|
As applications become more complex, as updated and new
applications are delivered in shortened development cycles,
and as more applications are in use and in demand than ever
before, the door opens wide for vulnerabilities to be found
and exploited. In fact, 24 vulnerabilities are identified
every day, of which 12.5 are considered serious enough for
IT staff to address each day¹. And with automation tools
readily available, hackers are able to identify and exploit
more vulnerabilities than ever before – 8,064 reported by
CERT in 2006, which is a 35 percent increase from 2005².
Without a comprehensive vulnerability management solution
to define mandatory baselines, discover and assess your
network resources, patch and remediate vulnerabilities, and
centrally audit and report on the effectiveness of your
vulnerability management approach, your organization could
be left exposed. Gartner predicts that by the end of the
year, 75 percent of enterprises will be infected with
undetected, financially motivated, targeted malware that
evaded traditional perimeter and host defenses³.
Lumension’s Vulnerability Management Solution Simplifies Control of the Entire Vulnerability Lifecycle – Assessment, Remediation, Auditing and Reporting
Lumension Security’s Vulnerability Management Solution
delivers complete vulnerability management through a
market-validated process that includes comprehensive asset
discovery and inventory, thorough vulnerability assessments
based upon network-based and agent-based scans, intelligent,
automated remediation and ongoing policy compliance audits -
all from a single, seamlessly integrated solution with
enterprise reporting.
Combining market-leading products such as PatchLink Scan,
PatchLink Update and PatchLink Security Management Console,
Lumension’s Vulnerability Management Solution enables you to
effectively manage the entire vulnerability lifecycle, by
consolidating vulnerability data and providing centralized
policy enforcement and compliance reporting.
Comprehensive Vulnerability Management Solution delivers:
- Thorough and accurate discovery of
network assets using both network and
agent-based scans of all resources
- Automatic deployment of agents to
unmanaged and rogue machines to ensure
no network coverage gaps
- Comprehensive and accurate threat
assessment with database of over 4,000
non-patch vulnerabilities, flexible
scanning techniques based on access
levels and mandatory baseline policy
establishment
- Patented vulnerability remediation
with automatic health monitoring and
status through digital fingerprint
technology, a vast repository of over
15,000 patches that covers all major
applications and operating systems, and
enforcement of mandatory baselines
- Validation of compliance with
security policies through continuous
monitoring of nodes and through a full
range of operational and management
reports to track vulnerability
assessment and remediation results
- Consolidation of security management
resources with unified view and
architecture
Sources:
1 – National Vulnerability Database - 05/09/2007
2 –
http://www.cert.org/stats/
3 – Gartner Research, “Gartner’s Top Predictions for IT
Organizations and Users, 2007 and Beyond,” Daryl C. Plummer,
December 1, 2006
Accurate and Thorough Software Vulnerability Assessment
Today’s enterprise network is complex, with an
abundance of nodes and vulnerabilities that must be
accounted for. With more than 30,000 known software
vulnerabilities¹ and countless configuration and access
point threats, identifying all of the risks to your
network can seem overwhelming.
Without understanding what devices are in your
network, you are left to develop and enforce enterprise
policies without having a very significant piece of
information. By discovering all authorized and
unauthorized network resources, how they are used, and
determine whether they pose risk to the enterprise as
well as the criticality of any discovered
vulnerabilities, you can take the first step to managing
the vulnerability lifecycle.
Lumension’s Vulnerability Assessment Solution
Provides Stand-Alone Vulnerability Scanning Capabilities
Lumension’s Vulnerability Assessment Solution,
consisting of PatchLink Scan and PatchLink Security
Management Console, thoroughly identifies all of the
assets running on your network, including servers,
desktops, laptops, routers, switches, printers, wireless
access points, and more. This discovery can be performed
using IP ranges, Active Directory, and/or Network
Neighborhood enumerations.
Through deep inspection of target systems that
includes redundant file attribute and registry value
correlation, as well as SSH tunneling and authenticated
OS fingerprinting refinement, the scanner identifies all
software vulnerabilities, including missing patches,
out-of-date antivirus signatures, worms, Trojans, and
more. The scan also runs detailed configuration checks
on ports, users, shares, groups, agents and services. To
guarantee thorough analysis, the solution is able to
adapt its scanning technique based on its level of
access, with the ability to run anonymous scans against
target systems upon which it cannot authenticate.
The powerful yet easy-to-use, role-based PatchLink
Security Management Console displays all relevant
information for each device and vulnerability discovered
during a particular scan. The solution prioritizes
vulnerabilities based on critical asset and
vulnerability score-carding to aid in the remediation
process. The solution also provides remediation
information and recommendations for implementing
corrective action. This resource database is based on
the knowledge of a team of expert security engineers who
continually research security advisories, knowledge base
papers and professional security group articles.
Lumension’s Vulnerability Assessment Solution Enables
Organizations to:
- Rapidly identify and inventory all devices on your network
- Scan (network-based) all devices for operating system and software vulnerabilities
- Scan (network-based) all devices for configuration vulnerabilities
- Prioritize identified threats against a robust vulnerability database
- Deliver comprehensive reports of scan results
1 - Carnegie Mellon University's Computer Emergency Response Team (CERT) reports 30,780 known vulnerabilities between 1995 and 2006
Comprehensive Inventory Management
IT organizations are responsible for optimum
utilization of IT investments. However, many
organizations are left without the power to make
informed decisions about IT infrastructure as
environment complexity increases, while visibility and
management of assets decreases.
Without the capabilities to discover and inventory
assets within an organization’s environment, decisions
must be made without significant pieces of information.
What enterprises need is an inventory management
solution that enables the quick and accurate
identification of software, hardware and services
throughout your network, to monitor how the assets are
being used (or misused), and to ensure the assets are in
compliance with configuration and licensing policies.
After all, knowledge is power.
Lumension’s Inventory Management Capabilities Provide Detailed Asset Inventory Information
Lumension’s Inventory Management Solution provides a
360-degree view of your IT assets via comprehensive and
flexible network-based and agent-based scans. Delivering
summary and detailed data for the enterprise or select
machines, Lumension enables organizations to make
informed decisions about IT infrastructure. Ongoing
network-based discovery includes PC’s, laptops, routers,
printers, switches, and wireless access points.
Agent-based scans include servers, desktops and mobile
computers. Object types such as computer model and
serial number, hyper-threaded CPUs, virtualized
hardware, last logged user, last reboot time, and more
are also inventoried.
Lumension’s Inventory Management Solution integrates
the inventory scanning, storage, and administration
power of PatchLink Scan, PatchLink Update and PatchLink
Security Management Console, enabling customers to
manage inventory through a single administrative
console.
Lumension's Inventory Management Solution Enables IT Organizations to:
- Identify all devices on the network
- Automatically capture and maintain detailed hardware, software and services inventory
- Reduce costs through efficient software license usage and monitoring
- Effectively plan upgrades and maintenance
- Respond quickly to software audits
- Leverage consolidated information through enterprise reports
- Achieve policy compliance
Continuous Patch Management and Remediation
Today’s business environment is dynamic, with
endpoint configurations changing constantly as security
threats proliferate and as configurations are altered by
end users or IT. If left unmanaged, all of these threats
and configuration changes can make your systems
vulnerable. More than 8,000 software vulnerabilities are
being reported each year¹, and configuration exploits
are on the rise.
As the window of time between vulnerabilities
discovered and exploits launched continues to shrink,
the biggest challenge for many organizations is
remediating these before an exploit occurs. In fact,
12.5 vulnerabilities are considered serious enough for
IT staff to address each day². Endpoint configurations
also drift out of compliance on a regular basis. Over 90
percent of cyber attacks exploit known security flaws
for which a remediation is available³. Endpoints must be
continuously monitored because even if the software or
configuration vulnerability is remediated today, the
same one may need to be re-addressed tomorrow.
Automating this time-consuming process can
significantly decrease the costs and time involved in
securing an organization from threats and meeting
internal policy and regulatory compliance requirements.
Lumension Security’s Patch and Remediation Solution Automates the Patch and Remediation Process
Lumension’s Patch and Remediation Solution enables
organizations to stay ahead of today’s increasing
threats by delivering rapid and automated patch and
remediation of software vulnerabilities and
configuration issues.
Comprised of three leading security products,
PatchLink Update, PatchLink Security Management Console
and PatchLink Developers Kit, Lumension’s Patch
Management and Remediation Solution enables you to
automate the collection, analysis, and delivery of
software patches and rapidly create and deploy
remediation packages that address a wide range of
configuration related issues (i.e. closing down
vulnerable ports, shutting down dangerous services,
etc.) throughout the heterogeneous enterprise.
With Lumension Security’s Patch Management and
Remediation Solution, you can shut the door on
vulnerabilities before they can be exploited.
Lumension’s Patch Management and Remediation Solution Enables You to:
- Identify all endpoints, including rogues, and propagate remediation agents
- Perform detailed agent-based scans for complete vulnerability and patch level status
- Automate threat remediation that supports all major platforms, and application patches for over 40 of the most common third-party applications
- Deliver ongoing patch monitoring and comprehensive reports of patch activity
- Enforce configuration policies by identifying out-of-compliant systems and returning the affected systems to their desired state by quickly remediating the issue
1 –
http://www.cert.org
2 – National Vulnerability Database - 05/09/2007
3 – Gartner Research
Network Access Control (NAC) Integration
With an increasing mobile workforce and with an
increase in outsourcing, there are more unmanaged
endpoints than ever before that now require access to
enterprise networks. Even with the deployment of a vast
array of endpoint security solutions, all it takes is
one non-compliant endpoint to compromise your network.
By enforcing security policies at the point of entry and
quickly and automatically bringing endpoints back into
policy compliance, you can significantly strengthen your
security posture.
Lumension Delivers Automated Remediation for Network
Access Control Solutions
Lumension’s market-leading patch management solution
can be integrated with your NAC solution to rapidly
grant secure access to the corporate network. Lumension
ensures that non-compliant endpoints blocked by your
access control solution can be automatically reformed
back into policy compliance, allowing end-users to
quickly gain access to the resources and information
they need to remain productive.
Lumension’s NAC integration solution enables you to
define the minimum vulnerability management policies
that must be attained on each endpoint before it is
granted network access. These access control policies
can be enforced globally across the enterprise or down
to individual group levels.
Designed to support current and emerging NAC
frameworks, Lumension has partnered with key industry
leaders in support of major NAC standards to ensure
seamless integration with your NAC solution.
Lumension Security's Automated Remediation for
Network Access Control Solutions Enables:
- Definition of vulnerability
management policies that must be met
by each machine before network
access is granted
- Determination of endpoint
compliance with defined policies
- Remediation of all discovered
threats
- Post-remediation granting of
access to the network
- Reduced network risk and
minimized cost and NAC
implementation time
Designed to Support Current and Emerging NAC
Frameworks
Lumension’s automated patch management software will
integrate with your existing NAC infrastructure and
supports the following NAC standards:
- Cisco Network Admission Control
(NAC)
- Trusted Computing Group’s
Trusted Network Connect (TNC)
- Microsoft’s Network Access
Protection (NAP - planned for 2008)
Partnerships with Leading NAC Vendors
Lumension Security has partnered with several leading
NAC vendors, including Juniper, ForeScout and Autonomic
Networks, to develop custom integrations with their NAC
solutions, which will reduce the implementation time
frame for organizations.
|
Proactive
Vulnerability Management
