Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Perimeter

2/19/2009
03:43 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Lancope Announces Free StealthWatch FlowSensor VE Appliance For Virtual Network Visibility

Solution analyzes virtual network traffic to detect and address configuration problems, inefficiencies in resource allocation, security violations, and policy violations before any failure or degraded performance occurs

ATLANTA, February 16, 2009 " Lancope', Inc., the provider of StealthWatch', the Best in NetFlow Analysis (http://www.lancope.com/news/08052008.aspx) and the most widely used network behavior analysis (NBA) and response system, today announced StealthWatch FlowSensor VE, the industry leading, complimentary NBA software-only solution to provide anomaly detection and network performance monitoring for virtual environments. As the newest addition to the award-winning, flow-based StealthWatch System, the StealthWatch FlowSensor VE extends Lancope's physical network visibility to virtual environments by analyzing virtual network traffic to detect and address configuration problems, inefficiencies in resource allocation, security violations and policy violations before any failure or degraded performance occurs.

StealthWatch FlowSensor VE delivers:

Deep Virtual Monitoring " performance, capacity and availability management of all virtual technologies, down to the performance metrics of individual virtual machine (VM) instances and the applications that reside within

Unified Visibility " complete visibility into security, network, user and application activity across virtual networks

Single Dashboard " central management and monitoring of global infrastructure across virtual and physical environments through seamless integration with the physical network visibility solution

Lightweight, Scalable, Fast Deployment " extreme efficiency with low impact on I/O and CPU to ensure maximum performance of the virtual environment

Deployed on a VMware ESX host, the StealthWatch FlowSensor VE collects VM traffic and application data across all VMs deployed on that server, converting that information into a customized, proprietary version of NetFlow v9, which in turn is sent to the StealthWatch Xe for NetFlow collector for detailed analysis.

By capturing vital traffic statistics, the StealthWatch FlowSensor VE addresses multiple challenges, including gaining virtual network topological and location awareness, securing virtual networks, demonstrating compliance, controlling VM sprawl and tracking virtual machines when they are moved via VMware VMotion, to help maximize the benefits associated with server virtualization.

"VMware delivers a trusted virtualization platform for enterprise and desktop applications," said Shekar Ayyar, vice president of infrastructure alliances, VMware. "We believe by coupling our industry-leading hypervisor with flow-based behavior analysis, customers can now gain a new level of visibility to help improve security and performance in the virtual environment, while preserving IT cost savings and minimizing complexity."

Lancope's innovative approach to monitoring virtualized servers differs wildly from comparative technologies, which conduct processing on the virtualized servers themselves and utilize significant virtual resources. Lancope's centralized analysis eliminates the overhead associated with disparate virtual security tools, enabling scalable, centrally managed enterprise protection. Easily deployed, lightweight, and user friendly, the StealthWatch FlowSensor VE can help contain costs and maximize return on investment (ROI) of server virtualization.

According to Neil MacDonald, vice president of Gartner, Inc., in his "Tactical Guidelines for Evaluating Virtualization Security Solutions" which was published by Gartner on 16 January 2009, "...most organizations will require a combination of physical and virtual security solutions for at least the next five years...Using solutions and vendors for securing virtual environments that are different from those used in physical environments compounds the chance of making a mistake, misadministration or mismanagement." "Visibility into virtualized environments for security and availability management can help accelerate VM rollouts," said Adam Powers, chief technology officer of Lancope. "By capitalizing on our flow-based expertise, Lancope has developed a high-performance solution in response to overwhelming market demand for seamless, integrated visibility across physical and virtual networks " that neither sacrifices performance nor cost savings " and helps enhance the reliability and security of virtualization."

Availability & Pricing StealthWatch FlowSensor VE will be available at no charge in April and will be available for download from www.lancope.com. Introductory pricing to connect StealthWatch FlowSensor VE to the StealthWatch System begins at $1,500 USD. For more information, please contact Lancope at [email protected] Current customers can contact their regional sales representatives.

About Lancope Lancope', Inc. is the provider of the StealthWatch' System, the most widely used network behavior analysis (NBA) and response solution that unifies visibility for evolving networks. Providing continuous monitoring across physical and virtual networks, StealthWatch eliminates network blind spots and reduces total network and security management costs. Both OPSEC and Common Criteria-certified, StealthWatch received the 2008 Best in NetFlow Analysis Award and the 2007- 2008 Global Excellence Awards in NBA. Defending the networks of Global 2000 organizations, academic institutions and government entities, StealthWatch protects hundreds of enterprise customers worldwide, more than all direct competitors combined. Lancope also partners with fellow best-of-breed solution providers through its Technology Alliance Program, which includes Cisco Systems, Foundry Networks, IBM Tivoli, Blue Coat, VMware, Check Point, TippingPoint, ArcSight and A10 Networks. Lancope is a privately held, venture-backed company headquartered in Atlanta, Georgia. For more information, visit www.lancope.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Commentary
What the FedEx Logo Taught Me About Cybersecurity
Matt Shea, Head of Federal @ MixMode,  6/4/2021
Edge-DRsplash-10-edge-articles
A View From Inside a Deception
Sara Peters, Senior Editor at Dark Reading,  6/2/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23394
PUBLISHED: 2021-06-13
The package studio-42/elfinder before 2.1.58 are vulnerable to Remote Code Execution (RCE) via execution of PHP code in a .phar file. NOTE: This only applies if the server parses .phar files as PHP.
CVE-2021-34682
PUBLISHED: 2021-06-12
Receita Federal IRPF 2021 1.7 allows a man-in-the-middle attack against the update feature.
CVE-2021-31811
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-31812
PUBLISHED: 2021-06-12
In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
CVE-2021-32552
PUBLISHED: 2021-06-12
It was discovered that read_file() in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-16 package apport hooks, it could expose private data to other local users.