Solutions
Solutions
Eins SIM-
Eins Lab-
TFMS-
Mind Mapper-
Server Security-
Server Security
Overview
Distinction
Features
Deployment
Requirement
Fortified access control based on authentication using digital signature
Strong access control in combination with authentication using digital signature and multiple access control policies
  • PKI-base authentication (using public certificates) + RBAC/MLS/MAC
  • Protection against data disclosure or modification/forgery of files inside servers caused by illegal intruders(unauthorized users)
  • Identification of actual users based on multi-factor authentication, and access control based on actual users
Strong control over access privilege
PKI Based User Authentication
  • Compliance with X,509 v3(international standard)
Role Based Access Control
Least Privilege & Separation of Duties
  • Separation of duties between system administrator and security administrator(Separation of duties)
  • Permitted minimal privileges based on the role of administrators(Least Privilege)
Management of accounts and passwords
Efficient Management of user account / login / passwords through management console
Support for multiple password rules
  • Password complexity requirement(to disallow easy password) / disallow previously used passwords by using history feature / password aging rule / password dictionary, etc.
Facilitated control over user switch using ‘su’ command (for UNIX/Linux)
Network access control
Support for server firewall feature at the kernel level
Detection and prevention of unauthorized network access to systems
Control over file access and commands
Control over commands at the kernel level
Protection of major configuration files and directories
Control over the execution of critical commands which can affect system operation
Delegation of user privilege
Delegation triggered when a system administrator executes a command requiring administrative privileges
Delegation triggered when the users of specific systems require the sessions for managing accounts
User event audit
Real-time monitoring of command typing done by the users of specific systems (used for analysis of incidents or outage)
Event audit of user processes or background processes at the kernel level
Centralized system management
Centralized console for consolidated management
  • Secure channel for PKI-based authentication and encrypted communication
  • Control of multiple servers on the heterogeneous environment, and monitoring of server status
  • Convenient in-batch enforcement of security rules through management console
Multiple report formats
Consolidated reporting of log data collected from heterogeneous systems
  • Multiple filtering options for servers, logs, dates, user-defined types
  • Reporting based on statistic data; support for graphs, charts, etc.
Architecture
Configuration
Secuve TOS Agent
SUN ㆍSolaris 8, 9, 10, 11
ㆍSPARC or Intel x86 CPU compatible
IBM ㆍAIX 5.1, 5.2, 5.3, 6.1, 7.1
ㆍIBM CPU compatible
HP ㆍHP-UX 11.11, 11.23, 11.31
ㆍPA-RISC orIA64 CPU compatible
Linux ㆍLinux kernel version 2.4.x or above
ㆍIntel x86 CPU compatible
Windows ㆍServer : 2003, 2008, 2008 R2, 2012, 2012 R2
ㆍPC : 7, 8.1
ㆍIntel x86 CPU compatible
Secuve TOS Agent(for virtualized environment)
SUN ㆍSun LDOM (Solaris10 or above)
ㆍSolaris Zone (Solaris10 or above)
IBM ㆍAIX LPAR/DLPAR
HP ㆍHP-UX vPars
ㆍHP-UX Integrity VM
Linux ㆍsupport for hypervisor-based virtualized environment(VMWare, Xen, KVM, Oracle VM)
Windows ㆍsupport for hypervisor-based virtualized environment(VMWare, Hyper-v, Oracle VM)
※ Recommended to use the optimal system environment for the different OS/system type with the latest patch(es) or Service Pack(s) installed
Secuve TOS Agent(Cloud)
Linux ㆍLinux kernel version 2.6.x or above
ㆍCloud : Amazon, IBM, KT uCloud, etc
Windows ㆍWindows 2003 or above
ㆍCloud : Amazon, IBM, KT uCloud, etc
Manager Console
Windows ㆍminimum PC requirement enough to run Windows or its higher version
Management Server
OS ㆍLinux : distribution version compatible to RHEL6.x version or above
ㆍUnix : AIX 5.3, HP-UX 11.23, Solaris 10 or above
ㆍWindows Server 2003 or above
DBMS ㆍOracle, MSSQL, Tibero, MySQL
H/W ㆍCPU : 2GHz(4Core) or above
ㆍHDD : 1TB or above
ㆍRAM : 16GB or above