RedSeal Ensures Security for Rapidly Changing IT Infrastructures

Help security, network organizations assess security impact of changes

Note: ESJ’s editors carefully choose vendor-issued press releases about new or upgraded products and services. We have edited and/or condensed this release to highlight key features but make no claims as to the accuracy of the vendor's statements.

RedSeal Systems has announced a set of new capabilities to help security and network organizations assess the security impact of changes to their IT infrastructures. The enhancements are being released in version 4.1 of RedSeal Network Advisor and RedSeal Vulnerability Advisor and build upon the continuous monitoring and near real-time risk management capabilities already provided by these products.

The new capabilities in the 4.1 releases help IT organizations address a number of network security challenges:

Should I make a change? When a network change is proposed, RedSeal software automatically assesses the risks that the change will pose to the organization’s security. It identifies vulnerabilities that will become subject to attack, any newly exposed hosts that could become launch points for attacks deeper into the organization, and any additional risk that will result from the change. This information enables IT organizations to identify mitigating steps (such as patching) that need to be taken before the change is implemented.

How do I make the change? In large networks, enabling access over the network requires changes to multiple firewalls, routers, and load balancers. Precisely defining the required changes is complex and difficult. To reduce the chance of impacting availability, organizations often allow excessive access, creating security risks. RedSeal software automatically analyzes proposed end-to-end access to identify which devices must be changed, as well as the precise rules or ACLs that need modification. These capabilities improve both the accuracy and productivity of firewall and network operations groups.

Have past changes outlived their usefulness? Over time, some firewall rules will become obsolete. As these unused rules accumulate, they increase the complexity of managing the firewall and can pose security risks. RedSeal software evaluates firewalls and routers to identify rules that have become redundant, disabled, or that are no longer in use. This capability makes it easy for firewall operations groups to clean up rule sets to improve manageability and performance.

The greatest security issues often derive from changes that are not made to firewalls. Changes to servers, applications, and routers often necessitate corresponding changes to firewalls and the security infrastructure. If these required changes are not made, security breaches can easily occur. RedSeal software continuously monitors the entire IT infrastructure to ensure that the security components are providing the protection required by the application components. When a change anywhere compromises the security of the organization, RedSeal detects the issue, isolates the root cause and informs IT and business management of the risks and recommended actions for remediation.

RedSeal Network Advisor 4.1 and RedSeal Vulnerability Advisor 4.1 are available now. Existing RedSeal customers will receive the new capabilities as part of their maintenance programs. More information is available at www.redseal.net.