Comprehensive Server Security Platform
Delivers comprehensive, adaptive, highly efficient agentless and agent-based protection, including anti-malware, intrusion detection and prevention, firewall, web application protection, integrity monitoring, and log inspection.
Advanced Protection for Physical, Virtual and Cloud Servers
- Accelerate virtualization investments
- Minimize security impact
- Ensure cost-effective compliance
- Move safely to the cloud
Trend Micro Deep Security 8 is a comprehensive, adaptive, and highly efficient server security platform that protects enterprise applications and data from breaches and business disruptions without expensive emergency patching. Tightly integrated modules easily expand the platform to ensure server, application, and data security across physical, virtual, and cloud servers, as well as virtual desktops. This comprehensive, centrally managed platform helps you simplify security operations while enabling regulatory compliance and accelerating the ROI of virtualization and cloud projects.
Anti-Malware
Integrates with VMware environments for agentless protection, or provides an agent for physical servers and virtual desktops in local mode.
Integrates new VMware vShield Endpoint APIs to provide agentless anti-malware protection for VMware virtual machines with zero in-guest footprint. Helps avoid security brown-outs commonly seen in full system scans and pattern updates. Also provides agent-based anti-malware to protect physical servers, Hyper-V and Xen-based virtual servers, public cloud servers as well as virtual desktops in local mode. Coordinates protection with both agentless and agent-based form factors to provide adaptive security to defend virtual servers as they move between the data center and public cloud.
Integrity Monitoring
Detects and reports malicious and unexpected changes to files and systems registry in real time. Now available in agentless form factor
Detects malicious and unexpected changes. Leverages an agentless configuration to add greater security to virtual machines without additional footprint. Also protects the hypervisor from exploits with the innovative new hypervisor integrity monitoring using Intel TPM/TXT technology. Event tagging and cloud-based whitelisting reduce the complexity of administrative operations. Also includes real-time, on-demand, or scheduled detection of change and provides auditable reports.
Intrusion Detection and Prevention
Shields known vulnerabilities from unlimited exploits until they can be patched
Helps achieve timely protection against known and zero-day attacks. Uses vulnerability rules shield a known vulnerability—for example those disclosed monthly by Microsoft—from an unlimited number of exploits. Offers out-of-the-box vulnerability protection for over 100 applications, including database, web, email and FTP servers. Automatically delivers rules that shield newly discovered vulnerabilities within hours, and can be pushed out to thousands of servers in minutes, without a system reboot.
Web Application Protection
Defends against web application vulnerabilities
Enables compliance with PCI Requirement 6.6 for the protection of web applications and the data that they process. Defends against SQL injections attacks, cross-site scripting attacks, and other web application vulnerabilities. Shields vulnerabilities until code fixes can be completed.
Application Control
Identifies malicious software accessing the network.
Increases visibility into, or control over, applications accessing the network. Identifies malicious software accessing the network and reduces the vulnerability exposure of your servers.
Firewall
Decreases the attack surface of your physical and virtual servers
Centralizes management of server firewall policy using a bi-directional stateful firewall. Supports virtual machine zoning and prevents Denial of Service attacks. Provides broad coverage for all IP-based protocols and frame types as well as fine-grained filtering for ports and IP and MAC addresses.
Log Inspection
Provides visibility into important security events buried in log files
Optimizes the identification of important security events buried in multiple log entries across the data center. Forwards suspicious events to a SIEM system or centralized logging server for correlation, reporting and archiving. Leverages and enhances open-source software available at OSSEC
Accelerates Virtualization, VDI & Cloud ROI
Provides a lighter, more manageable way to secure VMs to help you make the most out of your virtualization and cloud investments
- NEW Strengthens security without additional footprint through agentless integrity monitoring, intrusion prevention and anti-malware
- Frees staff from continually configuring, updating, and patching agents
- Protects virtual servers and virtual desktops as they move between data center and public cloud
Lower Costs
Maximizes efficiency to reduce operational costs with lower overhead, fewer staff hours, and higher VM consolidation rates
- Allows greater machine consolidation in virtual environments with agentless configuration for anti-malware and other security
- Eliminates the cost of deploying multiple software clients with a centrally managed, multi-purpose agent or virtual appliance
- Provides vulnerability protection to prioritize secure coding and cost-effective implementation of unscheduled patching
- Reduces security management costs by automating repetitive and resource intensive security tasks
Prevents Data Breaches
Minimizes business disruptions with advanced protection that enables self-defending servers and virtual desktops
- Detects and removes malware from virtual servers in real time
- Shields known and unknown vulnerabilities in enterprise applications and operating systems
- NEW Leverages one of the world’s largest domain-reputation databases to protect systems from accessing compromised websites
Helps Achieve Compliance
Addresses major requirements for standards such as PCI DSS 2.0, HIPAA, NIST, SAS 70, and many others
- Provides detailed, auditable reports that document prevented attacks and policy compliance status
- Reduces the preparation time and effort required to support audits
- Supports internal compliance initiatives to increase visibility
Architecture
Deep Security is a comprehensive server security platform designed to protect dynamic data centers comprising physical, virtual, and cloud servers as well as virtual desktops. The solution consists of: the Deep Security Agent, Deep Security Manager, and the Security Center.
Deep Security Virtual Appliance
Transparently enforces security policies on VMware vSphere virtual machines for agentless integrity monitoring, anti-malware, IDS/IPS, web application protection, application control, and firewall protection—coordinating with Deep Security Agent, if desired, for log inspection and defense in depth.
Deep Security Agent
The Deep Security Agent is a small software component that is deployed on the server or virtual machine being protected and enforces the security policy. This Agent enables anti-malware, IDS/IPS, web application protection, application control, firewall, integrity monitoring, and log inspection.
Deep Security Manager
The Deep Security Manager powerful management system that allows administrators to create security profiles and apply them to servers. It has a centralized console for monitoring alerts and preventive actions taken in response to threats. The Manager can be configured to automate or distribute security updates to servers on demand. The Manager can be used to generate reports to gain visibility into activity and meet compliance requirements. Event Tagging functionality streamlines the management of high-volume events and enables workflow of incident response.
Security Center
The Security Center is a dedicated team of security experts who help customers stay ahead of the latest threats by rapidly developing and delivering security updates that address newly discovered vulnerabilities. The Security Center manages the customer portal used for accessing these security updates and information. Security updates can be delivered to Deep Security Manager automatically, or on-demand for deployment to thousands of servers within minutes.
Server Virtualization
Improve ROI with industry-leading server security that can help you triple VM consolidation rates
Get mature technology from the recognized leader in virtualization security. With integrated security designed for virtual servers, you can remain secure without sacrificing performance or management. Deep Security helps you secure your virtual environment for the increased efficiencies of cloud computing. VM-aware security preserves performance, and increase VM densities. Independent tests show an increase in consolidation rates of up to 3x without AV storms.
- View solution brief (PDF)
- Download analyst report (PDF)
- Watch executive video
- Read VMware-Trend Micro white paper (PDF)
Desktop Virtualization
Maximize VDI security and performance with coordinated agentless and agent-based protection
Get comprehensive protection for virtual desktops while preserving performance and consolidation ratios. Built specifically to handle the rigors of virtual desktop environments, Deep Security maximizes protection for a broad spectrum of virtual desktop scenarios. With true agentless malware protection for zero-client deployment and agent-based security to protect virtual desktops in local mode, you can maximize both the security and ROI of your VDI investment.
Virtual Patching
Shield vulnerabilities before they can be exploited, saving the cost of emergency patching
Hundreds of software vulnerabilities are exposed each month, and timely patching is expensive, prone to error and often impossible. Trend Micro virtual patching solutions deliver immediate protection while eliminating the operational pains of emergency patching, frequent patch cycles, and costly system downtime. Deep Security keeps your servers and endpoints protected while preventing costly emergency patching and upgrades as well as reducing the risk of breach disclosure costs. It even helps to extend the life of legacy systems and applications
Total Cloud Protection
Control and encrypt data in the cloud and validate server access
Whether you’re deploying a private, public, or hybrid cloud, Trend Micro provides you with total cloud protection that’s optimized for virtual and cloud environments.
Deep Security integrates with Trend Micro™ SecureCloud for encryption and policy-based key management for cloud environments. So you get better protection, less administrative complexity, and increased performance. Agentless and agent-based deployments provide flexible cloud implementation options with cross-cloud management to secure your servers, application, and data.
- Read solution brief (PDF)
- Download white paper (PDF)
- Combat virtual and cloud threats (PDF)
- Learn virtual and cloud security best practices (PDF)
Compliance
Address major regulatory requirements for PCI DSS 2.0, HIPAA, NIST, SAS 70, and many others
The complexity and fluidity of desktop and server virtualization pose security, compliance, and performance risks that require specialized, virtualization-optimized protection and performance. Deep Security provides integrated security and compliance for business systems operating in physical, virtual, and cloud environments. Deep Security addresses 8 PCI DSS requirements and provides core security controls with a unique approach that economically solves the toughest compliance challenges.
Systems Requirements
Platforms
Microsoft® Windows®
- Windows 7 (32 & 64 bit)
- XP (32 & 64 bit)
- XP embedded
- Windows Vista (32 & 64 bit)
- Windows Server 2003 (32 & 64 bit)
- Windows Server 2008 R2 (64 bit)
Sun Solaris™
- OS 8, 9, 10 (64 bit Sparc)
- 10 (64 bit x86)
Linux*
- Red Hat® Enterprise 5, 6 (32 & 64 bit)
- SUSE® Enterprise 10, 11 (32 & 64 bit)
Unix**
- AIX 5.3, 6.1 on IBM Power Systems
- HP-UX 10, 11i v3 (11.31)
Virtualization
- VMware®: VMware ESX/ESXi 3.x***, vSphere 4.0****, vSphere 4.1/5.0*****, View 4.5/5.0*****
- Citrix®: XenServer ***
- Microsoft®: HyperV***
* Anti-malware not available on this platform at this time
** Only Integrity Monitoring and Log Inspection modules are available on these UNIX-based platforms.
*** Protection via Deep Security Agent only
**** Protection via Deep Security Agent and Virtual Appliance for Firewall, IDS/IPS and Web application protection, via Agent only for other modules
***** Protection via Deep Security Agent only for Log Inspection, via Agent and Virtual Appliance for all other modules, separate license to vShield Endpoint required
Data Centre and Cloud Resources
Server Security
Protecting the Dynamic Data Center
Support security controls in current and future IT environments (PDF)
Virtualization
Changing the Game for Antivirus in the Virtual Datacenter
Read a jointly authored VMware-Trend Micro white paper (PDF)
Meeting the Challenges of Virtualization Security
Get server self defense and malware protection for virtual machines (PDF)
Lower Security Costs and Risks with Virtual Patching
Keep pace with the ever-increasing number of attack vectors (PDF)
Cost-Effective Virtualization Security
- Fully and safely utilize your virtualization environment (PDF)
- Choose the right security solution to achieve higher ROI in a virtualized world (PDF)
Cloud computing
ESG Research White Paper
Explore safeguards for evolving to cloud computing (PDF)
Cloud Computing Security
Make virtual machines cloud ready to improve your bottom line (PDF)
Compliance
Payment Card Industry (PCI) Data Security Standard
Meet stringent requirements while simplifying your audit (PDF)
Server Security for Healthcare
Comply with HIPAA, HITECH, PCI DSS, and breach notification laws (PDF)
FISMA / NIST 800-53 Revision 3 Compliance
Assure service levels and policy compliance, secure assets and services (PDF)