TMCnet News
Idappcom Joins Endace Fusion Technology Partner Program And Releases Open Threat Detection PlatformSAN JOSE, Calif., Jan. 16, 2018 /PRNewswire/ -- Endace, a world leader in high-speed network recording and network analytics hosting, and Idappcom, a specialist provider of network security assessment tools and services, announced today that Idappcom has signed the Endace FusionTM technology partner agreement. Under the agreement, Idappcom has developed a SNORTTM-based, scalable threat management solution that is hosted on, and integrated with, the EndaceProbeTM Network Analytics Platform.
The integrated solution allows organizations to deploy the Idappcom-managed Intrusion Detection System (IDS) anywhere an EndaceProbe is deployed while managing rules and policies using Idappcom's Distributed Rules Manager (DRM). DRM can import rules from Idappcom's extensive library or any other third-party rule providers, making it a truly multi-source, multi-user, multi-sensor security platform. When a security threat is detected by a managed SNORT instance, the alert can be viewed centrally in the DRM log. A tightly integrated workflow lets security analysts click the alert to view the related packet history in EndaceVisionTM and EndacePacketsTM, the EndaceProbe's built-in investigation tools, giving them access to definitive evidence of what's taken place. "We are very pleased to have Idappcom join our Fusion Program. Fusion Partners are a select group of best-of-breed vendors that have integrated their solutions with the EndaceProbe platform. Its long history in threat analysis, signature creation and rules production makes Idappcom a very insightful security partner. Idappcom's Distributed Rules Management software provides simpl, scalable management of SNORT instances hosted on estates of hundreds of EndaceProbes," says Cary Wright, Endace VP Product Management. Idappcom's DRM manages the latest version of SNORT IDS specially packaged to run in the EndaceProbe's high performance Application DockTM hosting environment. Any EndaceProbe in the network can host Idappcom-managed SNORT instances to detect security threats in real time while simultaneously recording 100% of network traffic to disk. The EndaceProbe's Playback feature allows new, unique historical analytics capability. For example, analysts can scan for zero day attacks when a new rule is released by playing back recorded network history to a hosted instance of an IDS, such as SNORT, with the new rule enabled. They can quickly determine if any zero day attacks were executed against their organization prior to the new rule being available. Simon Wessledine, Idappcom CSO, says, "The need to detect, record and rapidly triage security threats in all the far reaches of the network has become critical given the increasing frequency of breaches and new strict reporting requirements. This joint solution solves that need with a very open and scalable architecture. We are very excited to make our security solution available to all EndaceProbe customers." More information on the partnership and related products can be found at https://www.endace.com/idappcom.html About Endace Endace's multifunctional Network Analytics Platform can host 3rd-party network analytics applications while simultaneously recording a 100% accurate Network History, enabling fast, accurate detection, investigation and analysis of network security and performance issues. The platform enables agile deployment of analytics functions and dramatically reduces OPEX and CAPEX costs by consolidating datacenter hardware. Hosted applications can analyze live or historical traffic. Global customers include banks, healthcare, telcos, broadcasters, retailers, web giants, governments and military. About Idappcom Established since 2004, Idappcom provide a range of network security assessment, penetration and remediation testing tools together with access to a continually researched library of exploit pcaps and matched rules. Idappcom's products and technical services are used by most of the world's major security vendors as an essential part of their research and development programmes as well as large enterprises, government and military organizations to routinely test the effectiveness of their security controls.
SOURCE Endace 
|
View original content with multimedia: