Page 74 - CSEW
P. 74

Cisco Advanced Malware Protection

      (AMP)








                                                                                                                               AMP Cloud


                                                                                                  2                    Retrospective
                                                                                                      AMP Dynamic        Incidents
                                                                                                  CWS PREMIUM
                                                                                                    Malware Analysis
                                        AMP
                                                      AMP                                                             3
                                                                     CTA                                                      AMP
                                                          Dynamic            1 Layer 1                   CTA
                                                          Malware                 AMP File                        Layer 2  Retrospection  CTA     Layer 3
                                                          Analysis
                                                       Policy        AV                            OI
                                         File Reputation                  Anomaly Reputation  Trust           Event       Entity modeling        Relationship modeling
                                                                          detection        modeling         classification
                                                           File                File Unknown!
                                                        Retrospection


                                                                   Understand
                                                 Know              how it                See everywhere       Determine          Learn
                                                 where it          entered the           that it has been     what it has        how to
                                                 all started                                                  done               stop it
                                                                   system
                       AMP delivers point-in-time, continuous and retrospective security


      © 2016 Engage ESM All Rights Reserved                                                                                             82
   69   70   71   72   73   74   75   76   77   78   79