IBM Proventia Network Enterprise Scanner



Similar documents
IBM Proventia Network Enterprise Scanner

IBM Internet Security Systems October FISMA Compliance A Holistic Approach to FISMA and Information Security

IBM Internet Security Systems products and services

IBM Internet Scanner software

IBM Global Technology Services Preemptive security products and services

The Evolution of Managed Security Services ISS Virtual-SOC Solution, Security the Way You Need It

IBM Proventia Management SiteProtector. Configuring Firewalls for SiteProtector Traffic Version 2.0, Service Pack 8.1

IBM Security QRadar Vulnerability Manager

IBM Internet Security Systems. The IBM Internet Security Systems approach for Health Insurance Portability and Accountability Act compliance overview

IBM Security QRadar Risk Manager

IBM Security SiteProtector System Configuring Firewalls for SiteProtector Traffic

What is Security Intelligence?

Kaseya IT Automation Framework

Vistara Lifecycle Management

IBM Tivoli Endpoint Manager for Lifecycle Management

IBM Security QRadar Vulnerability Manager Version User Guide

Product Overview. Product Family. Product Features. Powerful intrusion detection and monitoring capacity

Reducing the cost and complexity of endpoint management

Vulnerability Management

ISS Internet Scanner

eeye Digital Security Product Training

Security Event and Log Management Service:

IBM Internet Security Systems

IBM RealSecure Server Sensor System Requirements

Q1 Labs Corporate Overview

IBM Security QRadar Risk Manager

Application Discovery Manager User s Guide vcenter Application Discovery Manager 6.2.1

Enterprise IT is complex. Today, IT infrastructure spans the physical, the virtual and applications, and crosses public, private and hybrid clouds.

Extreme Networks Security Analytics G2 Vulnerability Manager

IBM Security IBM Corporation IBM Corporation

QRadar SIEM 6.3 Datasheet

Asset Discovery with Symantec Control Compliance Suite

IBM Advanced Threat Protection Solution

IBM Tivoli Netcool Configuration Manager

IBM Security SiteProtector System Configuration Guide

How To Manage Sourcefire From A Command Console

Cisco IPS 4200 Series Sensors

Extreme Networks Security Analytics G2 Risk Manager

IBM Tivoli Endpoint Manager for Lifecycle Management

Introducing IBM s Advanced Threat Protection Platform

Lumension Endpoint Management and Security Suite

Security solutions White paper. Acquire a global view of your organization s security state: the importance of security assessments.

Symantec Brightmail Gateway Real-time protection backed by the largest investment in security infrastructure

IBM QRadar Security Intelligence Platform appliances

IBM Tivoli Monitoring for Applications

IBM Security Intrusion Prevention Solutions

SANS Top 20 Critical Controls for Effective Cyber Defense

IBM WebSphere MQ File Transfer Edition, Version 7.0

Datasheet. Advanced Network Routers. Models: ERPro-8, ER-8, ERPoe-5, ERLite-3. Sophisticated Routing Features

Symantec Control Compliance Suite Standards Manager

ENC Enterprise Network Center. Intuitive, Real-time Monitoring and Management of Distributed Devices. Benefits. Access anytime, anywhere

Safeguarding the cloud with IBM Dynamic Cloud Security

IBM. Vulnerability scanning and best practices

IBM Security QRadar SIEM Version MR1. Vulnerability Assessment Configuration Guide

Proactively protecting your messaging infrastructure with the IBM Lotus Protector for Mail Security solution.

IBM Endpoint Manager for Lifecycle Management

Network Security and Vulnerability Assessment Solutions

IBM Security Network Protection

IBM Endpoint Manager for Server Automation

IBM Proventia Network Multi-Function Security MX3006 and MX4006

IBM Security Network Intrusion Prevention System

Simplify security management in the cloud

Clavister InSight TM. Protecting Values

Lumeta IPsonar. Active Network Discovery, Mapping and Leak Detection for Large Distributed, Highly Complex & Sensitive Enterprise Networks

REPORT ON AUDIT OF LOCAL AREA NETWORK OF C-STAR LAB

APV9650. Application Delivery Controller

IBM Security QRadar Vulnerability Manager Version User Guide IBM

Cyber Security RFP Template

IBM Endpoint Manager for Mobile Devices

Scalability in Log Management

PCI DSS Reporting WHITEPAPER

Intro to QualysGuard IT Risk & Asset Management. Marek Skalicky, CISM, CRISC Regional Account Manager for Central & Adriatic Eastern Europe

Cisco Application Networking Manager Version 2.0

IBM Tivoli Endpoint Manager for Security and Compliance

IBM Tivoli Network Manager software

HP S Intrusion Prevention System (IPS) Series

Protect the data that drives our customers business. Data Security. Imperva s mission is simple:

Nessus Perimeter Service User Guide (HTML5 Interface) March 18, 2014 (Revision 9)

Automated, centralized management for enterprise servers

IBM Security X-Force Threat Intelligence

IBM Security Intelligence Strategy

How To Use Ibm Tivoli Monitoring Software

WHITEPAPER. Nessus Exploit Integration

IBM Security SiteProtector System Configuration Guide

Proactively Managing Servers with Dell KACE and Open Manage Essentials

Cisco Intrusion Detection System Services Module (IDSM-2)

Symantec Security Information Manager 4.8 Release Notes

mbits Network Operations Centrec

Boosting enterprise security with integrated log management

Breaking down silos of protection: An integrated approach to managing application security

Penetration Testing Report Client: Business Solutions June 15 th 2015

BeyondInsight Version 5.6 New and Updated Features

Symantec Messaging Gateway 10.5

FEATURE COMPARISON BETWEEN WINDOWS SERVER UPDATE SERVICES AND SHAVLIK HFNETCHKPRO

Transcription:

Protecting corporate data with preemptive risk identification IBM Proventia Network Enterprise Scanner Identifying risk and prioritizing protection IBM Proventia Network Enterprise Scanner (Enterprise Scanner) is designed to ensure the availability of your revenue-producing services and to protect your corporate data by identifying where risk exists, prioritizing and assigning protection activities and reporting on results. Benefits Reduce risk to your network s uptime, bandwidth and critical systems with Enterprise Scanner s vulnerability management and protection capabilities Free up resources by automating the scanning process Leverage your existing infrastructure components: Enterprise Scanner provides seamless integration with Microsoft Active Directory, asset management databases and workflow systems Eliminate duplicated effort: information can be stored once and shared among systems Avoid emergency patching and follow normal change-control processes: IBM Virtual Patch technology helps protect at-risk systems and segments before the vendor-supplied patch is available Support regulatory compliance with Enterprise Scanner s superset of audit tools, taken from the auditors preferred tool, IBM Internet Scanner software

Features and capabilities Specifications Identifies 2,691 asset types out-of-the-box, including desktops, servers, routers, switches, applications and operating systems Identifies newly connected devices and previously undiscovered assets on the network Assigns or allows responsibility to be assigned to specific assets to meet corporate governance and traceability standards Is capable of passive/active asset identification with the inclusion of the IBM Proventia Network Anomaly Detection System Multisource discovery Active discovery scan Active Directory import Intrusion prevention system (IPS)-based discovery Proventia Network ADS discovery Asset database import Manual input Custom service discovery User-defined Asset identification techniques Ping sweep User Datagram Protocol (UDP) probe Asset fingerprinting Rapid discovery NetBIOS-based discovery Transfer Control Protocol (TCP) discovery UDP port discovery Operating system (OS) fingerprinting Application fingerprinting Integrated Networked Messaging Application Protocol (NMAP) 4.0 database Network services identified 2,691 Asset classification Hierarchical group structure that mirrors your organizational structure, providing context for both scanning and reporting Active Directory import and mirroring Asset database import Geographical, organizational, topological or systemlevel classification Vulnerability assessment Discovery-based assessment - Efficient, high-performance vulnerability assessment Scripted assessment - Allows for new content without updating product binaries - Provides smaller content updates (IBM X-Press Update product enhancements) - Supports faster time-to-market with security content Attack emulation - Performs specific tests in a nonimpacting manner (posing no danger to your network) to analyze the effects of a real attack Renowned IBM Internet Security Systems X-Force database recognizes vulnerabilities and programmatic errors that could compromise an asset Frost & Sullivan 2005 Market Leadership award for vulnerability assessment Host criticality-prioritized scanning Security content updates featuring Virtual Patch technology Preemptive, ahead-of-the-threat coverage, powered by X-Force vulnerability-based research Spyware scanning - Detects existence of spyware Trust X-Force option - Automatically detects new vulnerabilities based on X-Force expert recommendations

Scan windows Automated scanning during open scan windows Auto-pause/auto-resume automatic scan suspension upon closure of scan windows; resumes when the scan window reopens Scan-window configuration that s designed for ease of use Configurable refresh period refreshes data automatically during open scan windows, ensuring up-to-date vulnerability information Group-oriented scan windows Workflow Vulnerability prioritization Internal ticketing system Remedy integration Open application programming interface (API), supporting other ticketing systems Ownership assignment and tracking Activity logging and tracking Traditional patch-and-protect remediation Virtual Patch technology, in combination with the IBM Proventia Intrusion Prevention System (IPS) portfolio Automatic resolution validation Multiple vulnerabilities per ticket Status monitoring and tracking (eight levels) Scan and block protection Vulnerability protection without deployment of a vendor-supplied patch when combined with IBM Proventia Network IPS Turnkey integration with Proventia Network IPS through the IBM Proventia Management SiteProtector (SiteProtector) system Detects vulnerabilities and identifies corresponding blocking algorithms within the Proventia IPS portfolio Unified management provides easy configuration of IPS devices for discovered vulnerabilities Reporting Reports that illustrate information in the context of your organization: - Group and report on risk in applicable business context using a mirror of your organization - Group and report by geography, network layout, business system or any other useful grouping of assets - Report risk to the right people at the right time quickly compare risk of different business units, systems or geographies Flexible view-based analysis with more than 1,800 reports Enterprise-level multiscan, multiscanner reports Precanned default reports Exportable reports to PDF, CSV, HTML Schedule-driven reports Web-accessible reports FastAnalysis reports Extensive filtering Automation Eliminates manual steps, saving time and money Automatic and continuous scanning Scan prioritization Scan teams (multiple scanners working as one) X-Press Update enhancements of vulnerability information Asset classification and grouping Easy-to-install Linux -based appliance

Management Centrally managed by SiteProtector system award-winning management system and the security industry s only platform designed to unify the protection of network, server and desktop assets Emergency scans providing quick, ad hoc scans of your network on request Automated security intelligence updates on the newest electronic threats - X-Press Update product enhancements delivered by the globally-respected X-Force research and development team User interface options SiteProtector centralized management interface Web-based Proventia manager local management interface Proventia Management SiteProtector - Centralized command, reporting and analysis for Proventia Enterprise Scanner and all IBM Internet Security Systems (ISS) products - User auditing - Flexible event analysis Proventia manager Web-based local management interface (LMI) Device configuration, establishment of SiteProtector communications link Device health monitoring SiteProtector centralized management interface Web-based local management interface Asset-based management Asset-centric assessment policies associated with assets rather than with scanner Scan policy asset-based scan policy allows policy association with assets or groups of assets rather than with scanners, allowing context-sensitive scanning Assessment refresh cycles Scan windows Assessment credentials for Microsoft Windows and Secure Shell (SSH) Assessment policy Discovery policy/scan exclusions Correlation Supports IBM SecurityFusion module SiteProtector FastAnalysis and centralized correlation Independent discovery and assessment Separate policies Separate scan windows Separate refresh periods World-class support 24x7 support, including platform updates

Specifications Scan ports Five 32-bit gigabit PCI-Express Ethernet ports (one active; four reserved for future use) Management ports One 32-bit gigabit Ethernet port Console port Serial Port One front-accessible RJ45 connector USB ports Two USB 2.0 ports, front-accessible LCD display CD panel 2x16 characters LCD module with four buttons (reserved for future use) LED indicators for power status, data access LEDs Power Full-range 250W ATX PSU Auto-switching Dimensions 429mm x 382mm x 44mm H 16.9 D x 15.0 W x 1.73 H Operating environment Temperature: 5 C 35 C (41 F 95 F) for P4 3.0 3.4GHz processors Humidity: 20 percent 90 percent relative humidity Storage environment Temperature -20 C 70 C (-4 F 158 F) Certification CE/FCC/UL/cUL Physical characteristics Form factor 1-RU Emissions FCC Class A Performance High-availability/high-performance configurations Load balancing (teaming) enabling multiple scanners to share tasks automatically Network location Network core Network perimeter External to network Weight Gross: 11.1 kg (24.47 lbs) Net: 6.5 kg (14.33 lbs)

Discovery performance with pinger Discovery on zero percent populated IP space 19,794 IPs/hour Discovery on 20 percent populated IP space 6,621 IPs/hour Discovery on 50 percent populated IP space 2,590 IPs/hour Discovery on 80 percent populated IP space 2,008 IPs/hour Discovery on 100 percent populated IP space 1,605 IPs/hour Discovery performance without pinger Discovery on zero percent populated IP space 2,289 IPs/hour Discovery on 20 percent populated IP space 2,713 IPs/hour Discovery on 50 percent populated IP space 2,580 IPs/hour Performance characteristics Full assessment (all non-dos-enabled)* 803 devices/hour Population density has no effect on assessment, as assessment is performed on discovered hosts only. Scan-team performance gains Performance features Dynamic check assignment to identify and run OS-specific checks Load balancing (teaming) among multiple scanners Scan-time work distribution Ability to add a scanner at a location, to automatically and transparently load balance Perspective-based load balancing Distributed scanning Performance optimization by adding multiple scanners in multiple network locations Multiple scanners colocated to load balance Discovery on 80 percent populated IP space 1,953 IPs/hour Discovery on 100 percent populated IP space 1,648 IPs/hour

Scan team performance gains Scan team Percent reduction from base Discovery Assessment Time effect One scanner 0 percent 0 percent (base) 1 hour Two scanners 45 percent 45 percent 35 minutes Three scanners 60 percent 60 percent 24 minutes Four scanners 70 percent 70 percent 18 minutes Five scanners 75 percent 75 percent 15 minutes Six scanners 80 percent 80 percen 12 minutes For more information Proventia Network Enterprise Scanner is also an integral part of IBM Internet Security Systems Managed Security Services offerings, including Vulnerability Management Service and IBM Professional Security Services. IBM Managed Security Services provide 24x7x365 expert monitoring and protection for a fraction of the cost of training and maintaining an in-house security staff. Discover how Proventia Network Enterprise Scanner can protect your business from Internet threats. Be sure to ask if your company qualifies for a 30-day evaluation. For an onsite demonstration, contact the IBM Internet Security Systems office nearest you. For locations and more product information, visit: ibm.com/services/us/iss

Copyright IBM Corporation 2007 IBM Global Services Route 100 Somers, NY 10589 U.S.A. Produced in the United States of America 04-07 All Rights Reserved IBM and the IBM logo are trademarks or registered trademarks of International Business Machines Corporation in the United States, other countries, or both. Internet Scanner, Proventia, SecurityFusion, SiteProtector, Virtual Patch, X-Force and X-Press Update are trademarks or registered trademarks of Internet Security Systems, Inc.in the United States, other countries, or both. Internet Security Systems, Inc. is a wholly-owned subsidiary of International Business Machines Corporation. Portable Document Format (PDF) is either a registered trademark or trademark of Adobe Systems Incorporated in the United States, other countries, or both. Microsoft and Windows are trademarks of Microsoft Corporation in the United States, other countries, or both. Linux is a registered trademark of Linus Torvalds in the United States, other countries, or both. Other company, product and service names may be trademarks or service marks of others. References in this publication to IBM products or services do not imply that IBM intends to make them available in all countries in which IBM operates. All performance data contained in this publication was obtained in the specific operating environment and under the conditions described above and is presented as an illustration. Performance obtained in other operating environments may vary and customers should conduct their own testing. * U.S. Patent No. 7,093,239 GTD01130-USEN-00

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information