Transcript Slide 1

Lumension Security
PatchLink Update™ 6.4
Product Overview
Draware A/S | www.draware.dk
www.lumension.com
© Copyright 2008 - Lumension Security
The Business Issues
www.lumension.com
1
© Copyright 2008 - Lumension Security
Increasing Threats
Given the exploding number of threats, IT organizations must
deploy more patches, faster than ever.
www.lumension.com
2
© Copyright 2008 - Lumension Security
Increased IT & Regulatory Compliance
*2/3 of All Enterprises are
Subject to Regulatory
Compliance
20% of All Systems Become
“Un-Patched” Over the Course
of a Year
20%
Un-patched
Devices
33%
Un-Regulated
67%
Regulated
80%
Patched
*Yankee Group Research
www.lumension.com
3
© Copyright 2008 - Lumension Security
More than Just Microsoft
Threats are becoming more diverse, affecting
more than just Microsoft operating systems.
Vulnerabilities from Third-Party
Applications are Increasing
www.lumension.com
Source : NIST
4
© Copyright 2008 - Lumension Security
The Solution:
PatchLink Update
www.lumension.com
5
© Copyright 2008 - Lumension Security
PatchLink Update Overview
Secure, scalable product architecture optimized for rapid
patch management and maximum end-point
coverage
Patented Digital Fingerprinting Technology™ provides
highly accurate patch management process in support of
IT policy and regulatory compliance
The world’s largest repository of pre-tested OS and
application patches provides complete protection for
heterogeneous environments
www.lumension.com
6
© Copyright 2008 - Lumension Security
Secure, Scalable Product Architecture
Secure, subscription-based patch delivery via 128-bit SSL encrypted
and VERISIGN trusted connection along with RSA BSAFE®
Scalable, agent-based solution optimizes bandwidth usage and
protects mobile devices that are often disconnected from the network
“PatchLink
customers
patch 13 times
faster than
industry
standards.”
PatchLink 2006
Customer Survey
www.lumension.com
7
© Copyright 2008 - Lumension Security
Highly Accurate, Patented Patch Process
Thorough agent-based
assessment of vulnerabilities to
ensure that no systems are left
open to attack
Assessment
Intelligent remediation to
automatically fix vulnerabilities
Continuous monitoring to
validate that end-points get
patched and stay patched
Audit
Audit proof with comprehensive
reporting to demonstrate IT
policy and regulatory
Compliance
Remediation
Validation
“Over 90% of PatchLink customers feel they are more secure now than a year ago.”
PatchLink 2006 Customer Survey
www.lumension.com
8
© Copyright 2008 - Lumension Security
Thorough Assessment
Thorough inventory assessment
establishes comprehensive and
accurate list of computers
susceptible to vulnerabilities.
Agent-based scan the devices
on your network using the
Discover Applicable Updates
feature to see which systems
need to be patched.
Vulnerabilities screen enables
quickly analysis of patched and
up-patched systems
www.lumension.com
9
© Copyright 2008 - Lumension Security
Intelligent Remediation
Quickly deploy and manage single or multiple packages
Easy-to-use Deployment Wizard
Choose options including:





Group or single device (Integration with Microsoft Active Directory)
Start time
Deployment manner
Notifications
Reboot
Support for phased roll-out,
deployment windows,
verification of installs
www.lumension.com
narrow
and rapid
10
© Copyright 2008 - Lumension Security
Quick Validation
After remediation, quickly
validate that systems have been
patched
Email alerts will be sent for
failed deployments
The Admin Console will display
if systems are patched, unpatched or have caused errors
Mandatory Baselines ensure
your systems are within
compliance
www.lumension.com
11
© Copyright 2008 - Lumension Security
Comprehensive Reporting
Full range of operational
and management reports
Vulnerability Status
Report shows a
summary of the
remediation status
Complete accuracy
ensures all managed
end-points are effectively
patched and compliant
www.lumension.com
12
© Copyright 2008 - Lumension Security
Largest Repository of OS and Application Patches
Over 14,000 multi-language patches and updates
Support for all major Operating System platforms
 Microsoft 32-Bit & 64-Bit OS, Mac OS X, Mac on Intel, Novell NetWare,
Novell SUSE Linux, HP-UX, IBM AIX, Sun Solaris, Red Hat Linux
Patches for over 40 common third-party applications
 Adobe Acrobat, Macromedia Flash, Internet Explorer, MSN Messenger,
SharePoint, RealPlayer, and more
Support for legacy operating systems and applications
 Windows 98, Windows NT, older versions of Exchange, Office, etc
www.lumension.com
13
© Copyright 2008 - Lumension Security
PatchLink Update 6.4 - What’s New
Improved Admin Productivity

Hierarchical “Nested” Grouping

Microsoft Active Directory Integration

New “Deployments” Tab

Improved License Management

Ability to set installation path (this feature will
not
be communicated in external facing materials)
Improved Policy Management & Reporting

Improved policy management within nested group inheritance capability

Improved status monitoring with new Home Page “dash board”
Improved Coverage

Support for Windows Vista
www.lumension.com
14
© Copyright 2008 - Lumension Security
Hierarchical “Nested” Grouping
Automatically represent geographical
department structures within
PatchLink Update
Any device that becomes a member
of a geographical group dynamically
becomes a member of all parent
groups
Group searching capability
Improves Administrator productivity
by reducing group configuration effort
and the elimination of manual device
assignments
www.lumension.com
15
© Copyright 2008 - Lumension Security
Directory Service Integration
Agent based Microsoft Active Directory
integration
Structure set up in the directory is
automatically replicated over to PatchLink
Automatic PatchLink Update group
creation and membership maintenance
based on agent Organization Unit
information
Active Directory Organization Unit
information collection and reporting
Speeds group development and allows
Admin to organize patch activities in a
manner consistent with the business
structure
www.lumension.com
16
© Copyright 2008 - Lumension Security
New “Deployments” Tab
New tab on the main menu that provides status
information on Mandatory Baseline, System or
User-Defined deployments
 Completed, Recurring, In-progress, Running, Scheduled
Improved Administrator
productivity through more
effective process
management and
improved job tracking
capabilities.
www.lumension.com
17
© Copyright 2008 - Lumension Security
Improved Policy Management
Improved policy enforcement through the automatic
distribution of policies throughout the organization
Automatically cascade (inherit) policies to all agents
within a nested group

Mandatory Baseline Settings, User Permissions, etc
www.lumension.com
18
© Copyright 2008 - Lumension Security
New Home Page “Dash Board”
Enables creation of a custom dash board from a list of 8
key indicators:

Vulnerability Severity

Agent Status

Schedule Remediation

Mandatory Baseline Compliance

Incomplete Deployments

Vulnerability Severity by Device

Time since Last DAU

Offline Agents
Provides a comprehensive, custom graphical view of the
security posture of the organization
www.lumension.com
19
© Copyright 2008 - Lumension Security
Support for Windows Vista
PatchLink Update Agent for Key Vista Editions
 Enterprise Edition
 Ultimate Edition
 Business Edition
www.lumension.com
20
© Copyright 2008 - Lumension Security
System Requirement Updates for 6.4
Changes from PatchLink Update 6.3:
Microsoft SQL Server 2000 support (including
MSDE) has been removed from the supported
database engines for this release
The server may be installed on to any locality
variation of English
Microsoft Windows Server 2003 SP2 is now
supported
Microsoft SQL Server 2005 is now required
Flash is required on the client system for full UI
functionality (graphical reporting)
www.lumension.com
21
© Copyright 2008 - Lumension Security
What’s Included with PatchLink Update 6.4?
PatchLink Update Server 6.4
Agent 6.4 for Windows 32-bit
Agent 6.4 for Windows 64-bit
Agent 6.4 for Linux/Unix/Mac/Novell
Agent Management Center (AMC) 6.4
Distribution Points (PDP) 6.4
Content Update Tool (CUT) 6.4
www.lumension.com
22
© Copyright 2008 - Lumension Security
Ancillary Product Compatibility with 6.4
Product
Compatible Version Release
PatchLink Patch Developers Kit (PDK) 6.4
August 3, 2007
PatchLink Quarantine (NAC APIs) 6.4
August 3, 2007
PatchLink Security Management Console 6.4
August 22, 2007
PatchLink Scan 6.4
August 22, 2007
PatchLink Enterprise Reporting (ERS) 6.4
August 22, 2007
PatchLink Scanner Integration (SIM) 6.4
Not Available
Air Gap Tool 6.4
Not Available
www.lumension.com
23
© Copyright 2008 - Lumension Security
Recommended 6.4 Platform Configurations
Number of
Nodes
<1,000
Nodes
< 2,500 Nodes
< 5,000 Nodes
<!0,000
Nodes
Operating
System
Windows
Server 2003,
Web Edition
with SP2
Windows
Server 2003,
Web Edition
with SP2
Windows Server
2003, Web Edition
with SP2
Windows
Server 2003,
Standard
Edition with
SP2
Database
Engine
SQL 2005
Express
SQL 2005
Express
SQL 2005 Express
SQL 2005
Express
Processor
(1) 2.4 GHz
(1) Pentium 4
(1) Dual Core, NonXeon
(1) Dual
Core Xeon
RAM
1 GB
2 GB
2 GB
4 GB
Storage
(1) 36 GB
Hard Drive
(1) 72 GB
Hard Drive
(2) 144 GB Hard
Drive
(4) 144 GB
Hard Drive
www.lumension.com
>10,000
Nodes
Contact
PatchLink
Professional
Services
24
© Copyright 2008 - Lumension Security
Upgrading to PatchLink Update 6.4
Available at no cost to PatchLink Update customers with
current subscriptions
PatchLink Update Server 6.4 will be a fresh install - not
available as a .plf
Prerequisites before installing Update Server 6.4:
 PatchLink Update Server 6.3
 Microsoft Windows Server 2003 SP1 or higher
 Microsoft SQL Server 2005
PatchLink Update 6.4 Agents will be available via .plf
Visit www.lumension.com for more information
www.lumension.com
25
© Copyright 2008 - Lumension Security
What are our competitive advantages?
PatchLink’s Product Architecture provides rapid patch management and maximum
end-point coverage to keep up with today’s increasing threats
Our Patented Digital Fingerprinting Technology provides a highly accurate patch
and vulnerability process for assessment, remediation, and continuous monitoring
to improve IT and Regulatory compliance
With the World’s Largest Repository of OS & Application Patches, PatchLink
provides complete protection for heterogeneous environments
PatchLink Pre-Testing provides development and testing of patch packages saving
customers patch testing time
PatchLink’s Recognized Market Leadership ensures that customers are choosing a
proven expert in patch and vulnerability management
The Lowest Total Cost of Ownership (TCO) ensures that our customers show
business value and cost-effectiveness for their patch and vulnerability initiatives
The PatchLink Promise is our commitment to do what is takes to make our
customers’ PatchLink experience successful
www.lumension.com
26
© Copyright 2008 - Lumension Security
The PatchLink Promise
Full breadth of professional
services to speed adoption time
and effectiveness
Convenient and cost-effective
training
Outstanding technical support
for Complete Satisfaction
Peace of mind during and
after your implementation
www.lumension.com
27
© Copyright 2008 - Lumension Security
PatchLink Update Summary
Quickly secure networks from software
vulnerabilities
Improve IT policy and regulatory compliance
Protect heterogeneous environments with one tool
Improve IT productivity
Reduce overall IT costs
www.lumension.com
28
© Copyright 2008 - Lumension Security
Thank You
For more information, please call
United States: +1 480 970-1025 (option 1)
United Kingdom: + 44 (0) 1908 357 897
Luxembourg: + 352 265 354 11
Singapore: + 65 6725 6415
or visit us on the web at www.lumension.com
www.lumension.com
29
© Copyright 2008 - Lumension Security