TruSecure Corp. unveiled a new software product on Monday combining software vulnerability detection and remediation using information from TruSecure's IntelliShield threat and vulnerability intelligence service.
TruSecure IntelliShield Early Warning System (EWS) is a threat management system that is intended to simplify network security management by matching up software vulnerability alerts from TruSecure's IntelliSheild service with affected systems deployed on a network, according to the company.
Alerts from IntelliShield are fed to an EWS device at the customer site throughout the day. That device then scans the network for systems affected by the alerts, said Mike Rothman, vice president of marketing at TruSecure.
Administrators decide which computer assets they wish to monitor using EWS, then set policies and a priority level for each asset. EWS supports major operating systems including Windows, Linux and Unix as well as major software applications such as Oracle Corp. and Microsoft Corp. SQL databases, he said.
The new product simplifies the job of evaluating security vulnerability information by linking alerts to affected systems, then weighing the relative importance of the systems affected, he said. That's an improvement over other alert services, which don't take into account the specific makeup of a customer's network, he said.
"It makes sense that a vulnerability affecting the Oracle database with your customer information on it should be treated differently than one for the receptionist's desktop," Rothman said.
The EWS product is geared to larger enterprises and grew out of work TruSecure was doing for customers to link alerts to internal asset tracking and remediation systems. The product will compete against similar services offered by Symantec Corp., which sells similar services under its DeepSight brand, and network scanning company Internet Security Systems Inc., he said.
TruSecure IntelliShield Early Warning System software is available immediately. Customers will pay for a one-time, perpetual license for the EWS software in addition to an annual subscription based on the number of assets protected. The subscription entitles customers to receive vulnerability alerts and software updates. Prices start at around US$25,000 and range upwards to hundreds of thousands of dollars, Rothman said.