Soorten scans
De McAfee SECURE standard is een optelsom van “best practice” in de branche, de langdurige kennis van McAfee op het gebied van veiligheid, continu onderzoek en de partnerships met honderden leveranciers van software en applicaties.
Zo kan McAfee SECURE ervoor zorgen dat websites met behulp van McAfee SECURE de meest optimale bescherming krijgen.
Hieronder vindt u de verschillen tussen de verschillende scans en certificeringen.
|
|
Vulnerabilities Identified |
Required for Certification |
||
|
Security Risk |
McAfee SECURE |
PCI |
McAfee SECURE |
PCI |
|
Scan Frequency |
Daily |
Quarterly |
Daily |
Quarterly |
|
SQL-injection |
• |
• |
• |
• |
|
Blind SQL injection |
• |
• |
• |
• |
|
SQL Database Error Disclosure |
• |
• |
• |
• |
|
Local File and Remote File Includes |
• |
• |
• |
• |
|
Directory Traversals |
• |
• |
• |
• |
|
Improper Error Handling |
• |
• |
Optional |
• |
|
Application Source Code Disclosure |
• |
• |
• |
• |
|
Authentication Bypass |
• |
• |
• |
• |
|
Insufficient Session Expiration |
• |
• |
Optional |
• |
|
Command Injection |
• |
• |
• |
• |
|
SSL Injection |
• |
• |
• |
• |
|
Malicious CGI Scripts |
• |
• |
• |
• |
|
Buffer Overflows |
• |
• |
• |
• |
|
Client Side Vulnerabilities |
• |
• |
Optional |
• |
|
Directory Indexing |
• |
• |
Optional |
• |
|
Server Nisconfigurations |
• |
• |
Optional |
• |
|
SSL encryption |
• |
• |
Optional |
• |
|
Scan Frequency |
Ongoing |
Not applicable |
Ongoing |
Not applicable |
|
Malicious Downloads |
Ongoing |
|
Ongoing |
|
|
Malicious Affiliations (links) |
Ongoing |
|
Ongoing |
|
|
Phishing Scams |
Ongoing |
|
Ongoing |
|
|
Browser Exploits |
Ongoing |
|
Ongoing |
|
|
Misuse of personal information |
Ongoing |
|
Ongoing |
|
|
Annoyances (excessive Pop-ups) |
Ongoing |
|
Ongoing |
|
