A strong host security that minimizes downtime and costs associated with computer attacks by protecting the applications and operating system. Flexible and easy to use, Novell AppArmor protects server, Web-based and custom applications from malicious behavior by identifying violations to a pre-defined usage policy and enforcing correct behavior.
Key Features & Benefits: Allows administrators to create per-program usage profiles through an automated process. Creates a template profile just by analyzing the program’s code. Then, in the normal course of application testing, the Learning Mode Tool captures “good behavior” to further define the program’s profile. Once the analysis has been completed, the profile can be deployed across multiple systems, effectively locking down the application to prevent exploitation. A host intrusion prevention for Linux servers that guards against the exploitation of software vulnerabilities in Linux programs, services and custom applications. YaST-Based User Interface. Integrated into the Linux Security Modules (LSM). The Server Analyzer feature scans the programs installed on the server to determine which programs are listening on open network ports. If an application is identified as unsecured, Novell AppArmor will suggest confinement. The Policy Template Generator statically analyzes a program’s binary code and automatically generates a profile template. Auto Learning runs the targeted program through its normal operation while profile rule violations are reported but not enforced. Logged events are accumulated into the profile of normal behavior for validation prior to enforcement. The visual editor provides colorized highlighting of profiles to make it easy to quickly identify elements of profiles where higher-level privileges are being granted. The Visual Editor also highlights regular expressions and foundation classes facilitating quick visual validation. Includes multi-tier reporting with data aggregation, incident analysis, event severity and notification status via the YaST UI or HTML format.
Highlights: Prevents host from compromise and threat escalation, regardless of attack type; SubDomain technology in Novell AppArmor secures systems at the most granular level; administrators and developers can quickly create new behavior-based policies for any application; pre-defined policy templates for common applications; cost-effective and scalable protection for business critical Linux deployments; direct integration via the LSM minimizes CPU performance impact; maintains policy integrity when changes are made. Application policies restrict program and system processes to only those required for normal operation; create, modify, and enable application-specific security policies for any application; powerful GUI based wizards speed enterprise deployment, installation and management; tightly integrated with the Linux Security Modules policies, resources, and corresponding rules; integration into the SUSE LINUX UI for policy creation, reporting & management.
Management: The wizard-based graphical interface automates profile development, making it easy and straightforward to lock down Linux applications, especially for novice users, while allowing power users the flexibility they need to create finely tuned profiles via the command line tools.
Novell
404 Wyman Street, Suite 500
Waltham, MA 02451 USA
Tel: (781) 464-8000
www.novell.com
