Cisco Cisco Web Security Appliance S170 사용자 가이드
1-7
Cisco IronPort AsyncOS 7.1 for Web User Guide
OL-23207-01
Chapter 1 Getting Started with the Web Security Appliance
What’s New in Version 7.0
New Feature: Sophos Anti-Virus Scanning
AsyncOS for Web 7.0 adds the Sophos scanning engine to the list of possible Web
Security appliance on-box anti-malware scanning engines. The Sophos engine
offers award-winning protection against known and unknown threats using their
Genotype and Behavioral Genotype Protection. The Sophos Genotype virus
detection technology proactively blocks families of viruses, and Behavioral
Genotype Protection automatically guards against zero-day threats by analyzing
the behavior of the code before it executes—offering protection from new and
existing viruses, trojans, worms, spyware, adware, and other potentially unwanted
applications (PUAs).
Security appliance on-box anti-malware scanning engines. The Sophos engine
offers award-winning protection against known and unknown threats using their
Genotype and Behavioral Genotype Protection. The Sophos Genotype virus
detection technology proactively blocks families of viruses, and Behavioral
Genotype Protection automatically guards against zero-day threats by analyzing
the behavior of the code before it executes—offering protection from new and
existing viruses, trojans, worms, spyware, adware, and other potentially unwanted
applications (PUAs).
For more information, see
New Feature: Transparent User Identification for Novell
eDirectory
eDirectory
AsyncOS for Web 7.0 allows you to configure the Web Security appliance so that
it identifies users by an authenticated user name transparently—that is, without
prompting the end user. You might want to do this to:
it identifies users by an authenticated user name transparently—that is, without
prompting the end user. You might want to do this to:
•
Create a single sign-on environment so users are not aware of the presence of
a proxy on the network.
a proxy on the network.
•
Use authentication based policies to apply to transactions coming from client
applications that are incapable of displaying the authentication prompt to end
users.
applications that are incapable of displaying the authentication prompt to end
users.
To identify users transparently, you must define at least one LDAP authentication
realm that supports Novell eDirectory.
realm that supports Novell eDirectory.
For more information, see
.
New Feature: Outbound Malware Scanning
AsyncOS for Web 7.0 includes protects data and objects leaving the network by
providing outbound malware scanning. The IronPort Dynamic Vectoring and
Streaming (DVS) engine scans transaction requests as they leave the network in
real-time. By working with the IronPort DVS engine, the Web Security appliance
allows you to prevent users from unintentionally uploading malicious data.
providing outbound malware scanning. The IronPort Dynamic Vectoring and
Streaming (DVS) engine scans transaction requests as they leave the network in
real-time. By working with the IronPort DVS engine, the Web Security appliance
allows you to prevent users from unintentionally uploading malicious data.