The new capabilities in the 4.1 releases help IT organizations address a number of network security challenges:
Should I make a change? When a network change is proposed, RedSeal software automatically assesses the risks that the change will pose to the organization's security. It identifies vulnerabilities that will become attackable, any newly exposed hosts that could become launch points for attacks deeper into the organization, and any additional risk that will result from the change. This information enables IT organizations to identify mitigating steps (such as patching) that need to be taken before the change is implemented.
How do I make the change? In large networks, enabling access over the network requires changes to multiple firewalls, routers and load balancers. Precisely defining the required changes is complex and difficult. To reduce the chance of impacting availability, organizations often allow excessive access, creating security risks. RedSeal software automatically analyzes proposed end-to-end access to identify which devices must be changed, as well as the precise rules or ACLs that need modification. These capabilities improve both the accuracy and productivity of firewall and network operations groups.
Have past changes outlived their usefulness? Over time, some firewall rules will become obsolete. As these unused rules accumulate, they increase the complexity of managing the firewall and can pose security risks. RedSeal software evaluates firewalls and routers to identify rules that have become redundant, disabled, or that are no longer in use. This capability makes it easy for firewall operations groups to clean up rule sets to improve manageability and performance.
The greatest security issues often derive from changes that are not made to firewalls. Changes to servers, applications, and routers often necessitate corresponding changes to firewalls and the security infrastructure. If these required changes are not made, security breaches can easily occur. RedSeal software continuously monitors the entire IT infrastructure to ensure that the security components are providing the protection required by the application components. When a change anywhere compromises the security of the organization, RedSeal detects the issue, isolates the root cause and informs IT and business management of the risks and recommended actions for remediation.
"IT infrastructures and the security controls that protect them are constantly changing," said Tom Arthur, CEO, RedSeal Systems. "In today's complex environments, changes to either can easily open security holes that put an organization's systems and information at risk. RedSeal automates the continuous and comprehensive assessment of an organization's security posture to ensure that their critical assets are protected."
RedSeal Network Advisor 4.1 and RedSeal Vulnerability Advisor 4.1 are available immediately. Existing RedSeal customers will receive the new capabilities as part of their maintenance programs.
About RedSeal Systems, Inc.
RedSeal Systems develops security posture management software that enables organizations to assess and strengthen their cyber-defenses. Unlike systems that detect attacks once they occur, RedSeal identifies holes in the security infrastructure that could be exploited—before they are discovered by hackers. RedSeal software analyzes and simplifies the complex interaction of firewalls, routers, load balancers and hosts, delivering in-depth understanding of overall security posture, continuous compliance with regulations such as PCI, FISMA, and SOX, and actionable steps for risk remediation. For more information, visit RedSeal at www.redseal.net.