cancel
Showing results for 
Search instead for 
Did you mean: 
epo909
Level 9

What really are the Artemis Sensitivity Levels?

Hi all.

A few weeks ago I have started evaluating the impact of Artemis detection with near 500 nodes. I was trying to quantify the utilization of network resources and services, in this case DNS, so that I can have an idea how Artemis might impact on 20.000 - 30.000 nodes.

While using a 'Very Low' sensitivity levels, I was able to get a few detections per day (~10), along with some detection spikes (~400) on some nodes, mostly caused by files that are locked by the OS and therefore require a reboot. Mostly detections where from malware that wasn't detected by the DAT to that date.

My doubts started when I tried to understand what the sensitivity levels mean and how they impact on large environments.
I have search about in the KB, oppened partner tickets, and no one was able to tell me how sensitivity levels differ from each other.

There's no sense in keeping this information secret, and give custmers Sensitivity Levels that affect a new technology that is totally dependent on network infrastructure, that belongs to the customer by the way. Does McAfee guarantee that 30.000 nodes won't DDoS the internal DNS infrastructure?

Its nice to see VSE with extended malware detection, but the *total* lack of information regarding on how this technology operates, makes it totally useless on large enterprises.

RD
0 Kudos
1 Reply
PhilR
Level 12

RE: What really are the Artemis Sensitivity Levels?

https://kc.mcafee.com/corporate/index?page=content&id=KB53732

Here's what they say there:

Sensitivity Level Descriptions

Disabled: Artemis Technology is turned off

Very Low: Equivalent to next days DATs. Get tomorrow's protection today. Recommended initial configuration

Low: Protection in addition to DATs.

Medium: Used when the risk of regular exposure to malware is greater than the risk of a false positive.

High: Recommended for deployment to systems or areas which are regularly infected.

Very High: Recommended for use in email and On-Demand Scans on non-operating system volumes.
0 Kudos