BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

The Concept of Universal Integration

Posted August 16, 2010    Morey Haber

CNN recently reported that cell phones in Europe will soon benefit from a universal charger format. That means that regardless of the cell phone vendor you purchase, there will be one standard connector that will work for all of them. Unfortunately, here in the United States, we have no such regulations and the concept of universal connectors and communication eludes many common technologies.

Consider security technology. Integration between many vendors uses proprietary APIs, standard flat file formats from organizations like NIST, and other technologies borrowed from network management solutions such as SNMP and Syslog. There are very few, if any, real time integration protocols for security solutions that allow them to integrate and perform heterogeneous functions like network management solutions. Security solutions end up generating critical data and it is left to SIEM vendors to correlate the results. This is why third party integrations for security vendors create unique business opportunities before security information event managers even see the unprocessed results, and a strong technology integration partner program is imperative such that your security data in not an island and can be escalated to the appropriate departments.

Consider the concept of generic, universal integration. If a security solution can communicate with other tools using the most common formats like SNMP, Syslog, the Windows Event Log, and provide an open database schema, the concept of universal third-party integration is possible. Any other vendor able to accept these common formats can parse security data and provide additional correlation and business value. The larger question is how does this actually help my business. Consider the following integrations from eEye:

Big Fix – Provides vulnerability and configuration data from BigFix Agents and Retina scans in a single dashboard and reporting for all IP addressable devices

Agiliance – Provides complete GRC information for devices including Retina identified vulnerabilities and the ability to initiate patch management

RedSeal – Identification of security risks from discovered Retina vulnerabilities and native mapping technologies built into RedSeal in a single pane of glass view

ForeScout – Retina vulnerability results assist in critical NAC decisions for device access

Each of these solutions provide additional business value based on detailed integration and universal communication. Solutions with closed cloud architectures, or minimal export and API capabilities, provide only point solutions to a business’s vulnerability management needs. The concept of universal access and standards based communication is not new. Technology has adopted this concept down to cell phone chargers and verticals like network management and security benefit from their widespread adoption. The question really becomes: do your security solutions use these standards, are they certified on the most important ones, and do they ultimately partner with the leading vendors in the industry for technology integrations that can really impact your business and make you more secure? eEye does.

Leave a Reply

Additional articles

CyberResiliency

6 things I like about Gartner’s Cyber Resiliency Strategy

Posted August 27, 2015    Nigel Hedges

There were 6 key principles, or recommendations, that Gartner suggested were important drivers towards a great cyber resiliency posture. I commented more than once during the conference that many of these things were not new. They are all important recommendations that are best when placed together and given to senior management and the board – a critical element of organisations that desperately need to “get it”.

Tags:
,
powerbroker-difference-1

Why Customers Choose PowerBroker: Flexible Deployment Options

Posted August 26, 2015    Scott Lang

BeyondTrust commissioned a study of our customer base in early 2015 to determine how we are different from other alternatives in the market. What we learned was that there were six key differentiators that separate BeyondTrust from other solution providers in the market. We call it the PowerBroker difference,

Tags:
, ,
Mac-Security-Enterprise

On Demand Webinar: Security Risk of Mac OS X in the Enterprise

Posted August 20, 2015    BeyondTrust Software

In the last several years, Mac administrators have come to realize that they may be just as vulnerable to exploits and malware as most other operating systems. New malware and adware is released all the time, and there have been serious vulnerabilities patched by Apple in the past several years, some of which may afford attackers full control of your systems.

Tags:
, ,