Cyber Security Institute
Product
Friday, August 20, 2010
WAN Log File Data Collection Heads for Standardization
The upcoming LogLogic 5 release from log vendor LogLogic is aiming to expand that visibility with a universal collection framework for disparate log data coming across a WAN. Specifically, LogLogic is working to create a new standard protocol for log data transmission that could change the way enterprise collect and analyze that data.
Monday, June 07, 2010
IBM Announces New Offerings to Help Organizations Drive Innovation While Managing Cost and Risk
At the INNOVATE 2010 conference, IBM announced new software and services that help customers design and deliver the advanced products leading the convergence of mechanical, electronic, and digital technologies. The convergence of physical assets and IT applications requires a new “systems of systems” approach for integrating products and services. Software-driven innovation across product lines is often challenging if not supported by effective planning, development and collaboration. Best-in-class product and service companies are those that build a strong competency in systems engineering and software development. Organizations of the future—along with their partners and customers—must build the competencies to design, deliver and manage products in smarter ways.
Thursday, June 03, 2010
Logicworks Launches “The Compliant Cloud”
Logicworks, a New York-based cloud-computing provider, announces the launch of Compliant Cloud, the first private cloud service capable of enterprise-level security and compliance. Compliant Cloud is a breakthrough for businesses looking to take advantage of the flexibility and efficiency of cloud-computing without sacrificing the security of traditional in-house IT operations. Logicworks Compliant Cloud provides a full range of solutions including; PCI for e-commerce, SAS-70 and Sarbanes-Oxley required for internal systems at public companies, HIPAA for healthcare applications, Federal Information Security Management Act (FISMA) for government projects and safe harbor for European Union projects hosted in the United States.
Tuesday, June 01, 2010
F5 Optimizes Microsoft Solutions Enabling the Dynamic Data Center
F5 Networks, Inc., the global leader in Application Delivery Networking (ADN), today announced enhanced application delivery capabilities to help Microsoft customers implement dynamic infrastructures that can quickly respond to changing business needs and variables. Virtualized environments require sophisticated tools to help IT provision and unify computing, network, and storage resources for maximum utilization and efficiency. F5’s solution portfolio promotes seamless application delivery for virtualization and cloud deployments running on Microsoft platforms.
Thursday, May 27, 2010
Symantec to Move Security to Phone, Smart Devices
Symantec announced a significant initiative it is calling “Norton Everywhere”, aimed at busting Symantec’s security know-how out of the yellow box and bringing it to new markets. Elements of the strategy, to be rolled out over the next few months, specifically include mobile security products for iPhone and Android, a Norton DNS service, and (relying on partner Mocana) security for a variety of non-PC “smart devices”.
Wednesday, May 26, 2010
Xerox’s ACS Rolls Out Public, Private Cloud Service
Xerox-owned Affiliated Computer Services this week became the latest IT services company to debut an enterprise service that blends both private and public cloud services though an on-demand delivery model. ACS Enterprise Cloud is designed to support the Vblock infrastructure package, a pre-integrated and pre-tested virtualized data center offering developed by Cisco (NASDAQ: CSCO), EMC (NYSE: EMC) and VMware (NYSE: VMW).
Tuesday, May 25, 2010
IBM to acquire Cast Iron Systems for cloud boost
Cast Iron provides integration software that enables applications running in a cloud to access applications in the data center. IBM predicts the global cloud-computing market will grow to US$126 billion in 2012, up from $47 billion in 2008.
Monday, May 24, 2010
Sourcefire Expands Real-Time Application Awareness, Extending Leadership of Intelligent Cybersecurit
Sourcefire, Inc. (Nasdaq:FIRE), the creators of Snort® and a leader in intelligent cybersecurity: solutions, today announced enhancements that provide the Sourcefire IPS, the industry’s leading intrusion prevention system (IPS), with real-time visibility into the specific applications running on an organization’s network. Sourcefire is expanding its existing library of more than 200 application detectors by adding support for popular applications and services such as Gmail, HTTP and RSS, making it easier than ever to tailor IPS protection, assess the impact of threats, and enforce IT policy compliance.
Check Point enhances free firewall with malware analysis
Check Point has enhanced its ZoneAlarm firewall with a feature that analyses malware reported by its community. The company said that the free firewall includes both an inbound and outbound firewall, with the inbound firewall preventing hackers from entering a PC and outbound protection automatically blocking data from being transmitted back out to the hacker.
Friday, May 21, 2010
Verizon to offer network security via the cloud
The service will enable organizations to add security services with “just the click of a mouse” through a simple and robust platform, the firm claimed, while removing the need to have any equipment installed on-site. David Howorth, regional vice president for global services at Verizon Business, explained that the move could help enterprises of all sizes ensure that they have the necessary foundations to protect against a range of threats.
Oracle Buys Database Firewall Firm Secerno
Oracle said it will buy Secerno, a provider of database firewall software, to help customers protect their sensitive business data and comply with regulatory compliance standards.
Tuesday, May 18, 2010
Fortify Software Unlocks Benefits of the Cloud with Software Security Solutions
The solutions are ideal for both enterprises and agencies that are considering a move to the cloud, and cloud providers that offer shared infrastructure services to clients. “To fully realize the benefits of cloud computing, customers must trust that infrastructure vulnerabilities - especially the software that cyber-threats target more and more - don’t compromise the cloud’s shared services or open new avenues for hackers to access private information or disrupt business processes,” said Dave Cullinane, Chairman of the Board and Co-Founder of the Cloud Security Alliance. Fortify’s new business white paper, called “Capturing the New Frontier: How Software Security Unlocks the Power of Cloud Computing”, is intended for anyone involved in evaluating a move to the cloud so that they understand and can address the unique software security risks of the cloud. The technical white paper, called “Software Security in the Cloud: A Technical Perspective”, is aimed at security practitioners and developers interested in gaining a deeper technical understanding of the vulnerabilities inherent to a cloud environment, and how to take action to mitigate these vulnerabilities.
Wednesday, May 12, 2010
New Services Could Signal Shift In SaaS Security Offerings
Two major announcements this week indicate software-as-a-service (SaaS) security offerings are heating up, becoming both more comprehensive and easier to manage, experts say. Symantec announced its Hosted Endpoint Solution (HEP), a service that will allow small and midsize businesses to manage all of their desktop security clients from a single portal. The announcement came a day after Verizon Business launched a comprehensive cloud security service, rolling antispam, firewall, intrusion detection, and denial-of-service attack protection into a single service that doesn’t require on-premise equipment. “We aim to have our [cloud] services 30 percent cheaper than our equivalent on-premise services,” says Cindy Bellefeuille, director of security product management for Verizon Business.
Wednesday, May 05, 2010
Accuvant Unveils New Data-Centric Security Framework
Accuvant, the only research-driven information security partner delivering alignment, clarity and confidence to enterprise clients, announced today the availability of its Data-Centric Security Framework. This new offering is comprised of several services that will be delivered by Accuvant’s Risk and Compliance Management and Technology Solutions teams, which are responsible for helping clients build and manage ongoing programs that pave the way for a healthy compliance posture and utilize the right technologies for their environments. Accuvant’s Data-Centric Security Framework helps clients implement a Data Loss Prevention (DLP) strategy through sensitive data categorization and execution of repeatable security strategies, which can maximize investments in data protection controls and infrastructure.
Monday, February 22, 2010
Next generation firewall software introduced by Palo Alto Networks
Palo Alto Networks is to launch next generation firewall software to enable finer-grained control over business and Web 2.0 applications.
Thursday, January 14, 2010
Product Watch: NitroSecurity Integrates Log Management With SIEM
SIEM vendor NitroSecurity next week will roll out a new log management product and management software that brings the two traditionally separate worlds under one roof. The new NitroView ESM Version 8.4 and new Enterprise Log Manager (ELM) tools are fully integrated and provide a single view of all SIEM and log management functions.
Thursday, January 07, 2010
Log Management Appliance facilitates regulatory compliance [and chain of custody]
netForensics, Inc., a leader in the Information Security Management market, today announced data security enhancements to nFX Cinxi One. By incorporating the latest digital signing and encryption technologies into the industry’s most comprehensive log management solution, nFX Cinxi One creates a secure chain of custody to ensure the integrity of critical enterprise log information needed to demonstrate regulatory compliance.
Thursday, December 17, 2009
Sun Unveils Cloud Computing Security Tools
As part of its overall strategy to help customers and partners build public and private clouds that are open and interoperable, Sun Microsystems on Thursdsay unveiled innovative open source cloud security capabilities and announced support for the latest Security Guidance from the Cloud Security Alliance. Sun is steadfast in its commitment to providing best practices and technologies that help users safeguard their critical data in the enterprise and in the cloud. The introduction of Sun’s Cloud Security architectural building blocks will help deliver enterprise-grade cloud services that are highly secure, available and easily manageable when used in public, private or hybrid cloud environments.
Wednesday, December 16, 2009
LogLogic releases version 4.9 of its log management software
Version 4.9 contains more than 40 new features, including built-in support for direct connectivity to Fibre Channel SAN environments without additional gear or appliances and new device management capabilities that provide more system operation controls.
Monday, December 14, 2009
Breach Security releases WebDefend Global Event Manager
Breach Security has released WebDefend Global Event Manager that works in conjunction with the new web application firewall service offered by Akamai Technologies. When deployed with Akamai’s web application firewall service, the WebDefend Global Event Manager defends against global application security threats by enabling customers to make distributed cloud and data centre defense-in-depth architectures operational, the company said.
Wednesday, December 02, 2009
LogLogic Announces U.S. Patent for Storage of Raw Log Data
The patented system collects logs from network devices and analyzes and stores the data contained in those logs. The patent also covers LogLogic’s management console, which allows users to search and run reports on log data. By acknowledging that LogLogic’s system is unique, the patent recognizes LogLogic’s seminal innovation in the industry and its pioneering first step in advancing log management technology.
Tuesday, September 01, 2009
LogLogic Simplifies Security Change Management
LogLogic’, the log and security management leader, today announced general availability of the latest release of its LogLogic Security Change Manager appliance that integrates easily with SEM solutions from LogLogic or other vendors as well as third-party CRM and ticketing solutions.
Thursday, May 07, 2009
Startup Takes New Spin On Online Fraud Detection
A security startup is preparing to emerge from stealth mode with a new technology that detects in real-time whether an online user or member of a social network is legitimate—and not a bot, automated tool, or criminal performing financial or other online fraud. Pramana, which will officially launch in July, has developed what it calls HumanPresent, a technology spun off from research at Georgia Tech that catches online fraud in action, real-time, using a dynamic method of identifying human behavior anomalies while at the same time preventing the fraudsters from detecting that they’re being watched.
Thursday, March 12, 2009
Securely booting from strangest of places
Could FOSE 2009 be remembered as the year of the bootable portable drive?
On the show floor, a number of vendors are displaying either USB drives, enclosed hard drives or other portable media from which an entire operating system and associated application can booted.
Wednesday, February 18, 2009
SenSage Named Leader in Japanese Market for SIEM and Log Management
Enterprise software leader SenSage, Inc. has earned the top spot in market share for security log management software in Japan, according to a report by Japanese market analysis firm ITR Corporation. The study of nearly 30 vendors that compete in the security log management market in Japan shows SenSage with a dominant market share of 30.4 percent, nearly twice that of the nearest competitor. ITR cited SenSage’s network of distribution and reseller partners and overall product quality as key differentiators in the marketplace.
Thursday, February 05, 2009
Tenable Releases Database Auditing Capability
Tenable Network Security, Inc., the leader in Unified Security Monitoring and creator of the popular and award-winning Nessus(R) vulnerability scanner, today announces a new capability for Nessus users to audit the configuration of many different SQL databases. These checks are only available to Security Center users and ProfessionalFeed subscribers.
Sunbelt Pioneers New Anti-Virus Technology
US company Sunbelt Software is set to become one of the first anti-virus vendors to embrace a promising but as yet little-used new technique for malware detection known as ‘file emulation’. Released this week to UK users after a US launch some time ago, the company’s Vipre Enterprise anti-malware client is on the face of it just another program jostling for attention with the admin-friendly claim that it can protect PCs from malware without slaughtering performance. Known in company jargon as ‘MX-Virtualization’ (MX-V), Vipre effectively creates an emulated Windows PC in a sandbagged area of memory, mimicking API functions such as the Windows registry, file system, and communications interfaces to see what a file is trying to do.
Saturday, January 31, 2009
Archer Technologies Acquires Brabeion Software
Archer Technologies, a provider of enterprise governance, risk and compliance (GRC) solutions, today announced that it has reached a definitive agreement to acquire Brabeion Software Corporation, a market-proven provider of IT-GRC management software. The acquisition solidifies Archer’s acknowledged IT-GRC industry leadership and will strengthen the company’s ability to deliver outstanding enterprise GRC solutions. With the acquisition, Archer will leverage Brabeion’s industry-leading content library to further enhance its best-in-class Policy Management solution.
Wednesday, January 14, 2009
Symantec virtualization tech turns 1 PC into 3
Symantec is turning to virtualization and cloud computing to protect Web surfers and let them access Web-based applications from one site. The company demonstrated the technologies, along with another one designed to block malware from getting into corporate networks, to reporters and briefed them on its research and development strategy at an event it dubbed “Innovation Showcase” on Wednesday. Virtualization technology that essentially creates different machines on the same computer offers a good platform for securing PCs by providing different protected environments, said Joe Pasqua, vice president of research at Symantec Research Labs. Taking advantage of this trend, the company has developed Virtualization-based endpoint security, VIBES, technology that works with machines already running virtualization hardware and software to isolate three different areas on a computer for doing activities that require different levels of security.
Tuesday, November 18, 2008
Secure OS Gets Highest NSA Rating, Goes Commercial
Unlike existing commercial OSes, Integrity OS is designed and certified to defend against sophisticated attacks. After receiving the highest security rating by a National Security Agency (NSA)-run certification program, Green Hills Software has announced that its Integrity-178B operating system was certified as EAL6+ and that the company had spun off a subsidiary to market the OS to the private sector as well as government agencies.