Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 1 subscriber
  • Views 4879 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

File Reputation "Insight"?

ricdgr

Hi there,

Does "Live Protection" works like a very fast way to distribute signatures, or like a reputation database?

Does SOPHOS has any comparable "reputation system" like Insight?

Is there anythink like it on a near term roadmap?

Thanks

:41403


This thread was automatically locked due to age.
Parents
  • 0

    No offense taken.

    Actually the product will fit what I need, because I do get more than just the AV (most notably, the mobile control features) already have a UTM at the edge and can only license per-user (only SOPHOS does this). That does not prevent me of being critic of some aspects, and to request more information to know the product better.

    Security Made Simple does not imply that SOPHOS has to babysit each one of us. Why are we not trusted to define our own groups for DLP, or our own application fingerprints or certificates for applications we know? High false positive ratio is nor easy, it's a nightmare. Not being able to block a certain app we see peopleusing is easy,  but makes the feature pointless.

    Problem I have with the AV is that it looks like SOPHOS way of working is to try to map everything bad on their own, being it DLP content, Apps, device types or malware. That does not seem to scale very well to the current dynamic threat and devices landscape.

    I wonder if there anything planned (major release) for this year that somehow improves on this, and how is SOPHOS dealing with server side polymorphism and APTs, other than "mapping the bad".

    From your comments, I'm worried it will be even more dumbed down for easiness.

    :41815
Reply
  • 0

    No offense taken.

    Actually the product will fit what I need, because I do get more than just the AV (most notably, the mobile control features) already have a UTM at the edge and can only license per-user (only SOPHOS does this). That does not prevent me of being critic of some aspects, and to request more information to know the product better.

    Security Made Simple does not imply that SOPHOS has to babysit each one of us. Why are we not trusted to define our own groups for DLP, or our own application fingerprints or certificates for applications we know? High false positive ratio is nor easy, it's a nightmare. Not being able to block a certain app we see peopleusing is easy,  but makes the feature pointless.

    Problem I have with the AV is that it looks like SOPHOS way of working is to try to map everything bad on their own, being it DLP content, Apps, device types or malware. That does not seem to scale very well to the current dynamic threat and devices landscape.

    I wonder if there anything planned (major release) for this year that somehow improves on this, and how is SOPHOS dealing with server side polymorphism and APTs, other than "mapping the bad".

    From your comments, I'm worried it will be even more dumbed down for easiness.

    :41815
Children
No Data