Views:

Deep Discovery Director (Internal Network Analytics Version) can send synchronized suspicious objects, user-defined suspicious objects and C&C callback addresses to Trend Micro TippingPoint Security Management System (SMS).

Note:

The following actions will remove suspicious objects from Trend Micro TippingPoint Security Management System (SMS):

  • Moving synchronized suspicious objects to Exceptions

  • Expiring synchronized suspicious objects

  • Deleting user-defined suspicious objects

Deep Discovery Director (Internal Network Analytics Version) sends each C&C callback address and suspicious object with the following optional information:

  • Trend Micro Severity: Severity of each suspicious object or C&C callback attempt

  • Trend Micro Publisher: Trend Micro Deep Discovery Director (Internal Network Analytics Version)

  • Trend Micro Source: Deep Discovery Director (Internal Network Analytics Version) host name

  • Trend Micro Detection Category: Suspicious object or C&C callback attempt

  • Reputation Entries TTL: The time to live (TTL) of the C&C callback address or suspicious object.

    Note:

    Only supported by SMS 5.1 or higher.

Parent topic: Auxiliary Products/Services