Slide 1

Download Report

Transcript Slide 1 

Lumension Security
PatchLink Scan™ 6.4
Overview & What’s New
www.lumension.com
© Copyright 2008 - Lumension Security
PatchLink Scan™
Comprehensive network-based scan of all of the devices
on your network
Scan (network-based) all devices for software and
configuration-based vulnerabilities
Prioritize identified threats against a robust,
continuously updated vulnerability database for
orderly remediation
Deliver comprehensive reports of scan results
www.lumension.com
1
© Copyright 2008 - Lumension Security
Rapid, Accurate Network-based Scans
Scans all devices - routers, printers,
servers, laptops, operating systems,
switches, wireless access points and
more
Detailed assessment checks on
security configurations, antivirus,
sharing tools, worms, Trojans,
missing patches, open ports,
services and more
Deep inspection of target systems
that includes redundant file attribute
and registry value correlation, as
well as SSH tunneling and
authenticated OS fingerprinting
refinement
www.lumension.com
2
© Copyright 2008 - Lumension Security
Vulnerability Prioritization
Prioritize vulnerabilities based on asset criticality and vulnerability
score-carding to aid in the remediation process
Exhaustive information database of more than 4,000
vulnerabilities – full of actionable information to help you assess
your threat levels and implement corrective actions.
www.lumension.com
3
© Copyright 2008 - Lumension Security
Comprehensive Reporting
Wide range of standard reports that provide high-level or detailed
information on vulnerabilities found by category, risk level, individual
machine, and more
Simple point and click capability to quickly ascertain the enterprise
security posture relative to common industry tracking mechanisms
Easier than ever to demonstrate policy and regulatory compliance
www.lumension.com
4
© Copyright 2008 - Lumension Security
Identify Broad Range of Vulnerabilities
Access Control
Account Permission
Account Policy
Anti-Virus
Arbitrary Code Execution
Arbitrary Code Injection
File Access
Audit Policy
Authentication
Best Practice
Banner
Boot
Buffer Overflows And Overruns
Certificate
Clear Text Protocol
Cross Site Scripting
Cryptography
Data Integrity
Denial Of Service
Devices
Design Error
Directory Traversal
Display
Domain Controller
Encryption
Error Message
Exception Handling
File Permission
Folder Permission
Forgery
Ftp
Guest Access
Hijacking
Implementation Flaw
Information Disclosure
Informational
Input Validation
Log
Logon
Macro
Malware
Out Of Date Software
Legacy Operating Systems
Overwrite
www.lumension.com
Password
Patch
Performance
Permissions
Policy
Privilege Elevation
Registry
Remote Execution
Root Privilege
Service
Service Pack
Shutdown
Spoofing
Symlink Attacks
System Integrity
Tampering
Test
Unauthorized Access
Unauthorized Read
Unauthorized Write
Unsafe Code
User Rights
Web Browser Specific
5
© Copyright 2008 - Lumension Security
PatchLink Scan – Key Features
Adaptive Scanning - The most accurate vulnerability assessment scan using flexible
network-based scanning techniques based on access-levels including credentialed and null
based. Also, perform ad hoc scans that can target one or many machines and specific
vulnerabilities.
Auto Updating - Schedule and automate recurring scan tasks to run on a daily, weekly or
monthly basis.
Complete Asset Discovery - Identifies all network devices and performs configuration and
informational checks on ports, services, users, shares and groups
Comprehensive Vulnerability Coverage - Over 4000 vulnerability audits with wide support
across Windows, POSIX and infrastructure devices. Vulnerability audits include security
configurations, OS and application vulnerabilities, null passwords, patch-level related
vulnerabilities, known hacking tools, malware, common worms, and P2P software checks.
Comprehensive Reporting - Ability to create and export (RTF, PDF, HTML, etc) numerous
high-level or detailed reports of all scan data to confirm policy and regulatory compliance
Consolidated Views - Multiple scans can be merged together to form a more comprehensive
security posture.
www.lumension.com
6
© Copyright 2008 - Lumension Security
PatchLink Scan – Key Features cont’d
Highly Scalable - Highly scalable architecture due to its modular components which can
be installed on the same or separate systems and scaled-up as needed. Multiple instances
of the scanner scan engine can be deployed across the enterprise, controlled remotely or
locally. As the number of systems on the network increase so can the number of engines
performing the scans.
Non-Disruptive Scanning - Designed to safely scan for vulnerabilities using standard
networking protocols with minimum impact to your network. Never employs malicious
vulnerability attacks; scanning methodology uses safe standard networking protocols and
API’s.
Remediation Recommendations - Extensive vulnerability database with informational
resources and remediation recommendations
Risk-Based Prioritization - All scanned systems are evaluated and prioritized according
to asset value and vulnerability criticalities using straight-forward equations. All systems
are then listed by risk severity to help focus and prioritize remediation efforts.
Role-Based Administration - Enables distributed management of scan activity by user
roles
Common Criteria EAL2 Certified - The Common Criteria Evaluation and Certification
Scheme (CCS) Certification Body has asserted that PatchLink Scan complies with the all
specified security requirements
www.lumension.com
7
© Copyright 2008 - Lumension Security
What’s New In PatchLink Scan 6.4.4
Compatibility with PatchLink Update 6.4
 Directory Services Groups
 Nested Groups
Backwards compatibility with PatchLink Update 6.1, 6.2 and 6.3
Support for Microsoft Windows Vista
Agent Management Job
 The Ability to install or uninstall Agents to Windows Vista.
 The ability to install or uninstall Agents with authenticated proxy.
Internalization
 A4 support for Report Generation
 Date/Time support
www.lumension.com
8
© Copyright 2008 - Lumension Security
Broad Platform Support
OS / Version
Discovery
Assessment
3com / Router, Switch
x
BSD Unix / Net, Free, BSDI
x
Cisco / IOS, CatOS, PIX
x
Cisco VPN
x
Foundary / Router, Switch
x
HP / HP-UX 10.x and later
x
x
HP / Tru64 4.0F and later
x
x
IBM AIX
x
Juniper / JunOS
x
Linux / Fedora (6,7)
x
x
Linux / Mandriva (7.0, 7.1)
x
x
Linux / Red Hat (Enterprise 2.1, 3, 4, 5)
x
x
Linux / SuSE Open/Enterprise (9, 10.0, 10.1, 10.2, 10.3)
x
x
Nortel Switch
x
OpenBSD / 3.8 and later
x
Printers / Canon, Epson, Tektronix
x
Printers / HP Networked
x
Printers / Lexmark
x
Sun Solaris / 2.5 and later
x
Windows (generic)
x
Windows / 2000, XP, 2003
x
x
Windows / Vista
x
x
Windows / XP Embedded
x
X
Wireless Access Point
x
www.lumension.com
x
x
x
x
9
© Copyright 2008 - Lumension Security
Minimum Requirements
Processor Requirements:
Pentium® compatible 1 GHz
Memory Requirements:
512 MB RAM
Disk Capacity Requirements:
20 GB available disk space
Display:
Monitor resolution 1024 x 768
Operating System
Windows 2000 Server SP4
Windows 2000 Advanced
Server SP4
Windows XP Professional SP2
Windows Server 2003 SP1
www.lumension.com
10
© Copyright 2008 - Lumension Security
Thank You
For more information, please call
United States: +1 480 970-1025 (option 1)
United Kingdom: + 44 (0) 1908 357 897
Luxembourg: + 352 265 354 11
Singapore: + 65 6725 6415
or visit us on the web at www.lumension.com
www.lumension.com
11
© Copyright 2008 - Lumension Security