Deep Discovery Director (Internal Network Analytics Version) can send synchronized suspicious objects, user-defined suspicious objects and C&C callback addresses to Trend Micro TippingPoint Security Management System (SMS).
The following actions will remove suspicious objects from Trend Micro TippingPoint Security Management System (SMS):
-
Moving synchronized suspicious objects to Exceptions
-
Expiring synchronized suspicious objects
-
Deleting user-defined suspicious objects
Deep Discovery Director (Internal Network Analytics Version) sends each C&C callback address and suspicious object with the following optional information:
-
Trend Micro Severity: Severity of each suspicious object or C&C callback attempt
-
Trend Micro Publisher: Trend Micro Deep Discovery Director (Internal Network Analytics Version)
-
Trend Micro Source: Deep Discovery Director (Internal Network Analytics Version) host name
-
Trend Micro Detection Category: Suspicious object or C&C callback attempt
-
Reputation Entries TTL: The time to live (TTL) of the C&C callback address or suspicious object.
Note:Only supported by SMS 5.1 or higher.