Efros Config Inspector

The main articles are:

• Security Information and Event Management (SIEM)
• IT Service Management (ITSM)

The domestic software complex Efros Config Inspector was developed by Gazinformservice and is designed to monitor the configurations and state of the working environment of network equipment, information protection tools, virtualization platforms and operating systems.

2023

Integration with NP MCDS "Access Gateway"

Gazinformservice and iT Bastion implemented technological integration of their products - SKDPU NT Access Gateway and Efros Config Inspector (Efros CI). This was announced on May 15, 2023 by Gazinformservice.

This integration simplifies the process of finding the fact of a change in the configuration of the end equipment or service, and also provides a "transparent" transition between related events in two systems for detailed analysis and investigation. The essence of the integration comes down to fixing information about the user who connected to critical equipment and changed its configuration, and promptly investigating the incident through related events.

Connection to the equipment is carried out through the NP MCDS Access Gateway. At the same time, Efros CI records not only information about the configuration change, but also that this or that work was carried out through the SCADA of the NP Access Gateway. Accordingly, if the user has entered the SCMCS of the NT, connected to the equipment or server, made changes to its settings, then the platform, on the one hand, understands that changes have occurred, fixes them, can show the previous and current state. On the other hand, it marks that these changes were made through the SCADA of the NP Access Gateway and provides a link to go to this session so that you can see how and why the changes occurred, which user.

The technological integration of the NP DCS with Efros CI is important for us, because it is a working "bundle" with this type of solutions, which will increase the level of understanding not only of the consequences, but also of the reasons and circumstances of the configuration change. The ability to receive information from the SCDPU NT about which user made changes at the security facilities controlled by Efros Config Inspector will reduce the speed and accuracy of incident investigation, "said Dmitry Mikheev, technical director of iT Bastion.

In recent years, we have consistently increased the number of domestic solutions supported by Efros products. I believe that such a strategy is beneficial to all professional participants in the Russian cybersecurity market - each of us has a unique expertise that allows our customers to choose the best solutions, and not become attached to one vendor. Thus, the user forms an optimal portfolio of information protection tools both in terms of quality and price, which undoubtedly increases the stability and profitability of business processes, "said Sergey Nikitin, head of the Gazinformservice product management group.

Integration with Sirius-IS PC

Specialists from Gazinformservice and NPA Vira Realtime have completed technical compatibility tests. The tests confirmed the correct functioning of the Efros Config Inspector configuration management and security analysis software complex (developed by Gazinformservice) with the Sirius-IS software complex designed for the development of integrated automated process control systems (IAPCS), operational dispatch control systems and support systems for dispatching decisions (developed by NPA Vira Realtime). Gazinformservice announced this on February 13, 2023. Read more here.

2022: Integration with the Prana system

Software and hardware complex of predictive analytics and remote monitoring The PRA system received an additional degree of protection of the IT infrastructure and the state of the working environment of network equipment. ROTEK JSC and Gazinformservice LLC entered into an agreement on the integration of the Efros Config Inspector software product into the PRANA System modules. ROTEK announced this on February 21, 2022. Read more here.

2020: Compatibility "Red OS 7.2 Moore"

Efros Config Inspector PC of Gazinformservice is compatible with the operating system RED OS. Red Soft announced this on December 4, 2020.

Based on the test results, a compatibility certificate was signed confirming the correctness of the Efros Config Inspector software complex running the RED OS 7.2 MOORE operating system.

{{quote 'In light of the import substitution policy, it is extremely important to ensure the compatibility of domestic application software with Russian operating systems, says Sergey Nikitin, product manager at Efros Config Inspector. Developers offering cross-platform solutions (and Efros CI works under both Linux and Windows), look advantageous against the background of colleagues who restrict the user in choosing an operating system, DBMS, etc. In addition, servers and workstations running RED OS can be connected to Efros Config Inspector as security objects in order to implement integrity control of system and other important files, configuration management and a number of other measures described in the orders of the FSTEC of Russia, }}

{{quote "Cooperation with domestic software developers makes it possible not only to develop its product line, but also to adapt solutions to customer requirements. RED OS and Efros Config Inspector are able to create a secure environment on servers and workstations, which is extremely important in light of the growing security challenges, "added Rustamov Rustam, Deputy General Director of RED SOFT. }}

2017

The updated version emphasized support for monitoring the integrity of virtualization tools, the ability to create user checks for compliance with information security requirements, as well as the ability to integrate with third-party systems.

Mechanisms for checking IT infrastructure elements for compliance with information security policies have been devised. Users can now create their own rule sets according to enterprise standards. Using Efros Config Inspector allows you to perform such checks for vCenter and Hyper-V virtualization systems, as well as for new, previously unsupported models of active network equipment, including domestic production.

One of the important priorities in development is the implementation of the possibility of joint work of the complex with various SIEM systems and specialized means of protection. APCS Integration of Efros Config Inspector with the complex of operational monitoring and control of Data PK APCS security will reduce the risks of man-made accidents and disasters, causing economic damage due to errors and employee fraud. This decision is especially relevant in order to comply with the requirements of Federal Law No. 187. About Critical Information Infrastructure Security""

In addition, a number of important tasks were successfully solved in the second half of the year: mutual verification of the Efros Config Inspector server and client appeared in order to prevent component compromise, support for Cisco ACS devices was added, support for authentication in S-Terra devices by keys was added.

2016: Efros Config Inspector 3.0

On October 13, 2016, Gazinformservice announced the release of the third version of Efros Config Inspector.

Efros Config Inspector helps:

• Monitor and synchronize the actions of various operating personnel and contractors.
• Quickly diagnose emerging failures.
• Detect malicious attacks in a timely manner.
• Focus on improving compliance with security requirements and recommendations for all devices.

Efros Config Inspector - short video about the product, (2016)

The fundamental difference between version 3.0 is the modular architecture. This version has redesigned the kernel of the solution, it has become more compact and faster. Unclaimed device monitoring modules can be disabled to improve performance, necessary - add without reinstalling and rebooting the system. The built-in development language allows you to develop monitoring modules for new devices in the shortest possible time.

According to the developer company, the Efros Config Inspector interface has become simpler and more convenient, all the necessary functions and reports are available, the most important information is displayed in the main monitoring window.

This release has changed the way reports are generated and displayed. Administrators can now view configurations in a structured way. Reports can be presented in sections:

• by users,
• by current or boot configurations,
• by interface status, etc.

The version supports more than 100 types of devices:

• active network equipment;
• firewalls and crypto gateways;
• virtualization platforms;
• server operating systems of the and family Unix. Windows

2015: Efros Config Inspector

The Efros Config Inspector software package is a tool for centralized comprehensive control of the configuration of network equipment and virtualization platforms. Efros Config Inspector is suitable for companies of various sizes, including those with geographically distributed infrastructure or using remote workplaces.

The software package consists of two parts - server and client. The Efros Config Inspector server part connects to network devices, downloads configuration files and controlled lists, checks their invariability. Scans run on a schedule or on demand. Also, the server can receive Syslog and SNMP messages and allows you to configure the start of checks when receiving certain Syslog messages. Thus, changes in configurations can be detected as soon as they are introduced. The program is integrated with Lync, and the administrator can receive important alerts instantly.

Compatibility with server and network equipment and software from different manufacturers is another advantage of Efros Config Inspector. Gazinformservice has partnerships with APC, EMC, Check Point, Cisco, Citrix, HP, IBM, Microsoft, Oracle, Symantec, VMware. The products of these vendors are also presented in OCS - thus, the distributor partners can develop comprehensive projects in which Efros Config Inspector provides configuration control, and use the experience already gained in integrating this solution with other software and equipment.