Skybox View is the software package integrating information of network devices (routers, the routing switches, balancers of loading), protection devices (firewalls, IPS), scanners of security, management systems for patches and the systems of network management in a uniform context.
Consolidation reaches a possibility of regular risks assessment for critical business assets, arrangement of priorities of vulnerabilities, substantial increase of efficiency of Information Security Services, decrease in TCO.
The built-in control facilities of compliance of configurations allow to execute in the automatic mode regular internal audit of firewalls, the seteobrazuyushchy equipment and network infrastructure in general. On the basis of the check templates which are available "from a box" on compliance of PCI DSS v.2 and NIST it is possible to create any templates of check of compliance to any, even to the most exotic politicians.
Skybox View is the software solution which does not have an impact on network infrastructure, not generating corrective actions on its elements capable to work independently.
The software of Skybox Security company can be delivered in the form of the different packets using a single platform, which are controlled from the single console, but performing different functions. Packets can be set as separately, and in any combinations. Both at the same time, and it is consecutive – a packet behind a packet. In this case when installing each new packet the additional controls necessary for use of the corresponding functionality will be added to the management consoles.
As a part of a packet:
Skybox Firewall Assurance is the solution which helps to check the changes happening in the firewall, to reveal problems of access and potential risks before they have an impact on network functioning. The possibility of tracking of modifications allows to conduct a relevant change history of rules of the firewall, increasing management efficiency and the security level of infrastructure. Also the possibility of drawing up reports is provided that simplifies carrying out security audit of network.
The Skybox Firewall Assurance system has performance sufficient for solving of tasks of the large organizations. If to add extensive base of the supported equipment to it, then as a result of such combination you receive operational notifications on security concerns and discrepancies with politicians and standards. Literally several minutes a system reveals incorrect configurations of the equipment, discrepancy with politicians and rules of access, and also offers the recommendations about reconfiguration and optimization of operation of firewalls.
Skybox Network Assurance is the solution which allows to estimate large networks on compliance of access and existence of security risks. With its help it is possible to construct the card of network, to carry out the analysis of a configuration of devices taking into account the current infrastructure and to check the status of compliance of access by check of configurations built-in the politician (on the basis of the PCI DSS and NIST standards) or creations own corporate the politician. The module also issues warnings of threats, helps to define traffic routing errors, to find and remove access absence reasons.
Skybox Network Assurance provides an evident picture of network topology which shows compliances and discrepancies with security policies. Besides, this system is used for the operational analysis of configurations of network equipment and connections between different nodes of network. All these tasks are carried out in read minutes and do not affect operability of network at all.
Skybox Network Assurance functions:
- Identification of incorrect settings of the equipment, analysis of routes of access and opportunity
print preview of changes on model of network.
- Saving of time spent for the analysis of routes of access and elimination of problems
makes up to 85%.
- Identification of potentially unsafe routes of access and development of alternatives for more
safe start of new services.
Skybox Risk control - creates independent virtual view of network and carries out the complete analysis of potential risks for all system and for the information resources which are in it, helping security experts to make decisions and to solve the arising problems. The virtual test with simulation of cyber attacks without intervention in work of real network allows to pass this decision. On the basis of data retrieveds it is possible to define potential risks, the most critical hosts and to develop protective counter-measures.
Functionality of Skybox Risk Control:
- Detection of vulnerabilities without scanning and impact on working nodes of network.
- Automatic data acquisition about vulnerabilities, resources, parameters of network devices and management systems allows to receive the relevant picture reflecting at any time
security of network.
- Continuous control of level of threats with a possibility of planning of counter-measures and decrease in damage from the attacks.
- Simulation of the attacks within a context allows to find possible routes of the attacks and to define the most dangerous risks.
- Assessment of alternative methods of problem solving and development of recommendations about each of
methods.
- Control died on elimination of vulnerabilities with maintaining detailed reports on each stage.
Skybox Change Manager is the add-on module available only to users of Skybox Firewall Assurance. With its help the administrator of the firewall can exercise operating control of changes. The module significantly saves resources and time.
Skybox Change Manager provides compliance of firewalls to requirements of regulations and standards and automates changes in network taking into account security. At the expense of it specialists of the organization can constantly control planned changes, carry out risks assessment and on a centralized basis process the change requests passing through firewalls.
In the solution of these tasks Skybox always shows the high speed and efficiency adequate for the large organizations. Skybox Change Manager functions:
- Carrying out changes according to requirements of PCI DSS, SOX, FISMA, HIPAA, etc. and also maintaining protocols on all changes.
- Cost reduction, connected with change management.
- Exception of errors and detection of vulnerabilities in the course of making changes in settings of network equipment.
- Optimization of workflow and the organization of more productive work in the organization due to automation of a full stroke of administrative tasks — from receiving a request before elimination of a problem.
Skybox Threat Manager is a product which facilitates search of vulnerabilities which can entail damage directly to activity of the company. Threat Manager provides the latest data on threats and by accomplishment of requests instantly warns if such threats really take place in a specific context. On the basis of the received results a system itself will help to select the most critical tasks.
Skybox Threat Manager functions:
- Identification of the threats, most dangerous to the organization, in read minutes.
- Formation of evident reports according to which specialists of the company can understand what sections of network, are most subject to threats.
- Vision of the broad picture of network allows to take operational measures and by that in advance to prevent large costs.
Skybox allows to model infrastructure of network, to imitate the attacks without impact on network equipment, to create forecasts with a possibility of selection of the most priority tasks.
Skybox View 7.0
On February 24, 2014 the SkyBox Security company announced an exit of the updated version 7.0 product Skybox View.