Tuesday, May 7, 2013

The Managed Endpoint Model


Here's something I've been toying with let me know what you think and if it helps get a handle on stuff ... you know ... work stuff.

The Managed Endpoint Model


The following list details the seven layers of the Managed Endpoint reference model:
Layer 7—License Management
Layer 6—Software Management
Layer 5—OS and Patch Management
Layer 4—Data Management
Layer 3—Virus and Malware Management
Layer 2—Image Management
Layer 1—Physical Device Management
 Figure 1-1. The Endpoint Management Reference Model

Characteristics of the Managed Endpoint Model Layers


The seven layers of the Managed Endpoint Model reference are divided into two groups.
The upper layers of the Managed Endpoint Model deal with issues generally implemented only in software. The highest layer, the License Management layer, is closest to the Software and Operating Systems providers. Both users and hardware processes interact with software applications that contain licensing. 
The lower layers of the Managed Endpoint Model handle hardware issues. The physical layer and the data link layer are in hardware and software. The lowest layer, the physical device layer, is closest to the person (end user), physical network, and hardware provider.               
Since the Managed Endpoint Model provides a conceptual framework for managing computers, we are using this model to define and describe the design for desktop and endpoint standardization.

 1. Managed Endpoint Model Physical Device Management Layer

The Physical Device Management layer defines the electrical, mechanical, procedural, and functional specifications for activating, maintaining, and deactivating the physical machines and network systems. Physical Device Management layer specifications define characteristics such as:

computer type

  • computer manufacturer
  • processor type and speed
  • memory amount and speed
  • disk type and size
  • monitor size and type
  • mouse and keyboard
  • network interface requirements

For printing devices:

  • pages per minute
  • color or black and white
  • special forms requirements
  • copy and fax capabilities
  • scan to email or scan to disk storage
  • password coding
  • Manufacturer
  • Network interface requirements

2. Managed Endpoint Model Image Management Layer


The Image Management layer provides reliable computing experience across the multiple platforms of hardware in the physical network. Different Image Management layer specifications define different network and protocol characteristics, including user rights, software and application installation levels, data storage and retrieval rights and processes (including encryption), and printing control. Closest to the user it is the ability to control an image that most completely enables the entire Managed Endpoint Model .

3. Managed Endpoint Model Virus and Malware Management Layer


The Virus and Management layer provides a constant surveillance of threats to the network as it applies to the access points associated with endpoints. This includes updating virus definitions but is not just a methodology for keeping Antivirus software up to date. This includes a strategy for determining who has access to potentially dangerous websites, preemptive scans of areas within the network, data save restriction, and automatic image remediation.

4. Managed Endpoint Model Data Management Layer


The Data Management layer controls data from the network. It is primarily focused on data retention, distribution, and alteration. In conjunction with server level GPO and other security policies the Data Management layer governs the ability of users to save data at their local machine or on devices attached to their local machine. The Data Management layer is the central layer to the complete Managed Endpoint Model, all the layers below this layer build to it and all the layer above this layer contribute to it. The objective of the entire Managed Endpoint Model is to protect and process the data.

5. Managed Endpoint Model OS and Patch Management Layer




The Managed Endpoint Model OS and Patch Layer configures and maintains the Operating Systems on the physical devices. The OS and Patch Layer assures that patches intended to fix problems do not break applications or cause other problems. This layer assures all patches are tested and to the extent that they a fully functional – are current.

6. Managed Endpoint Model Software Management Layer


The Managed Endpoint Model Software Management layer provides a variety of software applications that have been tested and added to the approved software list. This layer maintains strict control of installed software and is aware of what the software does, who is affected, where the data is stored that the software uses, what happens to the data the software processes, and who ultimately is the responsible party for the software.

7. Managed Endpoint Model License Management Layer


The Managed Endpoint Model License Management layer is the layer closest to the software provider, which means that both the License Management layer and the user interact directly with the software application.

This layer interacts with software applications implemented assuring that each installed instance is in compliance with the terms and conditions of the software manufacturer and the associated license granted to the end user or the corporation. Some application programs fall outside the scope of the OSI model however, License Management layer functions typically include identifying communication partners, determining resource availability, and synchronizing communication to assure the license compliance fully meets the contractual agreements.

No comments:

Post a Comment