Cloud

8/7/2018
09:15 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Qualys Adds Native Integration of Real-Time Network Analysis to Cloud Platform

Passive Network Sensor will be available in private beta later this month.

LAS VEGAS – Black Hat USA 2018, Booth #204 – August 6, 2018 – Qualys, Inc. (NASDAQ: QLYS), a pioneer and leading provider of cloud-based security and compliance solutions, today announced that it has significantly expanded the power of its Cloud Platform by introducing Passive Network Sensor (PNS), a new member of the Qualys sensor family that natively integrates network analysis functions into the Qualys Cloud Platform, delivering customers complete IT visibility at scale, while drastically reducing cost and complexity.

The Qualys Cloud Platform, with its active scanning, always-on agents, container and cloud sensors, provides global enterprises with unprecedented 2-second visibility of their hybrid IT infrastructure covering on-premises assets, multi-cloud environments, containers and traveling workforces. The highly scalable platform performs over 3 billion device assessments annually, analyzing a trillion change events with its Kafka clusters that process billions of messages daily, and indexing over 250 billion security data points in its Elasticsearch clusters.

Such an unprecedented near real-time processing of data coupled with millisecond search responses of the Qualys Cloud Platform indexing clusters give customers and Managed Security Providers (MSSP) instant, continuous visibility of all their IT global assets with a continuous view of their security and compliance posture in a single-pane-of-glass view, via dynamic and customizable dashboards.

By getting real-time access to network analysis data, multiple additional capabilities such as global IT asset discovery and inventory with two-way CMDB synchronization, detection of compromised assets and Network Access Control (NAC) can now be delivered natively from the Qualys Cloud Platform with high accuracy and automation.

“While Digital transformation is now essential for businesses to remain competitive, building security in is the only viable approach and the days of bolting security on are over,” said Philippe Courtot, chairman and CEO, Qualys, Inc. “Natively integrating Network Analysis with our Cloud Platform brings it to its next level as it provides customers unprecedented visibility and immediacy across their entire hybrid IT environments. With this new capability, we are now well on our way to providing CIOs with a continuous and updated view of their global IT assets with two-way CMDB synchronization. Such capability is the cornerstone of security, as without visibility, there is no security.”

Furthermore, with this native integration, the Qualys Cloud Platform is uniquely suited to address the number of unmanaged connected devices, like Internet of Things (IoT) and Operational Technology (OT) devices and the exploding new security exposures they now bring. Having the continuous visibility of these devices is critical for IT and security teams to monitor, track, assess and effectively respond to threats.

Qualys Passive Network Sensor (PNS)

This first release of PNS adds a powerful set of asset discovery and inventory capabilities providing tracking and a continuous view into all IT assets connected to the network, non-intrusively and in real-time. It monitors asset activity and illuminates any anomaly, enabling security teams to more effectively contain threats and remediate vulnerabilities. This ability to act with immediacy and at scale delivers these teams higher confidence in the metrics guiding their global security and compliance programs.

PNS will enable organizations to:

● Eliminate blind spots: The Qualys Cloud Platform aggregates asset telemetry from Passive Network Sensors, network scanners and always-on cloud agents to provide a comprehensive, detailed and multidimensional inventory of all IT assets across hybrid infrastructures, including unmanaged devices such as BYOD and rogue IT. PNS also helps discover and profile assets that for different reasons can’t be actively scanned nor monitored with cloud agents, such as industrial equipment, IoT and medical devices. Expected beta available in Q3 2018.

● Identify suspicious traffic: PNS provides deep packet inspection to continuously analyze and detect suspicious traffic. The Qualys Cloud Platform then correlates these network anomalies to other indications of compromise. Expected beta available in Q1 2019.

● Secure and control network access: Native integration with network access control functionality, resulting from Qualys’ acquisition of Nevis Networks, enables customers to respond to threats automatically by controlling access to critical resources. Network access control, informed by PNS real-time detection, autonomously protects the network by quarantining non-compliant devices based on established policies and security posture. Expected beta available in Q1 2019.

Qualys Sensor Family

Passive Network Sensor is part of the Qualys family of sensors and third-party cloud connectors that provide customers comprehensive and multidimensional visibility across hybrid IT environments. They provide a powerful combination of active and passive detection to collect complete asset telemetry. These sensors are remotely deployable, centrally managed and self-updating, always-on, and give customers continuous 2-second visibility of all IT assets.

Availability

Passive Network Sensor will be available in private beta later this month. This first phase delivers capabilities focused on asset discovery and profiling. General availability is planned for early 2019.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Higher Education: 15 Books to Help Cybersecurity Pros Be Better
Curtis Franklin Jr., Senior Editor at Dark Reading,  12/12/2018
'PowerSnitch' Hacks Androids via Power Banks
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/8/2018
Worst Password Blunders of 2018 Hit Organizations East and West
Curtis Franklin Jr., Senior Editor at Dark Reading,  12/12/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: So now we are monitoring the monitor?
Current Issue
10 Best Practices That Could Reshape Your IT Security Department
This Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-14623
PUBLISHED: 2018-12-14
A SQL injection flaw was found in katello's errata-related API. An authenticated remote attacker can craft input data to force a malformed SQL query to the backend database, which will leak internal IDs. This is issue is related to an incomplete fix for CVE-2016-3072. Version 3.10 and older is vulne...
CVE-2018-18093
PUBLISHED: 2018-12-14
Improper file permissions in the installer for Intel VTune Amplifier 2018 Update 3 and before may allow unprivileged user to potentially gain privileged access via local access.
CVE-2018-18096
PUBLISHED: 2018-12-14
Improper memory handling in Intel QuickAssist Technology for Linux (all versions) may allow an authenticated user to potentially enable a denial of service via local access.
CVE-2018-18097
PUBLISHED: 2018-12-14
Improper directory permissions in Intel Solid State Drive Toolbox before 3.5.7 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2018-3704
PUBLISHED: 2018-12-14
Improper directory permissions in the installer for the Intel Parallel Studio before 2019 Gold may allow authenticated users to potentially enable an escalation of privilege via local access.