SecureFusion

SecureFusion is a centrally controlled and managed agentless platform consisting of multiple individual components that together provide the ability to collect and report data concerning network resources (hosts and applications/services) for inventory, vulnerability scanning, configuration management, and policy management purposes. The modules can be deployed as needed by the customer (note that all modules depend on the Asset Discovery module, see below for details); all are integrated and managed through the central SecureFusion Portal (included with all modules).

A Web-accessed tool, the SecureFusion Portal provides the central management, data repository, and data searching/reporting capabilities for the individual modules. The Portal boasts support for role-based data displays and reports, including summary dashboards for high-level personnel and drill-down features for technicians. Other functions provided by the Portal and shared across the main functional components include the main categorization/organizational construct in which the organization's individual networks, hosts, and applications/services can be classified and grouped for subsequent reporting and analysis; the scheduling engine for the configuration and implementation of the scans performed by the components, scans that can leverage features such as targeting (business, unit, location, network, etc.), blacklisting, and bandwidth throttling; and workflow features for assignment of remediation tasks (such as vulnerability corrections), data filtering, blacklist adjustments, etc. Communications to and from the portal are protected via encryption, and the interface with the functional modules (described below) is via Web service and XML protocols.

The SecureFusion Portal is home to four different functional components offered by the vendor in the full SecureFusion suite, with the vendor stating that the individual components are integrated such that they can share the information gleaned by one another. Currently available modules in the suite include:

- Asset Discovery, which supports the scheduled identification, classification, and location mapping of network assets to the tune of up to 50,000 assets per day. As mentioned above, the SecureFusion platform is agentless in deployment, with the vendor noting the ability to locate both managed and "rogue" networks, hosts, O/Ss, and applications via learning algorithms that are tuned by customer feedback. Asset Discovery provides a foundational module for each of the other modules; i.e., each of the other modules scan the hosts that have been discovered by the Asset Discovery module.

- Vulnerability Management, which is based on auto-updated vulnerability signatures (checks are performed every four hours) and scans for known problems in O/Ss, applications, DBs, and infrastructure. The vendor states that signatures for new high-risk vulnerabilities are typically available within 24-48 hours of public notice. Features include automatic correlation of vulnerabilities to vendor patches; false positive management; and support for distributed scanning.

- Configuration Management, which provides out-of-the-box checks for "...several hundred of the most common asset configuration IT control[s] ...", with support for custom definitions. Configuration Management looks specifically at system and security configuration settings, including installed software/status and patch deployments. The Configuration Management module enables the Policy Management module.

- Policy Management, which facilitates policy auditing and reporting of technical controls that themselves are grouped into specific regulations and policies such as PCI, SOX, HIPAA, etc. Each technical control can be utilized in multiple policies and regulations, including the organization's own defined corporate security policy.

The SecureFusion suite is available now. Visit the vendor's Web site for further information.

product submission by EITPlanet Staff

Latest category updates via our RSS feed