December 4, 2012
SecurityCenter Continuous View™ Identifies Security and Compliance Risk, Loopholes Introduced by IPv6
Tenable Network Security, Inc., the leader in real-time vulnerability management, today released the first vulnerability management solution designed to identify emerging threats and vulnerabilities as an entirely new field of Internet addresses are employed.
IPv6 (Internet Protocol version 6) is the latest revision of the Internet Protocol (IP), the primary communications protocol upon which the entire Internet is built. It is intended to replace the older IPv4, which is running out of addresses that are needed to connect the exploding number of devices like smartphones and tablets to the Internet.
Security solutions not yet able to discover and assess known devices and systems assigned the new IPv6 address leave networks vulnerable to security risk and compliance violations, especially to malicious users who will be trying to exploit networks that contain unknown IPv6 addresses.
No longer a job for scheduled scanning alone, upgrades to Tenable’s SecurityCenter Continuous View™ (CV) solution combines scheduled scanning and passive vulnerability monitoring to identify vulnerabilities, threats, and compliance violations located at any of 1.2*10^24 IPv6 addresses, a /48 space recommended for a “typical” organization.
Already unique in its ability to manage risk from mobile devices, cloud-based services and virtual infrastructure, enhancements to SecurityCenter CV components, SecurityCenter™ version 4.6 and Passive Vulnerability Scanner™ (PVS) version 3.8, extend Tenable’s lead in vulnerability management to identify security and compliance risk from rapidly evolving computing environments.
“Our customers are already the first to continuously manage risk from mobile, cloud and virtual infrastructure. Now they can add IPv6 to the list of challenges they’ve uniquely prepared their organizations for,” said Ron Gula, CEO and co-founder of Tenable Network Security. “This new release of SecurityCenter continues to set the pace for IT risk management, helping companies rapidly adopt new technologies, and reduce gaps in risk awareness from months to minutes by transitioning from periodic scanning to continuous real-time monitoring.”
The following enhancements to SecurityCenter and PVS™ improve monitoring, analysis and collaboration:
- IPv6 – Enhancements to SecurityCenter and PVS automatically identify security and compliance risk in IPv6 assets as soon as and wherever they appear across hybrid IPv4/IPv6 address spaces, increasing situational awareness.
- Unified IPv6 Scanning – Enhancements to SecurityCenter, when used with Tenable Perimeter Service, provide a comprehensive internal and external assessment of an organization’s IPv6 risk posture.
- LDAP Access and Asset Calculator - Enhancements in SecurityCenter simplifies the creation of scans targeted at devices based on enterprise IT asset information. New Plugin Date Filters improve compliance trending and reporting.
- Scan on Alert, Report on Scan, and Report Sharing - New collaboration functions allow SecurityCenter to trigger scans, share reports, and initiate incident and remediation workflow with rich information on vulnerabilities, threats, and malware detection. With Tenable’s Log Correlation Engine™ deployed, reports and scans can be triggered based on anomalous behavior (e.g., never-before-seen events).
A complete list of enhancements can be found at Tenable SecurityCenter.