Symantec Online Network for Advanced Response (SONAR) monitors running applications in real time. It identifies and stops malicious behavior from legitimate software, effectively halting zero-day attacks. 3. Network Threat Protection (Firewall and IPS)
Your (e.g., system administrators, business owners, students)
Don’t just turn it on; tune the sensitivity. symantec endpoint protection 14
Your specific (Windows, Linux, macOS)
SONAR is SEP’s behavioral monitoring engine. It watches applications as they run in real time. If a legitimate program starts exhibiting malicious behavior—such as attempting to inject code into another process or modifying sensitive registry keys—SONAR immediately halts the execution and quarantines the file. 3. Optimizing for the Modern Enterprise Network Threat Protection (Firewall and IPS) Your (e
SEP 14 introduces advanced machine learning on both the endpoint and the cloud.
SEP 14 unifies multiple security functions into a single, lightweight agent. This single-agent design reduces system overhead while providing comprehensive protection across diverse operating systems, including Windows, macOS, and Linux. Core Security Features and Technologies students) Don’t just turn it on
[ Incoming Network Traffic ] │ ▼ ┌───────────────────────┐ │ Network Threat │ ◄── IPS / Firewall │ Protection │ └───────────┬───────────┘ │ Clean Traffic ▼ ┌───────────────────────┐ │ Proactive Threat │ ◄── Behavioral Analysis (SONAR) │ Protection │ Machine Learning └───────────┬───────────┘ │ Unrecognized Files ▼ ┌───────────────────────┐ │ Virus and Spyware │ ◄── Signature Scanning │ Protection │ Insight Reputation └───────────────────────┘ 1. Advanced Machine Learning (AML)
Controls inbound and outbound network traffic based on corporate policies.
The agent is the software package installed on individual endpoints (Windows, Mac, and Linux). SEP 14 introduced a highly optimized, "low-footprint" agent. By shifting heavy definition processing to the cloud, the agent requires up to 70% less bandwidth and significantly less disk space than legacy versions, reducing system overhead for end-users. Database Layer
SEP 14 utilizes a client-server architecture designed to balance centralized management with low-impact endpoint performance. Symantec Endpoint Protection Manager (SEPM)