IBM MSS f/ UTM MGD-DC1 Manuale Utente
Codici prodotto
MGD-DC1
INTC-7816-01 02/2008
Page 1 of 18
Service Description
IBM Managed Security Services for Unified Threat Management
1.
Service Overview
IBM Managed Security Services for Unified Threat Management (called “MSS for UTM”) is designed to
provide a comprehensive security solution deployed across a variety of Appliances.
provide a comprehensive security solution deployed across a variety of Appliances.
MSS for UTM is intended to be a comprehensive security service, divided into two distinct packages:
●
Protection Package - includes Intrusion Prevention system (“IPS”) and firewall support, and helps
block traditional attacks such as worms and intruders; and
block traditional attacks such as worms and intruders; and
●
Content Package - includes management of, and support for, Web filtering, antispam, and antivirus
modules. This package helps Customers eliminate unsolicited e-mails and objectionable Web
content, while providing protection from newer threats such as identity theft (“phishing”), viruses,
and spyware.
modules. This package helps Customers eliminate unsolicited e-mails and objectionable Web
content, while providing protection from newer threats such as identity theft (“phishing”), viruses,
and spyware.
IBM offers each MSS for UTM package at the following alternative service levels.
●
MSS for UTM – Standard;
●
MSS for UTM – Select; and
●
MSS for UTM – Premium,
each described in further detail below.
The details of your order (e.g., the services you require (including service levels), contract period, and
charges) will be specified in the Order.
charges) will be specified in the Order.
Definitions of service-specific terminology can be found at
www.ibm.com/services/iss/wwcontracts
IBM will support the following product features, as applicable:
a.
Intrusion Detection and Intrusion Prevention system (“IDS/IPS”)
IDS/IPS is a security management system for computers and networks that is designed to gather
and analyze information from various areas within a computer or a network, to help identify and
block possible security breaches (i.e., intrusions (attacks from outside the organization) and misuse
(attacks from within the organization)).
and analyze information from various areas within a computer or a network, to help identify and
block possible security breaches (i.e., intrusions (attacks from outside the organization) and misuse
(attacks from within the organization)).
b.
firewall
A firewall is a set of related programs, located at a network gateway server that is designed to allow
or deny certain Hosts or networks to speak to each other, based on a set security policy. Many
firewalls include a full set of networking features (e.g., routing capabilities and address and port
rewriting).
or deny certain Hosts or networks to speak to each other, based on a set security policy. Many
firewalls include a full set of networking features (e.g., routing capabilities and address and port
rewriting).
c.
VPNs
VPNs allow supported firewall-based VPNs to be connected to the managed Agent. IBM will
configure the managed Agent to support site-to-site or client VPN tunnels.
configure the managed Agent to support site-to-site or client VPN tunnels.
d.
high availability
To help protect against hardware failure and provide high availability, two managed protection
Agents may be configured and deployed; one fully operational and the other waiting as a backup to
take over should the first Agent fail. Some Agents can also be deployed as clusters, such that both
Agents operate and share network load.
Agents may be configured and deployed; one fully operational and the other waiting as a backup to
take over should the first Agent fail. Some Agents can also be deployed as clusters, such that both
Agents operate and share network load.
e.
antispam
Antispam technology is designed to minimize the volume of spam e-mail to user mail boxes. Spam
filters utilize spam signatures, detection algorithms, and heuristic analysis to reduce the volume of
unwanted e-mail and help remove objectionable content.
filters utilize spam signatures, detection algorithms, and heuristic analysis to reduce the volume of
unwanted e-mail and help remove objectionable content.
f.
Web filtering
Web filtering helps the Customer to block objectionable content, mitigate Web-borne threats, and
govern Web viewing behavior of personnel behind the managed Agent.
govern Web viewing behavior of personnel behind the managed Agent.
g.
antivirus