Trend Micro Takes On Network Security

With an eye on extending client security across the network, Trend Micro on Monday introduced two new products, OfficeScan Corporate Edition v6.5 (OSCE), and InterScan Web Security Suite v2.0 (IWSS).

OSCE adds to Trend Micro's existing arsenal of client security technology new tools to combat threats such as the recent Sasser worm variants, which rely more on the network than on e-mail attachments or other file-based methods to unleash their assaults, said Bob Hansmann, director of product marketing for Trend Micro, Cupertino, Calif.

"Threats like Sasser come through the network, they never become a file," said Hansmann. "So this version of OSCE has a server component to go along with the client component, and we are actually monitoring the network activity at a lower level to detect network-based virus."

Protection against spyware, adware and dialers is also new to OSCE, and an enterprise client firewall has been added, giving the software the ability to enable and disable ports " a feature key to preventing worms like Sasser which exploit port-related vulnerabilities. Additionally, OSCE's client firewall can also scan both inbound and outbound messaging packets for malicious threats or unauthorized access to desktop clients, said Hansmann.

Aside from adding protection for network-based threats, the server component also eases client installation. As many as 11 client installation options are can be used, including deployment via CD, via e-mail, or a downloadable central file. OSCE can even automate the uninstall of existing third-party anti-virus software on clients. A Web-based management console allows administrators to coordinate policies and system configurations via the Internet.Wes Parker, sales representative for Stalwart Systems, a $2.3 million security solution provider in Charlotte, N.C., said these improvements should impress customers who, in past engagements, opted for competitive security tools. "I feel Trend has shown a lot of foresight (with OSCE), and are in step with my customers," he said.

OSCE includes support for Cisco's Network Admissions Control (NAC) to OSCE, said Hansmann. The NAC program uses Cisco routers as part of a network's defense, enabling the routers to analyze client devices and detect whether or not virus definitions are up to date or proper patching has been done before allowing the client to log on to the network.

Just last week the two companies agreed to integrate Trend Micro's network worm and virus signatures with the Cisco Intrusion Detection System (IDS). Cisco, Network Associates, Symantec, and Trend Micro each contributed to the development of the NAC program.

Trend Micro's effort with OSCE is to integrate a number of tools "so customers no longer have to install four, five, or six security products," said Hansmann, adding "We are trying to include all the content security and access security into one package."

Price for a user group of about 25 clients runs at about $25 dollars per user for the first year, said Hansmann. Existing Trend Micro customers can upgrade to OSCE for free.Trend Micro's InterScan Web Security Suite v2.0 (IWSS) adds additional protection to the network by monitoring for malicious code transmitted by certain Web sites, or from client infections like spyware. IWSS can monitor code running in and out of an organization, preventing spyware from sending data. It can also block access to certain URLs deemed dangerous to the network such as phishing sites that pose as a familiar Web sites in order to steal user information and access codes, said Hansmann.

Available add-on features for OSCE, such as URL filtering, provide upsell opportunities for resellers, said Mike Canavan, security system engineer at CDW, Vernon, Hills, Ill. The arrival of network-based threats has plenty of customers asking "is my network secure enough?" said Canavan.