PoliVec, Inc., the trusted leader in security policy automation, today announced PoliVec Scanner 3.0, which includes a series of enhancements intended to provide customers with a more complete policy automation solution. PoliVec Scanner is a software application that allows companies to check their computer systems for configuration and other settings that might violate a company's written security policy. Among the enhancements in PoliVec Scanner 3.0, customers can for the first time use PoliVec Scanner to manage software security "patch" upgrades across enterprise systems.
PoliVec Scanner is part of the PoliVec product suite, which enables an automated, closed-loop process for translating "human policy," or written policy, into "machine policy," or policy that can be enforced automatically across an enterprise. This process, in part, prevents intrusions caused by misconfigurations and human errors that are often the result of simple end-user actions, such as installing a new software package that changes a password setting.
"The enhancements to PoliVec Scanner will provide a high level of confidence to our customers deploying security solutions on their networks," said Roberto Medrano, CEO of PoliVec. "A policy automation solution is only effective if users have the tools necessary to not only automate their security policies but also perform vital functions that ensure enterprise security. The enhancements to PoliVec Scanner allow users to automate additional processes that will, in turn, keep their systems more secure."
The new features in PoliVec Scanner 3.0 both assist the policy automation process and provide functionality to create a more full-featured security solution:
Security upgrade "patch" or "hot fix" management: PoliVec Scanner 3.0 will check installed applications for the latest updates from software manufacturers on enhancements that will eliminate security vulnerabilities. The product will then provide links for installing upgrades. PoliVec Scanner 3.0 accesses the current list of software patches-a list maintained by PoliVec-and checks installed applications against that list.
Visual process for setting file permissions: PoliVec Scanner 3.0 provides a graphical method of accessing and changing NTFS permissions. In addition, the interface provides other views of permission settings, including which users have access to specific files. The interface allows permissions to be changed remotely and rapidly, reducing to minutes the time needed to lock a user out of the system. In addition, the new feature allows IT administrators to regularly view permissions to scan for inadvertent changes.
New methods for expanding invalid password list: PoliVec Scanner checks system user passwords against a database of common words. With enhancements in PoliVec Scanner 3.0, IT personnel can add to the database by entering network passwords they believe could be easily cracked. In addition, after a network scan, administrators can add the list of network user names to the database.
Active directory services support: A new interface in PoliVec Scanner 3.0 allows system administrators to access the Active directory controller to change specific configurations that would affect users throughout the network. For example, PoliVec Scanner would identify regular security policy violations if the minimum password length allowed by the Active directory controller differed from the policy standard checked by PoliVec Scanner. Enhancements in PoliVec Scanner 3.0 eliminate this issue by allowing IT personnel to change the Active directory controller settings if they are in conflict.
New reporting: PoliVec Scanner 3.0 includes new reporting formats to meet additional customer requirements. In addition, scanned systems that are not in compliance are now noted on the main audit screen in addition to the compliance report.
Optimized scanning: PoliVec Scanner 3.0 performs threaded scanning to allow checks on multiple machines simultaneously.
Event log viewer: PoliVec Scanner 3.0 allows customers to view event logs to see how users have accessed and altered any file on the network.
"PoliVec Scanner is a powerful way for us to put our written security policy into practice in a consistent manner across our entire organization," said Robert Arnold, director, Computer and Information Services at Oklahoma State University. "The new features will give us additional power by automating several processes, in addition to automating policy enforcement, that will help keep our systems more secure."
The other elements of the PoliVec product suite are PoliVec Builder, which automates the creation of written security policy, and PoliVec Enforcer, which monitors systems in real-time for security policy violations. PoliVec Scanner can operate independently of the other products. However, it also can import policy standards created by PoliVec Builder to check network systems against those standards.
PoliVec's security policy solutions generate significant return on investment, as customers do not need as significant a commitment in security staffs to monitor security compliance manually and to ensure security policy is enforced in a consistent manner. In addition, IT staffs will benefit from reduced deployment time of security policy, while external consultants and auditors will benefit from a rapid method for proving policy compliance. The combination of these benefits is a significant cost savings: Using other alternatives to ensure policy compliance can cost as much as six times more than by using the PoliVec product set.
For more information, company contact: Candice Jackson Tel: 719.599.9605