Shulou(Shulou.com)11/24 Report--

With the popularity of hybrid cloud and mobile office, enterprise networks are facing an increasingly complex security threat environment.

Large enterprises have sufficient capacity and budget to build customized network security solutions that cover all personalized needs.

However, for the majority of small and medium-sized enterprises, due to the actual business development, it is difficult for them to cover all aspects of the deployment cycle, budget cost and comprehensive plan.

In the face of this background, how to protect the office network security of the enterprise?

Berry dandelion: remote networking, secure access

In order to meet the needs of enterprise information security management, early warning and crisis management, Berry dandelion introduces SASE (Secure Access Service Edge) security architecture on the basis of SD-WAN.

Berry dandelion not only enables remote networking, breaks geographical boundaries, securely interconnects employees, devices, data centers and cloud applications anywhere, but also provides the integration of security functions. can better protect the data and office network of enterprise users from threats.

At present, the network security system of Berry dandelion is based on three different dimensions of remote network access, namely, "network security (membership authentication)", "network management" and "crisis management".

Continuous verification of network membership and equipment

Through multi-factor authentication and MAC address binding function, it is helpful to build a hierarchical and comprehensive network authentication login system, so as to reduce the risk exposure.

● multi-factor authentication: Berry dandelion provides multiple authentication methods for network member accounts. In addition to account numbers and passwords, it supports various authentication methods, such as mobile phone binding, mailbox binding, Wechat code scanning, dynamic tokens and so on.

According to the different security levels of the enterprise, the administrator can set different login authentication policies for specific networking members. For example, for finance, R & D personnel can set account password to log in, need to verify twice through other ways to ensure the security and reliability of network members' access.

● MAC address binding: on the basis of the above login authentication strategy, Berry dandelion also has a terminal device trust system, and network members support binding MAC addresses of single or multiple specific terminal devices, thus realizing login and access to fixed locations and specific terminals.

Automatically block threats and prevent security crises from spreading

In the dimension of crisis management, the core advantage of dandelion-related functions lies in "rapid response" and "automatic processing", which minimizes the losses caused by cyber security threats by automating threats.

● dynamic policy configuration: administrators can identify 20 + terminal security threats by configuring security dynamic policies to specify the types of threats to be detected. For example: whether there is the installation of risk software, suspicious software, Trojans, viruses, vulnerabilities, etc., whether there are potentially harmful applications and programs, and so on.

In addition to being able to configure dynamic policies in batches according to the grouping of networking members, the members that need to take effect can also be specified separately.

● threat dynamic isolation: according to the dynamic policy configuration, when a specified type of threat is detected by member devices, the client will automatically disconnect the network, immediately prevent terminal devices with security risks from accessing the company's internal network, and ensure the security of enterprise customer data, employee data, operation data and other core assets.

In addition, for the detected threat information, Berry dandelion will also keep a detailed disposal record, if necessary, the administrator can also trust the risk file in the disposal record and release the corresponding disposal strategy.

● threat Alert-alarm event: when threat information is detected in the terminal devices of network members, dandelion will also record detailed alarm events on the cloud management platform, and the administrator can know the threat details in time, including the corresponding device name, account number, device IP, file path, sample MD5 and other information for further judgment and analysis, so that it can quickly take countermeasures and prevent further expansion of the threat.

Security management dimension: log audit and notification alarm

The core role of log and alarm function in the dandelion security system is to make the safety management of the enterprise reach the safety front line smoothly and effectively.

● log audit: dandelion is equipped with security log audit function. Administrators can view network member logs and administrator logs under the "Security Audit" section of the dandelion management backend. These logs record information such as "VPN connection", "device up and down", "member operation", "administrator operation", "role account operation" and so on, providing necessary basis for security management and traceability.

● notification alarm: dandelion supports setting message notification and formulating appropriate alarm notification policy. Through multi-channel message push, administrators can immediately know the changes of members and devices, active and standby network switching, traffic consumption and so on.

We can set a specific alarm message receiver when setting the alarm policy. At present, in addition to the Berry dandelion account, we also support WeCom, nail, Feishu and other third-party IM access, which can effectively improve the message access efficiency.

Summary: the business value of dandelion networking at the security level

Generally speaking, on the basis of remote network access capability, dandelion scheme is equipped with security functions that can be applied quickly, providing enterprises with a set of simple and effective secure office network solutions to ensure information security without additional procurement security schemes. help enterprises reduce costs and increase efficiency.

Among the security functions carried by dandelion, automated crisis management is definitely the heaviest function, which also constitutes the third core value of dandelion security system: 24-hour security protection. If there is no automatic means, simply through alarms and other means, when security incidents occur occasionally, there will inevitably be omissions; the security function of automatic monitoring and processing can significantly strengthen the security protection capability of enterprises.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.