Internal Managed Security Service (MSS) Solution
The threat of insiders to computer security and the subsequent financial losses cannot
be underestimated. A study by the FBI and the Computer Security Institute found that
insiders carried out 71% of security breaches. Disgruntled employees may steal
information and sell it to competitors, try to bilk their employers, delete important files,
destruct proprietary information, insert malicious code, take servers offline or corrupt
vital services.
A report by PricewaterhouseCoopers concluded that breaches of security are now
costing businesses a staggering 18 billion pounds every year. Indeed, the news gets
even worse with two out of every five of those surveyed indicating that they suffered
some form of an internal breach during the calendar year 2001, a rise of almost one
hundred percent on the previous year's figures.
Beyond Security offers innovative Internal Managed Security Services (MSS) solutions,
which check and expose vulnerabilities within the internal network of an organization.
Further to the constant vulnerability assessments of a LAN, the Internal MSS solutions
incorporate the important aspect of managing client’s security policies on a constant
basis using a powerful differential reporting system.
This Internal MSS solution platform is designed so it could be especially configured per
every client’s unique security needs and desires. The solution is very similar to the
unique external Automated Security audit service, with the variation that the automated
scan audits are performed from inside the network or Intranet using an on-site dedicated
appliance / server.
The Internal MSS is performed by an Automated Security audit appliance / server which are configured, updated and maintained by Beyond Security. The security audit
results are sent directly to the network administrator, and the appliance / server does not
have to be connected to the Internet at all.
The Internal MSS solutions scan all visible nodes on the network including workstations,
servers, routers, and other network appliances. It also has an integrated Active and
passive Intrusion Detection System (IDS) – recognized as Snort. Modified from its
standard code, this IDS feature leverages on the constantly updated vulnerability
assessment database - makes detecting and alerting of intrusion attempts from with in
the network more efficient and complete.
The appliance / server is updated daily or weekly according to the client’s needs using a
secure and automated “Pull” method from a central update server. Updates will be
digitally signed and will be checked by the server automatically before installation.
Update can be performed using a CD on a weekly / monthly basis if no external
connection to the Internet is available.
Beyond Security LTD
www.AutomatedScanning.com
Fax : +972-9-8848120
www.SecuriTeam.com
Tel : +972-9-8844814
www.beyondsecurity.com
Policy management and supervision well as vulnerability audits are conducted
periodically (daily, weekly, monthly and On-Demand). By assigning individual scans,
security policies can be enforced and supervised automatically - reduces security
breaches dramatically. Security audit results are consolidated in a comprehensive
differential report which includes a summary of all vulnerabilities found on the network,
and highlights differences from previous scans (new holes discovered, security holes
fixed). The Internal MSS solution allows clients to customize the provided reports.
It is possible to install several Internal MSS appliances / servers in organizations which
have numerous unconnected networks.
The cost of security breaches to organizations is immense and growing. With some
breaches costing over a million dollars, it is becoming ever harder for organizations to
ignore electronic threats. It is time for businesses to make the security of their staff,
systems and data a high priority item at the board meeting and in every day life.
Beyond Security offers two types of Internal MSS solutions:
1. “Scan in a Box” appliance - For the small to medium businesses (up to 256
IP’s)
2. Automated Security audit Server - For medium, large businesses &
enterprises
Internal “Scan in a Box”
This unique Internal MSS solution targets the small to medium business market. This
specially designed compact appliance is only 8X8X8cm in size. Beyond Security
configures the “Scan in a Box” appliance according to the client’s specifications – IP
range, security audit schedule, vulnerability updating schedule, web interface GUI
etc.
”Scan in a Box” is a “Plug ‘n Play” appliance which provides the MIS / Network
Manager with a simple, efficient & ready-to-use Internal MSS solution.
”Scan in a Box” appliance provides two levels of MSS solutions – a small-business
solution for up to 100 IP’s, and a medium-business solution for up to 256 IP’s.
Beyond Security LTD
www.AutomatedScanning.com
Fax : +972-9-8848120
www.SecuriTeam.com
Tel : +972-9-8844814
www.beyondsecurity.com
Internal “Scan in a Box” offers several features:
•
•
•
•
•
•
Automatic scans of a pre-set IP range on a daily or weekly basis
Automatic daily update for new vulnerabilities
Active and passive IDS
RJ-45 connection
Hardware security audit speed of 10 Mb/s
Flexible Web interface GUI allowing users to:
- Change / add e-mail address destination of security audit reports
- Initiate On-Demand scans
- Vary the frequency of the scans (up to a daily scan)
- Initiate Denial of Service tests
Hardware and software will be provided by Beyond Security.
Internal Automated Scanning Server
This unique Internal MSS solution targets the medium, large business & enterprises
market. Beyond Security provides clients with a pre-determined setup license
according to their specifications. This license can be easily modified to
accommodate the dynamic nature of a network.
The Internal Automated Scanning Server offers several features:
•
•
•
•
•
•
•
•
Automatic scans of a pre-set IP range on a daily or weekly basis
Automatic daily update for new vulnerabilities
Differential reports which show only what was changed from the last report
Standard VGA + PS2 + RJ45 connections
Active and passive IDS
High speed network security audit – 100 Mb/s
Ability to conduct specific tests on specific IP’s
Flexible Web interface GUI allowing users to:
- Change / add e-mail address destination of security audit reports
- Initiate On-Demand scans
- Vary the frequency of the scans (up to a daily scan)
- Initiate Denial of Service tests
- Select individual scans
Hardware, software and remote maintenance will be provided by Beyond Security.
Beyond Security LTD
www.AutomatedScanning.com
Fax : +972-9-8848120
www.SecuriTeam.com
Tel : +972-9-8844814
www.beyondsecurity.com
Our vulnerability test suits include:
HTTP checks
FTP vulnerabilities
Advanced CGI’s
Router tests
Kerberos
Remote file access
SSL
Network based Trojans
SMTP mail systems
SNMP vulnerabilities
System backdoors
TCP/IP protocol attacks
Network services
Port security audit
Database vulnerabilities (MSSQL, MySQL etc)
SQL Injection vulnerabilities
Network Devices (Printers, Data storage etc)
DNS server vulnerabilities
Buffer overflows attacks
Denial of Service attacks (DoS)
Distributed Denial of Service attacks (DDoS)
Viruses detection
Firewall vulnerabilities
Registry attacks and vulnerabilities
Generalized Web Application
RPC services vulnerabilities
NFS vulnerabilities
Telecom device detection
And over 900 more…
Data Damage and Confidentiality:
Our security audits are designed to do no damage to the clients’ systems or network,
unless the client specifically requests a Denial-of-Service attack against the
computer/network. By default Beyond Security does not employ such techniques. In
addition, Beyond Security is dedicated to preserving the confidentiality of the results;
the results are sent from the internal server directly to the network administrator. It is
also possible to encrypt the results via PGP encryption to ensure strict confidentiality.
Beyond Security LTD
www.AutomatedScanning.com
Fax : +972-9-8848120
www.SecuriTeam.com
Tel : +972-9-8844814
www.beyondsecurity.com