New Users
Home
Analysts & Consultants
People
Channel Advantage
Products
Technology
Case Studies
Awards
About This Guide
Adaptive Risk Analysis (ARA): Quantifying Business Risk Exposure
Current Scenario: Despite the multitude of security products, enterprises are unable to quantify the effectiveness of their network security as a whole, making it difficult to harder still to measure the effectiveness of the overall security posture. Technologies that have attempted to create this holistic network view in the past have not been pragmatically deployable because they have required that customers deploy VA scanners broadly in every part of their network. This technology prerequisite has proven too costly to implement, so holistic network risk management has been confined to only those enterprises that have made an investment in pervasive and frequent vulnerability scanning.
Current Scenario: Despite the multitude of security products, enterprises are unable to quantify the effectiveness of their network security as a whole, making it difficult to harder still to measure the effectiveness of the overall security posture.
Technologies that have attempted to create this holistic network view in the past have not been pragmatically deployable because they have required that customers deploy VA scanners broadly in every part of their network. This technology prerequisite has proven too costly to implement, so holistic network risk management has been confined to only those enterprises that have made an investment in pervasive and frequent vulnerability scanning.
Tomorrow's Technology Today: In order to address the challenge of holistic network security risk management which can benefit any organization regardless of installed technology, RedSeal Systems Engineering set out to build an application that can visualize and measure risk with or without vulnerability assessment scanners in place. The result is the RedSeal Security Risk Manager (SRM) 3000 which includes a unique set of analytics algorithms that comprise Adaptive Risk Analysis- a body of mathematics, security and development work for which several patents have been filed. The SRM 3000 is a system to visualize, measure and proactively mitigate security risk for unified and measurable insight into network security and its effectiveness. With RedSeal's SRM 3000, IT professionals are able to measure security and business risk, pinpoint threats and exposures and gain actionable information to improve the day-to-day security posture of the network, reduce workload and report on compliance. RedSeal’s SRM 3000 is the only security management product to illustrate risk exposure and prioritize remediation using Adaptive Risk Analysis (ARA). This breakthrough technology generates initial actionable results even with a subset of router and firewall data, and then provides an easy-to-use path for adding more information on the as-built security posture of the environment. The additional information can include application flow data, patch history, and vulnerability scans. RedSeal gives enterprises of any size a never before seen view of their infrastructure – a visualization of risk exposure and concise guidance on where and how to remediate. RedSeal has taken an open, vendor-agnostic approach to SRM, allowing it to be easily installed in almost any customer environment regardless of installed technology. It provides organizations of all sizes with a practical, easy to implement way of quantifying network security. RedSeal’s SRM 3000 analyzes and models large networks and their hosts to give actionable information for mitigating exposure of high-valued business assets, in most cases within minutes. Additionally, it tracks the security posture of the network over time, providing a thorough audit trail of security performance. At the system’s core is the Adaptive Risk Analysis (ARA) engine that models and analyzes the configurations of complex networks, clearly identifying risk “hot spots.” Displaying the ARA engine’s modeling and analysis is RedSeal’s unique RiskMap™ visual layout, designed with functional roles in mind, allowing users to quickly locate their network areas and key business assets that are the targets of threats and get precise guidance on the best places to eliminate exposure. The risk metrics and remediation information from RedSeal can be used daily to maintain security at optimal levels, while the system’s reporting and auditing capabilities allow for tracking security efficiency thereby helping guide compliance efforts and future technology investment. Key features and capabilities of RedSeal’s SRM include: 1. Risk quantification – measures the network’s risk posture based on calculation of the exposure and value of business assets. RedSeal’s unique approach employs Adaptive Risk Analysis, a method by which the granularity of the output adjusts based on the amount of input to the system. 2. Proactive mitigation – compiles prioritized listing of vulnerabilities and misconfigurations to indicate where to remediate first to gain the greatest reduction in risk. 3. Threat analysis – displays graphically, one breach at a time, the multi-step path an exploit may take in penetrating critical business resources. The threat map is based on the traffic analysis, any host patch & vulnerability data, and RedSeal’s own knowledge base of vulnerabilities and impacts. 4. Network configuration checking – verifies that the configuration details on devices such as routers and firewalls do not have unintended consequences, such as inadvertently allowing too much access, along with highlighting best practices. 5. Traffic flow analysis – computes the real-world permitted traffic which can be compared to security policy requirements to quickly identify and pinpoint important infrastructure discrepancies that affect security and availability of key services. 6. Actionable trending and reporting – summarizes the network’s security posture over days, weeks, or months. Trending data is grouped to highlight vulnerabilities, changes in risk, and the security posture of important devices and groups (i.e. SOX Servers). The SRM 3000 system is the culmination of exhaustive customer requirements gathering in the form of hundreds of customer interviews and rigorous development work which took place over the past eighteen months. Specifically, ARA and RiskMap constitute industry firsts in the use of risk quantification analytics and the application of TreeMap technology respectively. Several patents have been filed for these two key functions of the product. RedSeal’s Security Risk Manager incorporates adaptive risk calculations to provide answers to the following questions: - What is my overall enterprise risk? Is it trending up or down? - What areas most urgently require remediation? - Where should I make my next security technology investment? Based on an open framework, RedSeal’s SRM is designed for heterogeneous networks, working with the security products a company already has in place, regardless of vendor or technology type. The extensibility of SRM’s open architecture makes it possible to support numerous data sources.
Tomorrow's Technology Today: In order to address the challenge of holistic network security risk management which can benefit any organization regardless of installed technology, RedSeal Systems Engineering set out to build an application that can visualize and measure risk with or without vulnerability assessment scanners in place. The result is the RedSeal Security Risk Manager (SRM) 3000 which includes a unique set of analytics algorithms that comprise Adaptive Risk Analysis- a body of mathematics, security and development work for which several patents have been filed.
The SRM 3000 is a system to visualize, measure and proactively mitigate security risk for unified and measurable insight into network security and its effectiveness. With RedSeal's SRM 3000, IT professionals are able to measure security and business risk, pinpoint threats and exposures and gain actionable information to improve the day-to-day security posture of the network, reduce workload and report on compliance.
RedSeal’s SRM 3000 is the only security management product to illustrate risk exposure and prioritize remediation using Adaptive Risk Analysis (ARA). This breakthrough technology generates initial actionable results even with a subset of router and firewall data, and then provides an easy-to-use path for adding more information on the as-built security posture of the environment. The additional information can include application flow data, patch history, and vulnerability scans. RedSeal gives enterprises of any size a never before seen view of their infrastructure – a visualization of risk exposure and concise guidance on where and how to remediate.
RedSeal has taken an open, vendor-agnostic approach to SRM, allowing it to be easily installed in almost any customer environment regardless of installed technology. It provides organizations of all sizes with a practical, easy to implement way of quantifying network security. RedSeal’s SRM 3000 analyzes and models large networks and their hosts to give actionable information for mitigating exposure of high-valued business assets, in most cases within minutes. Additionally, it tracks the security posture of the network over time, providing a thorough audit trail of security performance.
At the system’s core is the Adaptive Risk Analysis (ARA) engine that models and analyzes the configurations of complex networks, clearly identifying risk “hot spots.” Displaying the ARA engine’s modeling and analysis is RedSeal’s unique RiskMap™ visual layout, designed with functional roles in mind, allowing users to quickly locate their network areas and key business assets that are the targets of threats and get precise guidance on the best places to eliminate exposure. The risk metrics and remediation information from RedSeal can be used daily to maintain security at optimal levels, while the system’s reporting and auditing capabilities allow for tracking security efficiency thereby helping guide compliance efforts and future technology investment.
Key features and capabilities of RedSeal’s SRM include:
1. Risk quantification – measures the network’s risk posture based on calculation of the exposure and value of business assets. RedSeal’s unique approach employs Adaptive Risk Analysis, a method by which the granularity of the output adjusts based on the amount of input to the system. 2. Proactive mitigation – compiles prioritized listing of vulnerabilities and misconfigurations to indicate where to remediate first to gain the greatest reduction in risk. 3. Threat analysis – displays graphically, one breach at a time, the multi-step path an exploit may take in penetrating critical business resources. The threat map is based on the traffic analysis, any host patch & vulnerability data, and RedSeal’s own knowledge base of vulnerabilities and impacts. 4. Network configuration checking – verifies that the configuration details on devices such as routers and firewalls do not have unintended consequences, such as inadvertently allowing too much access, along with highlighting best practices. 5. Traffic flow analysis – computes the real-world permitted traffic which can be compared to security policy requirements to quickly identify and pinpoint important infrastructure discrepancies that affect security and availability of key services. 6. Actionable trending and reporting – summarizes the network’s security posture over days, weeks, or months. Trending data is grouped to highlight vulnerabilities, changes in risk, and the security posture of important devices and groups (i.e. SOX Servers).
1. Risk quantification – measures the network’s risk posture based on calculation of the exposure and value of business assets. RedSeal’s unique approach employs Adaptive Risk Analysis, a method by which the granularity of the output adjusts based on the amount of input to the system.
2. Proactive mitigation – compiles prioritized listing of vulnerabilities and misconfigurations to indicate where to remediate first to gain the greatest reduction in risk.
3. Threat analysis – displays graphically, one breach at a time, the multi-step path an exploit may take in penetrating critical business resources. The threat map is based on the traffic analysis, any host patch & vulnerability data, and RedSeal’s own knowledge base of vulnerabilities and impacts.
4. Network configuration checking – verifies that the configuration details on devices such as routers and firewalls do not have unintended consequences, such as inadvertently allowing too much access, along with highlighting best practices.
5. Traffic flow analysis – computes the real-world permitted traffic which can be compared to security policy requirements to quickly identify and pinpoint important infrastructure discrepancies that affect security and availability of key services.
6. Actionable trending and reporting – summarizes the network’s security posture over days, weeks, or months. Trending data is grouped to highlight vulnerabilities, changes in risk, and the security posture of important devices and groups (i.e. SOX Servers).
The SRM 3000 system is the culmination of exhaustive customer requirements gathering in the form of hundreds of customer interviews and rigorous development work which took place over the past eighteen months. Specifically, ARA and RiskMap constitute industry firsts in the use of risk quantification analytics and the application of TreeMap technology respectively. Several patents have been filed for these two key functions of the product.
RedSeal’s Security Risk Manager incorporates adaptive risk calculations to provide answers to the following questions: - What is my overall enterprise risk? Is it trending up or down? - What areas most urgently require remediation? - Where should I make my next security technology investment? Based on an open framework, RedSeal’s SRM is designed for heterogeneous networks, working with the security products a company already has in place, regardless of vendor or technology type. The extensibility of SRM’s open architecture makes it possible to support numerous data sources.
Conclusion: With RedSeal Systems, enterprises can visualize, measure and proactively mitigate security risk for unified and measurable insight into network security effectiveness. RedSeal streamlines and automates the security management to quantify overall security, assess critical risk to ultimately improve overall IT network security to reduce risk, workload and report on compliance.
RedSeal Systems, Inc. 1820 Gateway Drive, Suite 280 San Mateo, CA 94404 Tel: 1-(888) 845-8169
Recommend this to others:
HOME |
ADVERTISE WITH US |
TELL US ABOUT YOURSELF |
UPDATED PRIVACY POLICY |
Copyright © 2006 Silicon Valley Communications - All rights reserved.
