Analytics
12/3/2013
03:05 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%
Repost This

Stonesoft And Tufin Deliver Integrated Security Management Capabilities Enhancing Situational Awareness And Network Automation

Companies announce completion of first phase of the integration of their management interfaces

MORRISTOWN, N.J. and HELSINKI, Dec. 3, 2013 /PRNewswire/ -- The cyber security expert Stonesoft, a McAfee Group Company, and Tufin Technologies, the market leading provider of Security Policy Orchestration solutions, today announced the completion of the first phase of the integration of their management interfaces. The joint solution combines Stonesoft's contextual awareness with Tufin's security policy orchestration to provide joint customers with enhanced network security controls and a more holistic approach to managing increasingly complex, dynamic, multi-vendor networks. Tufin is the first vendor to integrate with Stonesoft's new Security Management Center API.

Operational leverage

As an enabler of agile and secure operations, the role of network management has become fundamental for organisations. Simultaneously, as networks expand and become more complex, their management becomes increasingly challenging, having to support new technologies and multiple vendor solutions across the organisation. The seamless integration of different management components and tools helps organisations attain a holistic approach to network management that is both secure and efficient.

"Our mutual customers will gain additional value from Tufin and Stonesoft's established relationship as we move into the second phase of integration and beyond," said Reuven Harrison, CTO, Tufin. "We look forward to our continued work with Stonesoft to ensure our customers can ensure Security Policy is always in line with business without sacrificing compliance, efficiency or agility."

Holistic approach to policy management

The Security Management Center (SMC), part of the visionary Stonesoft Next Generation Firewall, provides an Application Programming Interface (API) with the 5.6 release. While the SMC makes management of the Next Generation Firewall smooth and easy, this API simplifies integrations between the SMC and third party management systems. The REST architecture-based SMC API enables network managers to automate tasks such as element and rule addition, editing and removal.

The Tufin Orchestration Suite(TM) is a centralised policy management system spanning over multiple technologies and vendors. Version R13-3 of the Tufin Orchestration Suite adds Stonesoft's SMC to its wide range of supported network devices.

The initial phase of the integration via the SMC API enables users to manage network topology, view and analyse policies, as well as track policy changes through the Tufin Orchestration Suite. It also provides tools that assist mutual customers in meeting regulatory compliance standards such as PCI-DSS and SOX.

"The integration between Stonesoft and Tufin provides new opportunities for our mutual customers to achieve the best possible situational awareness and network automation in multi-vendor environments," said Tero Jantunen, SMC Product Architect, Stonesoft, A McAfee Group Company.

Availability

Management integration is available with Stonesoft NGFW release 5.6 and Tufin R13-3. Stonesoft 5.6 and Tufin R13-3 are both immediately available.

Links

-- SMC API user's guide

https://my.stonesoft.com/support/document.do?product=StoneGate&docid=8739

-- Tufin Security Policy Orchestration/R13-3 Press Release

http://www.tufin.com/about-us/news-and-media/press-releases/2013/october-22,-2013/

About Stonesoft, a McAfee Group Company

Stonesoft protects valuable information and digital assets through integrated and centrally managed Next Generation Firewall/VPN, intrusion and evasion prevention system technologies. Stonesoft's product portfolio provides organisations the highest level of cyber security, investment protection, operational resilience, situational awareness, centralised command and control and resource optimisation. Stonesoft's unified software core enables an adaptive and agile advantage, as well as cost efficiency over hardware- and blade-based competitors. Stonesoft has the highest customer retention rate in the industry due to low TCO, a flexible licensing model and overall customer service excellence. Stonesoft is widely recognised for its research of advanced evasion techniques (AETs) used in targeted cyber attacks. Leading independent test labs and analysts rank its products high in NGFW features, AET protection and manageability. Founded in 1990 and acquired by McAfee in 2013, Stonesoft is part of McAfee's Security Connected approach creating the world's most comprehensive security offering.

www.stonesoft.com

ngfw.stonesoft.com

About Tufin Technologies

Tufin® is the leader in Security Policy Orchestration, automating and accelerating network infrastructure changes while maintaining security and compliance. By improving network change processes, organisations using the Tufin Orchestration Suite(TM) will have a positive impact on the business by reducing the time and cost spent implementing network changes by up to 80%. Taking a holistic view of IT, the Tufin Orchestration Suite helps organisations automate security and efficiency into day-to-day operations, enabling them to be more agile and leverage technology to gain a competitive advantage. Founded in 2005, Tufin serves more than 1,200 customers in industries from telecom and financial services to energy, transportation and pharmaceuticals. Tufin partners with leading vendors including Check Point, Cisco, Juniper Networks, Palo Alto Networks, Fortinet, F5, Stonesoft, Blue Coat, McAfee and BMC Software, and is known for technological innovation and dedicated customer service.

For more information visit www.tufin.com, or follow Tufin on:

-- Twitter: http://twitter.com/TufinTech

-- Facebook: http://www.facebook.com/Tufintech

-- LinkedIn: http://www.linkedin.com/companies/tufin-technologies

-- BrightTalk:

https://www.brighttalk.com/community/it-security/channel/9591

-- YouTube: http://www.youtube.com/user/Tufintech

-- The Tufin Blog: http://www.tufin.com/blog

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-5704
Published: 2014-04-15
The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass "RequestHeader unset" directives by placing a header in the trailer portion of data sent with chunked transfer coding. NOTE: the vendor states "this is not a security issue in httpd as such."

CVE-2013-5705
Published: 2014-04-15
apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote attackers to bypass rules by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header.

CVE-2014-0341
Published: 2014-04-15
Multiple cross-site scripting (XSS) vulnerabilities in PivotX before 2.3.9 allow remote authenticated users to inject arbitrary web script or HTML via the title field to (1) templates_internal/pages.tpl, (2) templates_internal/home.tpl, or (3) templates_internal/entries.tpl; (4) an event field to ob...

CVE-2014-0342
Published: 2014-04-15
Multiple unrestricted file upload vulnerabilities in fileupload.php in PivotX before 2.3.9 allow remote authenticated users to execute arbitrary PHP code by uploading a file with a (1) .php or (2) .php# extension, and then accessing it via unspecified vectors.

CVE-2014-0348
Published: 2014-04-15
The Artiva Agency Single Sign-On (SSO) implementation in Artiva Workstation 1.3.x before 1.3.9, Artiva Rm 3.1 MR7, Artiva Healthcare 5.2 MR5, and Artiva Architect 3.2 MR5, when the domain-name option is enabled, allows remote attackers to login to arbitrary domain accounts by using the corresponding...

Best of the Web