Eight Reasons Why McAfee Enterprise Security White Paper

White Paper
Eight Reasons Why McAfee Enterprise Security
Is Your Best Choice for Microsoft Windows 8
Table of Contents
2
McAfee and Windows 8: Better Together
3
1. Security Connected
3
2. Secure Your Road Warrior While Enabling Touch Business Processes
4
3. Single, Integrated Management Platform
4
4. Comprehensive Platform Coverage
5
5. Most Comprehensive Product Portfolio
5
6. Rootkit Protection/Stealthy Attack Prevention
6
7. World-Class Research and Support
7
8. Industry Leadership
7
Eight Reasons Why McAfee Enterprise Security Is Your Best Choice for Microsoft Windows 8
McAfee® Enterprise Security is your best choice for Microsoft Windows 8, as Windows 8
offers an extensive array of new features as well as improved performance and security.
Windows 8, at the end of the day, is a complex operating system and will exhibit critical
vulnerabilities that will be exploited by malware engineers. The fact that most Windows
7 applications will run natively on Windows 8 means that most malware will also run on
Windows 8.
McAfee and Windows 8: Better Together
When it comes to protecting Windows 8, the McAfee difference is simple: one vendor provides a complete,
state-of-the-art security portfolio of endpoint, server, cloud, network, data, and web and email solutions
that defend real-world networks, including Microsoft, Apple, and Linux operating systems and thousands
of applications. With the efficiencies of unified on-premises or Software-as-a-Service (SaaS) management
and reporting to further enhance the value of a broad product line, this translates into increased security
and significant operating expense savings for you.
McAfee is the only company that can deliver on the Security Connected framework, which enables
integration of multiple products, services, and partnerships for centralized, efficient, and effective risk
mitigation. Learn more about McAfee solutions at www.McAfee.com.
Let’s explore the eight reasons why McAfee is your best choice to secure Windows 8.
1. Security Connected
The Security Connected framework from McAfee brings together the endpoint, network, and cloud and
connects it to the broader ecosystem. It closes the gaps left by traditional security approaches from other
vendors and provides full visibility into emerging threats and an unparalleled view across the threat landscape.
The Security Connected framework provides a strategic approach, utilizing centralized management and
McAfee Global Threat Intelligence™ (McAfee GTI™) to synchronize security, mitigate risk, and enable
a comprehensive, proactive threat response. Today’s business challenges require a move from simply
securing components to understanding and measuring the security of the business as a whole. Along
with this, the growing number of threats must be responded to dynamically, within minutes, not days.
This requires a new approach to security and risk management.
Mitigation of today’s global threats requires a sophisticated and mature security ecosystem. McAfee is
in the best position to provide the connections between Windows 8 systems, security products, and the
latest security research.
Eight Reasons Why McAfee Enterprise Security Is Your Best Choice for Microsoft Windows 8
3
Net work securit y
High Assurance Firewall
Network Intrusion Prevention
McAFEE
SOLUTION PLATFORM
endpoint securit y
Malware Protection
Device Encryption
Network Access Control
Application Whitelisting
Network Behavior Analysis
Desktop Firewall
Device Control
INFORMATION securit y
Email Protection
Network Access Control
Email Security
Endpoint Web Protection
Web Security
Host Intrusion Prevention
Data Loss Prevention
Mobile Device Management
Encryption
Server and Database Protection
Identity and Access Management
Hardware-Assisted Security
API and Web Services Security
Smartphone and Tablet Protection
Virtual Machine and VDI Protection
securit y MANAGEMENT
Embedded Device Protection
Security Operations Management
Policy Auditing and Management
PARTNER COMMUNITY
Vulnerability Management
McAfee Security Innovation Alliance
Risk Management
Security Connected
Compliance Management
McAfee Global Strategic
Alliance Partners
Figure 1. Security Connected from McAfee combines endpoint, network, and information security comprehensively with
global threat intelligence and security management.
2. Secure Your Road Warrior While Enabling Touch Business Processes
The design of Windows 8 for tablet devices illustrates the growing phenomenon of mobility. Road warriors
all over the world have specific security requirements that must be addressed in a comprehensive manner.
McAfee offers road warriors the security tools they need to protect their most critical business processes. The
first line of defense is cloud-based authentication/identity management and single sign-on. Cloud-based file
access with McAfee Web Gateway allows road warriors to access all their assets securely anywhere, any time.
McAfee Enterprise Mobile Manager further protects and encrypts email and keeps business communication
in a protected container. McAfee offers high-performance full-disk and file encryption, as well as data loss
prevention (DLP) protection to keep business information safe. Last, but not least, McAfee offers apps to
protect and obfuscate pictures and data within social media; only authorized persons will be able to view
pictures on Facebook.
McAfee offers all the solutions needed to optimize and protect the mobile worker.
3. Single, Integrated Management Platform
McAfee® ePolicy Orchestrator® (McAfee ePO™) software is widely acknowledged as the most advanced
and scalable security management software in the industry, with these features:
•
End-to-end visibility
• Simplified
•
security operations
Open, extensible architecture
McAfee ePO software helps minimize the load on IT staff while maximizing the effective protection of
the deployed McAfee products. One pane of glass to manage your security infrastructure has never been
more important to the deployment of Windows 8. The infrastructure required by other security tools
is not only daunting, but also distracts from Windows 8’s purpose to be easier, faster, better, and more
efficient. McAfee ePO software delivers the end-to end security operations promised by Windows 8.
4
Eight Reasons Why McAfee Enterprise Security Is Your Best Choice for Microsoft Windows 8
4. Comprehensive Platform Coverage
It should be noted that while we are providing you with the eight reasons that McAfee should be your
choice to protect Windows 8, McAfee understands that Windows 8 will not be deployed in a vacuum
and that customers will have many platforms and systems in their computing environment. McAfee
offer comprehensive coverage for a wide range of platforms and devices. In a comparison with Microsoft
(see Figure 2), McAfee also offers support for older Windows products, Android devices, Apple devices,
virtualized systems, Linux, and Lotus Domino.
Vendor:
McAfee
Microsoft
























Endpoint Solutions Available
Windows 2008 R2
Windows 2008
Windows 2003 R2
Windows 2003
Windows 7
Windows Vista
Windows 2000
Windows XP
Mac OS
Android Devices
Windows Mobile Devices
Apple iPhone
VMware ESX, ESXi
Citrix XenDesktop, XenServer
Linux
Lotus Domino
MS Exchange
MS SQL Server
X


X

X
X
X
X
X


Figure 2. Endpoint solution platforms as of December 2012.
5. Most Comprehensive Product Portfolio
The diagram below compares Microsoft’s security portfolio to McAfee offerings. Note that Microsoft
products have limited protection for non-Microsoft components, and many of the products listed
have not yet proven to be not ready for enterprise deployment, such as encryption, network access
control (NAC), and whitelisting.
Limited technology
•
Device control, DLP, encryption, NAC
• Apple
mobile security, application control, intrusion prevention systems (IPS), change control,
or network firewall
Lacks robust web security
•
McAfee SiteAdvisor® (limited function with Smart Screen)
The breadth and depth of the McAfee security portfolio—spanning endpoint security, network security,
email and web security, and new initiatives to deliver security services via SaaS—allow McAfee to be a
one-stop shop for a large portion of security market demand and keep the bad guys out of any portion
of the security framework. McAfee opportunities include the ability to leverage underlying hardware
technology or to develop new hardware techniques to identify and prevent malware attacks.
Eight Reasons Why McAfee Enterprise Security Is Your Best Choice for Microsoft Windows 8
5
Vendor:
McAfee
Microsoft






















Product Solutions Available
Anti-Malware Host
Anti-Malware—Mail
Anti-Malware—SharePoint
Anti-Malware—Virtual
Anti-Malware—SAP
Web Security
Firewall
IPS
Application Blocking
Application Whitelisting (Dynamic)
File Integrity Monitoring
Change Control
Risk Analysis
Compliance Auditing
Full Disk Encryption
File Folder Encryption
Encrypted USB (Hardware/Software)
Data Loss Prevention
Device Control
X
X


X

X
X
X
X




X

Figure 3. Product portfolio gaps reflect limited or missing functionality.
6. Rootkit Protection/Stealthy Attack Prevention
McAfee DeepSAFE™ technology, jointly developed by McAfee and Intel, sits below the operating system
and close to the silicon to extend the security footprint further into the computing stack and enable the
development of hardware-enhanced security products that defend against stealthy malware and rootkits.
There will still be Windows kernel-mode rootkits that will attempt to evade detection from the traditional
OS-based security. McAfee Deep Defender provides real-time rootkit protection for PCs running Windows
8. Traditional OS-based antivirus only detects kernel-mode rootkits after they have installed and if they
are known. McAfee Deep Defender will detect these threats in real time before they install and infect a PC
with malware.
Windows 8 offers some new security functionality that provides broader security protection, but Microsoft
has not added functionality to specifically deal with or provide protection for the stealthiest rootkits. This
new functionality includes Early Launch AntiMalware (ELAM), Boot Time Protection and Secured Boot
Architecture. McAfee Deep Defender is the only solution of its kind that is designed to provide zero-day
protection against rootkits. Windows 8 is a great improvement over previous versions of Windows and
does offer more general protection, but not specific to zero-day rootkit protection like that offered by
McAfee Deep Defender.
ELAM requires the first signed drivers to be installed to come from a reputable anti-malware vendor
such as McAfee. If a known rootkit is detected, the antivirus product should signal ELAM to be used
on the next reboot. On the next reboot, if it is a known kernel-mode rootkit, ELAM should prevent it
from loading. However, if antivirus products use ELAM, they won’t be able to provide real-time kernel
protection. In short, the new ELAM technology cannot help security products block rootkits in real time.
It’s only intended for known kernel mode rootkits, not zero-day threats.
6
Eight Reasons Why McAfee Enterprise Security Is Your Best Choice for Microsoft Windows 8
7. World-Class Research and Support
The McAfee GTI research team works around the clock, all over the world to provide the most up-todate protection. Our award-winning support organization sets the standard for technical assistance and
customer service.
McAfee professional services, including consulting, product education, and award-winning technical
support, help customers make the most of their McAfee solutions and keep protection up to date. We
work with highly trained and experienced partners to help customers optimize our solutions. McAfee
Foundstone® Professional Services brings an objective perspective and a unique combination of tools
and training to help identify and implement the most effective solutions to meeting our customers’
particular needs.
Through McAfee Customer Service and Technical Support, our customers have access to expert support
delivered by certified security specialists, along with a wealth of other resources, including an in-depth
knowledgebase. Support options include 24/7/365 access, response charters, and proactive optimization.
Research
McAfee Labs is our top-ranked worldwide research organization with more than 350 researchers. McAfee
GTI offers the most comprehensive threat intelligence on the market. Powered by a worldwide network
of threat sensors and backed by a global, dedicated research team (McAfee Labs), this gives users visibility
across all threat vectors: file, web, message, and network.
8. Industry Leadership
McAfee is the world’s largest dedicated security technology company. McAfee delivers proactive and proven
solutions and services that help secure systems, networks, and mobile devices around the world, allowing
users to safely connect to the Internet, browse, and shop the web more securely.
McAfee leads the industry in integrated endpoint protection:
• A
leader in the Gartner Magic Quadrant and Forrester Wave five years in a row
•
First to deliver a single agent and a single console for endpoint security
•
First to manage a broad range of security products, including endpoint, network, data, web,
and email security with one console
•
First product to have a unified management platform for endpoint security and compliance
•
Pioneered the McAfee Security Innovation Alliance to manage McAfee and non-McAfee products
•
More than 420 patents, many more pending
McAfee provides a complete process with a common architecture and management infrastructure.
This approach integrates multiple threat prevention and compliance management tools to provide
comprehensive solutions that work better, save time, and cost less. The McAfee strategy solves real
security problems by integrating all the functionality customers need—from threat protection to
compliance—to provide knowledge-driven security that is automated and actionable, empowering
organizations to be efficient and effective. The collaborative Security Connected framework from
McAfee bridges network and system security to save enterprises of all sizes money, improve protection, and provide a security and compliance solution that is greater than the sum of its parts.
Eight Reasons Why McAfee Enterprise Security Is Your Best Choice for Microsoft Windows 8
7
Summary
The Windows 8 OS provides a superior platform for mobile productivity, always-on computing, and the
social business trends we are likely to see. The Windows 8 user interface is ready-made for new tablet and
mobile systems, the computing platforms of the future. Microsoft’s security updates make the Windows
8 OS one of the strongest in recent years. At the same time, this OS will be a target due to its adoption
and popularity. Today’s threat landscape hides an ever-changing stream of worms, spyware, Trojans, bots,
rootkits, hackers, identity thieves, and targeted attacks. These threats affect users who take work with
them everywhere, workers who unknowingly jeopardize your network and systems when they return
to the office. Mitigation of today’s global threats requires a sophisticated and mature security ecosystem.
McAfee is one of the few vendors to provide the connections between Windows 8 systems, security
products, and the latest security research.
Proactive and comprehensive protection technologies require that we take advantage of both OS
updates and have the understanding of attack vectors and process to make Windows 8 the safest and
most secure Windows experience. If you are considering Windows 8, visit McAfee.com to learn how
we can make your Windows 8 experience more productive and secure. http://www.mcafee.com/us/
products/endpoint-protection/windows-8-update.aspx
About McAfee
McAfee, a wholly owned subsidiary of Intel Corporation (NASDAQ:INTC), is the world’s largest dedicated
security technology company. McAfee delivers proactive and proven solutions and services that help
secure systems, networks, and mobile devices around the world, allowing users to safely connect to the
Internet, browse, and shop the web more securely. Backed by its unrivaled global threat intelligence,
McAfee creates innovative products that empower home users, businesses, the public sector, and service
providers by enabling them to prove compliance with regulations, protect data, prevent disruptions,
identify vulnerabilities, and continuously monitor and improve their security. McAfee is relentlessly focused
on constantly finding new ways to keep our customers safe. http://www.mcafee.com
2821 Mission College Boulevard
Santa Clara, CA 95054
888 847 8766
www.mcafee.com
McAfee, the McAfee logo, McAfee Global Threat Intelligence, McAfee GTI, ePolicy Orchestrator, McAfee ePO, McAfee DeepSAFE, and
SiteAdvisor are registered trademarks or trademarks of McAfee, Inc. or its subsidiaries in the United States and other countries. Other marks
and brands may be claimed as the property of others. The product plans, specifications and descriptions herein are provided for information
only and subject to change without notice, and are provided without warranty of any kind, express or implied. Copyright © 2012 McAfee, Inc.
56601wp_8-reasons_1212_fnl_ASD