Jayne BernardiniPeter SchunkJan Vanecek

Presentation OutlineEvolution of Security SoftwareCompany ProfilesCompare System

Security DefinedEnsure data stored in a computer cannot be read without

authorizationData encryption and passwords

Encryption-translation of document into unintelligible language

Source: http://www.cert.org/encyc_article/tocencyc.html#ImprSec

History of Internet Security Incidents1969 ARPANET begins 1986

First well-publicized security incident1988

First automated network security incident “the Morris Worm”1989

ARPANET officially becomes the InternetWANK/OILZ worm

1994Tools “sniff” packets from the network

1995Attacks on computers that have trust relationships

Source: http://www.cert.org/encyc_article/tocencyc.html#ImprSec

Security TechnologyOperational Technology

PasswordsFirewallsMonitoring ToolsSecurity Analysis ToolsAntivirus

Crytography

Source: http://www.cert.org/encyc_article/tocencyc.html#ImprSec

Future of Security TechnologyInternetworking Protocols

Cope with vastly increased routing needsIntrusion Detection

Anomaly detection and pattern recognitionSoftware Engineering and System Survivability

No single point of failureWeb-Related Programming and Scripting Languages

Inform usersIntelligent Autonomous Agents

Performs computation or gathers info and presents a result

Source: http://www.cert.org/encyc_article/tocencyc.html#ImprSec

SymantecKerioFounded in April 19822005 revenue – $2,583

million IPO on June 23, 1989More than 17,500

employeesOperations in 40 countries

securing sensitive online consumer interactions financial transactions instant messaging preventing malicious

threats and crime ware

Entered market in 19972005 revenue – $20,253Customers in 70 countriesOffices in U.S., Great

Britain, and Czech RepublicServices

Communication Security Software Products

Internet Messaging and Firewall productsKerio Mail ServerKerio WinRoute FirewallKerio WebSTAR

Source: Kerio s. r. o. Source: Symantec

Kerio Mail Server – Release history January 17, 2002

* SSL now works from browsers supporting 40-bit enryptionMarch 25, 2003

+ SpamAssassin spam filter * improved spam header filter

April 2, 2003 + spam filter can change message subject

September 26, 2003 + fax plugin

July 18, 2005 + WebMail mini + support for MacOS X Tiger (10.4) + Kerio Synchronization Plug-in for Outlook (synchronization

of contacts and calendars in Outlook e-mail profile)Source: http://www.kerio.com

Kerio Mail Server – Release history + ability to use two antiviruses simultaneously (McAfee + one

external plugin) + support for PDA in WebMail (http://server/pda)

October 26, 2005 * Enhanced backup options: added support for differential

backup, backup scheduler is more flexible July 18, 2006

+ Added two-level spam rating. Spam messages could be tagged or blocked depending on spam score.

+ New SURBL (Spam URI Realtime Blocklist) anti-spam check significantly increases Spam Filter efficiency.

December 13, 2006 + Over-the-air synchronization with Microsoft mobile devices

via Microsoft ActiveSync® protocol.

Source: http://www.kerio.com

Source: http://www.kerio.com

Source: http://www.kerio.com

Source: http://www.kerio.com

Source: Kerio s. r. o.

Includes: Integrated virus scanningAntispamContent filtering controlsFlexibility to choose between multi-platform software-

basedAppliance-based and hosted service solutions

What is mail security software?

System Requirements• Symantec Mail

Security for Microsoft Exchange:Microsoft Exchange

Server 2000/2003 Intel Server-class 32-bit

processor, 1 GB of RAM

• Kerio Mail ServerCPU 500 MHz, 256 MB

RAMMicrosoft Windows,

Linux

Business RequirementsUnited States: B&B Electronics

Long-Term plans Often renew licenses

with same vendorPriceUser-friendly

Czech Republic: IIB s. r. o.

Short-Term plans Shorter licenses

Price sensitiveUser-friendliness only a

“plus”

Software Implementation

Common ElementsManagement commitmentTech supportCommunication of the policySecurity awareness of all users

Questions?

Thank you for your attention.