? ???? - ? ??? ?????
????? ???? ??? ?? ?? ?? 6. Type5 ??IP?? ??
- ??? Application?? ?? ? ??? ??IP?? ?? ?? 7.
Type6 ???? ???? - ???? ???? ??? ?? ?? ?? 8.
Type7 ???? ?? - ???/??? ??? ???? ??? ?? ??
1. ??_??? ???? - ??? ??? ??? ?? ??? ???? 2. ???
???? - ??? ??? ?? ???? ?? - ?? ???
??/7??Type? ?? ?? 3. ??? ???? - ??? ?? ???? ??
- ?? ??? ???? ? ??? ???? 4. ?? ???? - ?? ??
???? ?? - ? ??? ???? ? ??? ???? 5. ???_???
???? - ??? 1?? ?? ??? ?? ???? - ?? ??? ?? ??
??? ??????
21
???? (????(2))

lt??? ???? gt
1. Total ??(?)? ?? ????? 3D? ??
2. ??(?)??
??? ???? ??/Type? ?? ??
??? ???? ??? ??? ??
3. ?? ?? ????/Type? ????

lt??_??? ???? gt
1. Total ??? ??? ??? ?? ??? ??
???? ??? ?? ??? 3D?? ??
2. ???? ??-??(11)
- ??/7?? Type? ??? ?????? ??
- ????? text? ??

lt???_??? ???? gt
1.Total ??? ?? ??? ???? 3D? ??
2. ????
??? ???? ??? ?? ??????
?????? ??/Type? ?? ?? ??
????/Type? ????

lt??? ????gt 1. TOTAL ??? ??? ???? 3D??? 2. ????
??/Type? ????? ?? ???? Text?? ??
22
Non-web?? ?? (??)
?? ???
HTTPS ??
???? SSL??
SSL
Web / File ??
Client (browser)
FTP??
Non-Web?? ?? ??

????? ? ? HTTPS??? ??/ ?? ??
C/S?? ??
??? ??
FTP?? FTP?? ??? ??
Telnet ?? Telnet?? ??? ??

23
Non-web?? ?? (FTP)
?
?
? ? ?
SSL??? ??
Client ??/???
?
FTP?? ??
SSL ?? ??? FTP???
?
????
FTP?? ??
????
Head Office
FTP?? ?? ??
FTP Server

? SSL?? ??? FTP???
Client? ???? ??? ??? ???
FTP?? ??? ????? ?? ?? ??
??? ?? ? ??
ID/Pass?? ? FTP ?? ??, ??? ??

FTP?? ??????
?? ??????
24
Non-web?? ?? (Telnet)
?
?
Client ??/???
? ? ?
SSL??? ??
Telnet?? ??/??
?
SSL ?? ??? Telnet ???
?
????
Telnet??/??
Head Office
Telnet Server