AXENT Unveils ESM for Web Servers, the First and Only Assessment and Policy Compliance Solution on the Market Specifically for Web Servers.Business/Technology Editors ROCKVILLE, Md.--(BUSINESS WIRE)--Dec. 4, 2000 The Latest in a Series of Application Probing Extensions for Enterprise Security Manager, AXENT's New Solution Provides Comprehensive Security Checks for Web Servers and E-Businesses AXENT Technologies, Inc. (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on : AXNT), one of the world's leading Internet security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. solutions providers for e-business, that announced on July 27, 2000 that it entered into definitive agreement with Symantec Corporation (NASDAQ: SYMC SYMC Symantec Corporation (stock symbol) ) to be acquired, today released Enterprise Security Manager(TM) (ESM (1) (Enterprise Storage Management) Managing the online, nearline and offline storage within a large organization. It includes analysis of storage requirements as well as making routine copies of files and databases for backup, archiving, disaster recovery, ) for WebServers, the first and only security solution to assess critical vulnerabilities and define, manage and enforce e-security policies for enterprise-class Web servers. ESM for WebServers is the first shipping solution in AXENT(R)'s new ESM Application Security Series--a family of solutions designed to address security vulnerabilities and policy compliance of new mission-critical e-business components such as Web servers. "Companies today have secured their operating systems Operating systems can be categorized by technology, ownership, licensing, working state, usage, and by many other characteristics. In practice, many of these groupings may overlap. and have implemented solid security policies around them, but have now begun to open these environments to partners and customers to embrace e-business opportunities, creating new vulnerabilities. Different tools are needed to manage the compliance of e-business components against stated security policies and to assess the vulnerabilities brought on by adding Web servers, routers, databases and other applications," said Bob Flinton, product manager at AXENT. "ESM for WebServers extends beyond the operating system operating system (OS) Software that controls the operation of a computer, directs the input and output of data, keeps track of files, and controls the processing of computer programs. to probe for vulnerabilities in Web servers and identify areas that must be secured to protect against attacks such as the two recent attacks that Microsoft suffered." In November, Microsoft(R) admitted that two hacker attacks breached its Web site, following the company's initial high-profile break-in in September. The hacker breached the site using known vulnerabilities for Microsoft's Windows NT (Windows New Technology) A 32-bit operating system from Microsoft for Intel x86 CPUs. NT is the core technology in Windows 2000 and Windows XP (see Windows). Available in separate client and server versions, it includes built-in networking and preemptive multitasking. (R)/2000 and the company's IIS (Internet Information Services) Microsoft's Web server. IIS runs under the server versions of Windows, adding HTTP server capability to the Windows operating system. Web server--vulnerabilities for which secure fixes have been available for quite a while, but which had not been implemented. With ESM and ESM for WebServers, companies know if such vulnerabilities exist, and can act to secure them before they are exploited. Beyond the Operating System ESM for WebServers is designed to extend security policy compliance and vulnerability assessment A Department of Defense, command, or unit-level evaluation (assessment) to determine the vulnerability of a terrorist attack against an installation, unit, exercise, port, ship, residence, facility, or other site. beyond the operating system to assess the security of Web servers. Coverage for all leading Web servers across multiple operating systems allows you to secure your existing systems and preserve your investments. Regular updates deliver comprehensive coverage to protect against new vulnerabilities as they are discovered, keeping your security current and proactive in nature. Additional modules for assessing routers and switches, firewalls, e-mail servers and other e-business applications will be unveiled individually in the coming year. Earlier this year, AXENT release ESM for Oracle(R) v. 1.1, enabling ESM users to assess these mission-critical databases for key vulnerabilities, and incorporate these systems into their enterprise-level security policies. ESM for WebServers provides users with three check groups that contain over 270 Web server vulnerability checks. Each of the 270-plus security checks in this new module examines a specific area of Web server security. The security checks contained in ESM for WebServers cover three major areas of Web server security vulnerabilities including Common Gateway Interface (CGI CGI in full Common Gateway Interface. Specification by which a Web server passes data between itself and an application program. Typically, a Web user will make a request of the Web server, which in turn passes the request to a CGI application program. ) programs, FTP FTP in full file transfer protocol Internet protocol that allows a computer to send files to or receive files from another computer. Like many Internet resources, FTP works by means of a client-server architecture; the user runs client software to connect to utilities, and Bastion Host A computer system in a network that is fortified against illegal entry and attack, because it is exposed to the outside world (the Internet). Bastion hosts are used for services such as Web site hosting, mail, DNS lookups and FTP transfer and are located on the public side of a perimeter services. With these categories, ESM for WebServers provides the market's most comprehensive, scalable solution for Web server vulnerability assessment. Additionally, with ESM's sophisticated file monitoring and host-based assessment capabilities, customers can proactively manage and detect the top 10 security threats identified by the SANS Institute The SANS Institute (SysAdmin, Audit, Networking, and Security) is a trade name owned by the for-profit Escal Institute of Advanced Technologies. SANS provides computer security training, professional certification, and a research archive. , FBI, and Department of Justice, as part of a comprehensive security policy. The file watch and file attributes modules of ESM track changes and security settings in critical files that are exploited in the majority of Internet attacks to enable the customer to quickly respond and rectify potential security threats. Information on how ESM can be used to secure against each of the vulnerabilities is available now and can be found at http://www.axent.com/swat. About ESM Application Security Modules Unlike point products that provide limited views of security, AXENT delivers an integrated, comprehensive and scalable solution that is quick and easy to implement. ESM and the new series of ESM Application Security Modules provide a flexible solution that automates the discovery of security vulnerabilities and proactively manages the risks that can disrupt day to day operations in every critical enterprise system--including the critical applications today's e-business demands. AXENT has created a series of modules that integrates with its market-leading ESM vulnerability assessment solution to extend policy compliance and vulnerability assessment capabilities for e-business. The ESM Application Security Series plugs directly into an organization's existing ESM solution's new "speed" console to deliver a consolidated picture of the user's enterprise security health--from the operating system to critical applications and servers--for a fully-integrated e-business security management solution. Vulnerabilities are identified and integrated directly into the policy trees within the ESM interface users are already familiar with--so training and operational expenses are minimal and companies can be up and running immediately. Targeted modules, such as ESM for WebServers, fit the specific needs of each business, so there's no need to purchase an unnecessary component. Pricing and Availability ESM for WebServers is available immediately worldwide via AXENT and its channel of certified resellers. Pricing for ESM for WebServers v1.0 starts at $995 per server. While ESM for WebServers resides on a Windows NT box, it assesses all the major Web servers running on various platforms, including Windows 2000, Linux(R), and UNIX UNIX Operating system for digital computers, developed by Ken Thompson of Bell Laboratories in 1969. It was initially designed for a single user (the name was a pun on the earlier operating system Multics). (R). The WebServers' module direct integration into the ESM console enables the user to manage their Web server security from either Windows NT or 2000. About ESM According to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. International Data Corporation (IDC), a leading industry analyst firm, AXENT is the undisputed market leader in intrusion detection and assessment solutions (IDnA), with ESM as the worldwide leader in host-based vulnerability assessment with 68% market share--more than the combined market share of both its nearest competitors. ESM has won numerous awards and accolades in leading publications including SC Magazine (Academy Award), Windows NT (Superior Suite) and the Crossroads 2000 A-list award. ESM's groundbreaking technology reaches out to assess the security for every critical enterprise system, including most major operating systems and key enterprise applications. ESM supports all leading operating systems, including Windows NT, Windows 2000, Sun(TM) Solaris(R), HP/UX HP/UX Hewlett-Packard UNIX operating system HP/UX Unexploded Human Particulate Operating System (R), IBM (International Business Machines Corporation, Armonk, NY, www.ibm.com) The world's largest computer company. IBM's product lines include the S/390 mainframes (zSeries), AS/400 midrange business systems (iSeries), RS/6000 workstations and servers (pSeries), Intel-based servers (xSeries) (R) AIX (Advanced Interactive eXecutive) IBM's Unix-based operating system which runs on its Intellistation workstations and pSeries, p5, iSeries and i5 server families. (R), Compaq's(R) Tru64(R) and VMS (1) (Virtual Memory System) A multiuser, multitasking, virtual memory operating system for the VAX series from Digital. VMS applications run on any VAX from the MicroVAX to the largest unit. See OpenVMS. , and Novell(R) NetWare(R), among others. ESM integrates with Tivoli(R), HP's(R) OpenView(R), and BMC (BMC Software, Inc., Houston, TX, www.bmc.com) A leading supplier of software that supports and improves the availability, performance, and recovery of applications in complex computing environments. Software's(R) Patrol(R), providing the security infrastructure for these industry-leading systems management frameworks. Under AXENT's Smart Security Architecture, ESM also integrates with AXENT's NetRecon(R), Intruder Alert(TM), and Resource Manager(TM) for UNIX. About AXENT(R) AXENT Technologies, Inc., a global leader in information security, provides e-security solutions that maximize its customers' business advantage. AXENT delivers integrated products and expert services to assess, protect, enable and manage business processes and information assets, as well as to facilitate Trust Level Management(TM) within its customers' environments. Through its unique Lifecycle Security(TM) Methodology, combined with Smart Security Architecture, AXENT delivers the `right' level of trusted e-security for customers. Award-winning solutions offer assessment and policy compliance, firewall, intrusion detection, authentication and authorization technology, virtual private networking, Web access and single sign-on for enterprises and e-businesses. Headquartered in Rockville, MD, AXENT's customer-proven information security solutions are used by 45 of the Fortune 50, one-third of the Fortune e-50 and governments worldwide. Contact AXENT via e-mail at info@axent.com, or visit AXENT's World Wide Web site at http://www.axent.com. AXENT, the AXENT logo, Enterprise Security Manager, NetRecon, Intruder Alert, Resource Manager, Trust Level Management, and Lifecycle Security are trademarks or registered trademarks, in the United States and certain other countries, of AXENT Technologies, Inc. or its subsidiaries. Windows NT and Windows 2000 are registered trademarks of Microsoft Corporation.; Novell and NetWare are registered trademarks of Novell, Inc.; OpenView, HP and HP-UX HP's version of Unix that runs on its 9000 family. It is based on SVID and incorporates features from BSD Unix along with several HP innovations. (operating system) HP-UX - The version of Unix running on Hewlett-Packard workstations. are registered trademarks of Hewlett Packard Corporation; BMC Software and Patrol are registered trademarks of BMC Software, Inc.; Tivoli is a registered trademark of Tivoli Systems, Inc.; IBM and AIX are registered trademarks of International Business Machines, Inc., Compaq and Tru64 are registered trademarks of Compaq computer Corporation (company) Compaq Computer Corporation - The largest US manufacturer and vendor of IBM PC compatible personal computers and servers. Compaq was started in 1982 by three ex-Texas Instruments employees. Quarterly sales $2499M, profits $210M (Aug 1994). http://compaq.com/. ; UNIX is a registered trademark of The Open Group; Sun , and Solaris are trademarks or registered trademarks of Sun Microsystems, Inc.; Oracle is a registered trademark of Oracle Corporation; and other product names and trademarks are the property of their respective owners. Other product names and trademarks are the property of their respective owners. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion