FortiOS 7.6 簡介
增強 Fortinet 的即時性
網路安全作業系統
Downliad Introducing FortiOS 7.6
FortiOS 7.6 中的增強功能
Fortinet Security Fabric 平台跨關鍵用例交付,提供廣泛的整合安全性和
網路功能覆蓋網路的每個角落。 FOS 7.6 的最新增強功能提供了新的或豐富的功能
在以下領域:
Secure Networking
The Secure Networking component of the Fortinet Security Fabric combines critical networking, connectivity, and security
functions, including OT, IOT, and Edge security.
FOS 7.6 enhancements include:
n FortiAI for Management, Provisioning, Docs, & Support: Forti AI now includes Generative AI within FortiManager to assist
with platform management, new product and feature deployment, network monitoring, and accessing documentation
and support assets. FortiAI facilitates faster decision making, helps detect and remediate incidents quickly, and ensures
organizations can easily adopt the technologies they require.
n Managed FortiGate Service: This new service can offload NOC teams by deploying, configuring, monitoring, and managing
FortiGate deployments. Staffed by Fortinet professionals, this service leverages cloud-based tools to become an extension
of the NOC team. Customers and partners can use these services so their cybersecurity experts can focus on higher-value
activities.
n Data Loss Prevention: DLP enhancements improve detection confidence and exact match capabilities to ensure sensitive
information remains secure no matter where it resides within the hybrid network.
n FortiLink NAC: Enhancements to our in-built NAC capability, part of our proprietary FortiLink protocol, enable FortiGate
devices to directly manage FortiSwitch and FortiAP products. FortiLink NAC enables Fortinet switches and access points to
identify and properly onboard IoT devices into the appropriate network segment without requiring additional licenses.
n Wi-Fi 7 Controller: Our wireless controller can now manage our recently announced Wi-Fi 7 access points.
n New AIOps services improve SD-WAN monitoring and management and DEM’s ability to share information, resulting in better
visibility and better user experiences.
n New FortiGuard Services: FortiGuard Services provides organizations with a proactive and intelligent approach to
cybersecurity, enabling them to confidently navigate the ever-changing threat landscape. Enhancements to our existing suite
of AI-powered services include:
– Increased FortiGate NGFW inline protection capabilities: Real-time inline detection and prevention of AI-powered
attacks can recognize and block even the most intricate and novel threats
n Significant upgrades to the AI-powered Inline Malware Prevention Service include new features like real-time
anti-phishing and an accelerated AI pre-filter
n The ability to render verdicts more quickly
n Critical prevention of patient zeros
n AI enhancements to URL and web filtering to improve malicious attack prevention
Unified SASE
As organizations incorporate more cloud-based resources and support a hybrid workforce, cloud-delivered and cloud-based
security solutions grow in importance. Securing remote users while maintaining reliable connections is paramount for
organizations that have adopted a hybrid workforce strategy. FortiOS 7.6 enhancements include:
n Unified Agent (FortiClient): FortiClient converges many solutions into a single agent, including ZTNA, VPN, EPP, continuous
vulnerability assessment, sandboxing, telemetry, and DEM, as well as agent capabilities for PAM and NAC. FortiOS 7.6 adds a
complete EDR capability to FortiClient, adding ransomware protection, behavior-based detections, and automated responses
to its host of visibility, control, and remote access capabilities.
n SASE (SSE + SD-WAN):
– Managed SASE/ZTNA: Similar to the Managed FortiClient service, the FortiSASE operations team can onboard a SASE
customer and help configure their SASE portal. This remote service and its managed service engineers will configure
FortiSASE, offloading local NOC or SOC teams from managing this element of their cybersecurtiy.
– FortiAI for migration, planning, and deployment: New Generative AI can assist with transitioning to public clouds and
provide guidance on planning and deploying applications and services within specific cloud platforms. This service will
be available within cloud provider offerings, such as FortiAI for AWS and FortiAI for Azure.
– Data protection: DLP enhancements improve detection confidence levels and its exact match capabilities for SASE users
to ensure sensitive information remains secure no matter where it resides within the hybrid network.
– Switch/AP/5G Support: New FortiSASE support for thin edge use cases enables remote AP, switch, and FortiExtender
deployments.
– SD-WAN: FortiOS 7.6 provides over 20 new SD-WAN capabilities to streamline operations and improve user experience.
Enhancements to Overlay Orchestration simplify and automate connectivity across multiple clouds to streamline
operations. Improvements to our Underlay Bandwidth and Quality Monitoring Service offer comprehensive link, path,
and application performance monitoring to optimize user experience and simplify operations.
– Remote Browser Isolation: Organizations can now easily add RBI (remote browser isolation) to their SASE user set to
further insulate users from the threats on the internet.
– End-to-End Digital Experience Monitoring (DEM): The DEM agent has now been added to FortiClient, offering end-to-end
DEM for FortiSASE users for better visibility and troubleshooting.
– 3rd Party SSE Support (IPSec): FortiSASE IPsec Service Connection allows prospects to connect third-party SD-WAN
branches and regular routers to the FortiSASE platform using IPSec tunnels. This enables greater flexibility when selecting
and managing vendors and vendor transitions.
– Unified Policy: Leveraging the common FortiOS deployed across on-prem and virtual firewalls and SASE POPs, users can
establish unified policies across all their firewall enforcement points.
AI-Powered SOC Operations
Detecting, preventing, and remediating threats and attacks continue to be critical challenges for many SOC teams. That’s why
we have developed advanced AI capabilities for SOC environments that enhance threat identification, including generative AI
to guide SOC teams in threat investigation and response.
FortiAnalyzer 7.6, the central data lake of the Fortinet Security Fabric, unifies configurations, events, and alerts and provides
advanced threat visualization views. It also introduces a Security Automation Subscription that offers powerful features like
premium reports, event handlers, and incident response playbooks. These enhancements empower SecOps teams and streamline
operations with improved detection, investigation, and response to security incidents. New FortiOS 7.6 enhancements include:
n Enhanced SOC-as-a-Service (SOCaaS): Integrating SOCaaS with SASE, Forensics, and MFGS, along with integrating
outbreak detection capabilities, significantly enhances our managed SOC offering.
n FortiAI Integration: Integrating FortiAI into FortiAnalyzer enhances the system’s ability to analyze and respond to security
threats. By leveraging FortiOS telemetry data, FortiAI provides advisory support, facilitating quicker decision-making and
efficient actions like specific report queries or event handling.
SIEM Lite: Adding limited SIEM capabilities to FortiAnalyzer helps centralize data in the Security Fabric by merging
configurations, events, and alerts for better visibility and analysis. Its threat visualization dashboards (including interactive
topology) offer an intuitive, graphical representation of security threats and patterns.
n SOAR Lite: Adding limited SOAR capability to FortiAnalyzer, accessible through the Security Automation Subscription,
offers curated content packs with out-of-the-box premium reports, event handlers, advanced correlation rules, third-party
log parsers, automation connectors, data enrichment, and incident response playbooks. These packs provide a significant
advantage as they will be updated continuously, independent of future FortiAnalyzer releases, ensuring that SecOps teams
have the most current tools and data at their fingertips.
n Governance, Risk, and Compliance (GRC): FortiAnalyzer 7.6 addresses the complexities of adhering to, maintaining, and
continuously improving compliance and risk management while catering to the dynamic nature of security infrastructures with
new GRC reports. Its service for attack surface and compliance management proactively assesses network vulnerabilities
and helps guide targeted improvements in security posture. These tools simplify the compliance process by automatically
generating reports on industry-specific risks and non-compliant configurations, offering valuable insights into the security
posture of IT and OT environments.
n FortiAI for Incident Response: Generative AI assistance can analyze alerts and alarms in FortiSIEM and provide prompts for
follow-up actions in FortiSIEM and FortiSOAR.
n EDR integration with FortiClient: Adding EDR to FortiClient brings full endpoint detection and response capabilities to our
Unified Agent, including combining ransomware protection and ZTNA capabilities in one agent.
http://2ns.org/?Wl24o
Downliad filename
[ add comment ] | permalink | print article | ( 3 / 915 )