Assessing open and closed EDRs
Αποτίμηση EDRs ανοιχτού και κλειστού κώδικα
View/
Keywords
EDR ; OpenEDR ; Endpoint Protection and ResponseAbstract
Nowadays, endpoint security solutions are an essential tool for all organizations in order to protect the network devices. The global endpoint security market is expected to rise even more the following years as the need for security becomes a big concern. Although the most important aspect is the quality of the products, traditional signature based malware detection alone is no longer sufficient in order to be protected. I will try to analyze some key components of a robust endpoint security solution and their protective effects on a system.
In many instances where security is a problem we are trying to solve, consultants and Security officers may suggest the company to spend big amounts of money in order to purchase an EDR solution for the business. However if we don’t put the system on a test, we cannot be certain that the solution works as intended.
The team should spend time on the configuration of the solution in order to make sure that it detects attackers' activity (network connections, changes in registry) and not only classic signature based ones. Team should check the defaults rules that are available and in general verify that the products meet the requirements that the business has and the things the company claims to be doing.
The aim of this master dissertation is to create an in depth comparison of two EDR - systems for assessing cyber security needs and corporate requirements. The primary objective of this paper is to understand the advantages and disadvantages of each solution in an everyday scenario and the information they provide to a Cyber Security Analyst that is working towards ensuring the Confidentiality, Integrity and Availability of the environment they are protecting.
Finally, it also provides the opportunity to review the already existing solutions that exist and give recommendations on improvement for the providers.
Postgraduate Studies Programme
Κατανεμημένα Συστήματα, Ασφάλεια και Αναδυόμενες Τεχνολογίες ΠληροφορίαςDepartment
Σχολή Τεχνολογιών Πληροφορικής και Επικοινωνιών. Τμήμα ΠληροφορικήςNumber of pages
94Language
EnglishCollections
Except where otherwise noted, this item's license is described as
Αναφορά Δημιουργού-Μη Εμπορική Χρήση-Όχι Παράγωγα Έργα 3.0 Ελλάδα
Αναφορά Δημιουργού-Μη Εμπορική Χρήση-Όχι Παράγωγα Έργα 3.0 Ελλάδα