Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Cybertrust Pitches Partner Security Tools



 By: Matt Hines
2006-09-26
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
The software maker's newest product line promises to help customers bolster security through increased testing of the applications and networks they share with business partners.

Cybertrust launched a new program on Sept. 26 that aims to help companies improve their network and applications security by further testing the electronic systems they share with business partners.

Labeled Cybertrusts Partner Security Program, the array of software and services provided via the offering are being touted by the vendor as a comprehensive manner of policing security policies and potential security weaknesses present among companies doing business together online or via shared networks.

While many companies have employed pricey consultants to help determine risk on shared infrastructure in the past, Cybertrust claims it has launched the first package of applications and services built specifically to address partner security issues. As more organizations adopt the so-called extended enterprise model and create new avenues for sharing information, such as online transactional systems and Web services applications, the demand for such tools is only going to grow, Cybertrust officials predict.

According to a recent user study conducted by Cybertrust, based in Herndon, Va., roughly 75 percent of the customers it polled indicated a belief that business partners are increasing their information security risk. Roughly 30 percent of respondents reported that their organizations had suffered a security incident in the previous 12 months that involved a business partners operations.

Resource Library:

Among the primary benefits proposed by the program is the ability for customers to create a standardized way to test partners security that can be used with all of a companys various business partners. Most companies use a patchwork system of checks to determine where security risks lie between companies, which often leads to overlooked details, said Jennifer Mack, director of product development at Cybertrust. In particular, the program will help companies keep tabs on all of their regulatory compliance efforts, she said.

"This is a compliance management service that helps customers better understand their partners and how they affect the security of shared IT systems; it shows them how to make risk-based decisions more intelligently," Mack said. "Doing this right involves more than just asking questions. Theres also a lot of follow-up and security remediation involved."

Included in the types of information processed by the service are reports from real-time security audits, Mack said, which will allow users of the system to address any security compliance issues among partners more quickly. Having the ability to close potential loopholes as they appear, rather than via periodical testing, could be a substantial leap forward for many companies, Cybertrust contends.

Cisco looks to help companies marry network and physical security efforts. Click here to read more.

One company already working with the applications and services being rolled into the Partner Security Program is Fiserv, whose electronic data systems process transactions and other sensitive information for over 17,000 banks, insurance companies and financial services companies. Bob Wilcox, chief information security officer at Fiserv, which is based in Brookfield, Wis., said Cybertrusts tools allowed his firm to create security policies to be enforced across the companys business units and external customers.

Fiserv has been using the technologies and services packaged in the Partner Security Program for roughly one year.

"The biggest security challenge we face is making the awareness of all the different threats out there understood across all our operations. We need to make sure all the business units are on the same page in terms of patching or updating systems, which has been tough to do in years past," Wilcox said. "Now we have an internal standard established that all these autonomous, distributed operations and IT staffs must adhere to, and we can test against that, which really increases our ability to identify and eliminate problems."

Since many of the firms business units and customers are governed by data handling regulations such as the Sarbanes-Oxley Act, the package also improved Fiservs ability to ensure and document compliance with those types of guidelines, the CISO said.

"Everyone is aware of the regulations, but weve effectively taken any interpretation out of our related policies and built that into our own standards," Wilcox said. "We were able to change some of the wording to ensure people knew what they were required to do. I think thats a great model for creating more consistent security enforcement looking forward."

Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.



  Reader Comments: Cybertrust Pitches Partner Security Tools
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Matt Hines
 


x}r㸲s;Ӯ:vI%uʲ|,UTDh(ئH=rc~bq2pBK^-W-`HD"w?H9wtô c }:I}"I{#(3`Vϩ9AzNɑ1,)~-sjscj5w5Gl$J{'AT{j x̨9uΜO9קԗoO~e0.ڶAI6*6O0o n8tp;ڀRrLEsrN}~N5y9vtx//0wFD_*QI- y|/LZ@3::}XOB$9"ydZjkMюR='Y̮g fV҄ 'UUjH,ǝ%?ZU&U}X&ZhCA+t 9zq}ں~\z}rڻ"IYxG0p Z_Zr<-z?-rK=jZ-$53exy$Y.rk":t !O}nr"GrI/o*{$cM|`Amdα(|ǺrN~}M'Zf-ͨn "di|]^ P3Z$923=Pru&Sk~$M5Ŧ]`)etFS$%/^P%P샖_΢[2jFTwIQa#aẍ_,ʹgc^IRe6\}yx>zYY5'*daeEUi3[fhEށi9xneOv|ǫ #KEHYf7-wI09ꨦUʵt ~~,VRS_WL@F̶-a[ e uNu߽ẏ>cZG>O=sjy}vi|Q}Ѧޡ83}<3 @ L^a p|g͇v9 a {>0sN}j`I l"v| c9м`y&n@ܚ@[s衟#]ӽk:F?L@2/?뇾fxsO>7`sDo뷺i#SB]jÐx?k1 %@&H@t"BђF 4  gscX"C"'@@7;.VKŤ\*1=Ri !sg RTD;7քbZ z)0 eVRixn1!UG,D`v9r,L.Y ϴ6JԭybQ9ҴZ hқОḺ KuU/L MXb HK%\EwT-::ޟzFn;A떒t0h3Vh( ./| `@f-ݤ6[97mX0DWjP6~@-Q͜;luVw]ˤFA8ryd:*<\ygO詉m>(BZzI2훿i /&]LqαrB&k:H(X3b-yspm ֌M'WRֹ{|)_NT$3Q2-ӧΜ9Eۋ)I :sX-8E4W-eSZqlzQn^ӛAt ]֥PK@y# dl+/,;7kc:J+_iiHH*6@\X3-# %>D!1~ha2(_Kp3w{!{jN@_ܰ탡S*+l3#4E:,Wfn  (!r?X-j(6 /SXSq;hzE>uI;\c|P9g ?Q,C,8c(L>Cװ HZU{)u&\$8e\8V,'UrqXs|ea?m {ESKI6Omj+@oLrCm0 '"}z؄z6b^-!/B~*%1bkLĽf2,r&e9wوAF4]}ZjtM{ jpj Zqq~~~0,Ly. K?/|uVN0\?@&R)Ö1sgdimF{ǙZT&/Ał4q ֚p̈́Ouo<8o'<CDE~"}ilmA>\PXt> r+b$[8:T:$漇_܀RI:,C$>/s@,|tqZEYO`s!AvЎ@OeƚR*%1Pc0u NjZ`Gwf^=/YQwmf18D"pLΨ-/|o@ pe?ߛ#yl)ctxl-qR#Y w7䪢-} K3]V< OQ: lz#x f`QtEa&Ji.E `wAMz*O1)"cqi@yl׃ 3uMa:k}Y\WJZPKkiyEW‡v1"wር54 Mt8&곍ZJ qv Ty9kZ%f+aEoM4=RWo鸙 ĨhyUM+%Fےf038҃ epv=[,93?{諵R 2߼=p=JF:Ɲc}|pֿLWEk`owɛ(*Kq3`9s"mLt #jZ,lZǐl` ~'A΁MO0="c^.k}Y_xx֏'*Cz)ϣDʂYEoQ U-q'.҄^ߍKs9bv}b;_I|SeȣV)ki+TX񋰷 ?3pa-XPjh3HU}dE C/ ސOJDC~{$} W>U ud*+ZR^? +8rk4rOk,Zv~؀ kpo9 2j>uR@%enrIMq {a/;#nK-%.@ހذ:z6]ܒ(tם7/6 2`I3M9`{IO,J7j՚*ӪV$,< 7C7d,-LGI4~:&.2O%ss= ⿂On{ܝ9ԍ!FI]rQӊ 5`JR}'0隆cĵ) r^-GYdQ.|aR)*`W%ʠK= j ;! ]8`C M8q^a?sp-492=QhZavOT+ʬf4A48'oZU{" }MXޟUv٩Gd1:~ݕDw{]wZCR>ib 6χxyg/{Πӻ8$ "h#r?Dyjɽcq >"u.ZUˇW-mo4.[-tJj2i&A)h]1~̮Vs^цۧ0Z@Ɂ^W6w.ėtOz+~w.R1ARdGyyqȒu8*Dyyp|ly0amG 'Lk4 D8 mÀ@ c]WX0pz)vӱB3ZMUc | ڠ<mFpv~[_aݪ,$20. I+U:?>   cJ=!ohuё{kD&-bT0_RJI"Q6#=)#WYY}һjr3Klo}AN&Nd~vZ-[N7S+d$ ?]Я8݃͟*VRmZOw~@Hy >9/g`IB8qen1~xA\}j_^iԎ(%4 \(?m[=`RrPR)&bz&I;ɰǺ%uyjdJ1%SBt 02L P6,O&y=%lQ1 i(KBih%lbTHRoOټ6<1ޥ]晿BNmK$cΖfė4 y) -|8SB[(GH T䵤 Zzl*$;qbwy`0!9˫|1{~T*۾m3XxtqH4S `/#9ʼSs,`Z GW ./Cv6cNȣ&k{?ȔK3>^g]s>ͥ0i8;=?P.zSgOɵ2sXs\ Zpl+ҿDž³bpi?#iWyypbAg$H~ `@GL|9yÿ§ ' [s]'伉q+ɛnۨ+=Ylu[dؗ{vOKn4]9鈧Usd{I2$BUUk ۻɾZEVeΜtї^t;>rix7YU x3D?.ye9}doxzoѯo=ȥq=*~O O7]f+wB%mJK{9nhp;D%ýqQ#y∶K`!j>b5o14N-*z>?l-3ǜhL ;x1tY aAXy h79g; 91<O$N&[euw+[c³D`GHA5}缩gA jm9itpUE0p1'8\}5ߊ:"YcCƓdǟ۲cr sf2i TWeTW/__B !]94y˭0L L ܻ'Vxe86[b[03| ttnڰJ[~vk,rxVn0\? /VI?. I1Sߟ,,7`_8o<}bxfG`FIH6N% ;A]"o+'灏R Ж"ʝ㮪*E3i:3 }rCҴ ~tzy`I:s/ EtGG!*d5_-F]-kO ܇?݌ș, }Fטr1?ٶ tdPv,,@aɛi7] G{  <wLxx/S꣗d[rN HBa< bHcrkD9ҷq֛ČrK"=]N50ׁ|IgXg5=D2Pq <~9n) @র:& ŚP(#x;أwtZNc}V`Aa7W) weRJX, Hɒ+v!oWH\JCyc"Q[Eos!J$E|ZգBT*xs~46*O&"Hl".!MGd?<'4e̐GoQΧ7Xf|9x;>ˤ5caٗuzλ4bX(M>4I\TRbµb7_z  ?׏ zW 3bsRO Ğ9\jޣnKE%7i;7)b"obrE,>&P<6ʆؚ4m#Ȥw|0~ ]xF}FcCRa=J!hʠ-PD㿇i&ԔL&а]`]T~㍦(eIIZm]i/NEG " v9Kӗ*嚢"$a Ct1Ӗ$ FLOFI$lwcˊ;QTMRUIݚ /OQ:z1ھw1"b>珥x]#U(ݭ' ߬ol΢Ɣj_} rԍnI KQ!Au`4OcE/5$">rQ!e&H" HDCA|Ij<-i\NyxM%:iHIC2;vxΖ[y1)%- 0N@тY x. G O8|f|ap{&/jK~~~bu{p#Snd@HJgT7X%~cmT ;Nجa:_aᐷic몯},ppQ,mB:dm8@e/SCx!op!I`&0:T ;OH/c hPFXY[;xX8OKP[CǠ  S6a3=O 4x& χ߱ a#L}6+Rë7`! _*Y_ _c$1RǞX ~_kQI݌N:qOz4[ U/'cQ@AD&;@py$:`|jH0Emn7v^׹ɢ,@zq(8|-q'|!gMa%NWFB%I0oOb!+B8\coK _ȹ4V@ҜaU/;9r.KYC7 ԈϖWmʖq4븺e)7}M\AW{/#w;r_|k vs _oocMP!kgf5 No!f6${{m_ro6`.lj[VHEQz򝧻.L m~[~G@ҕloJY# 7gNbo[*18;7~@(Uo\kE_A-%iΞCft/ Z XxCn8#nĽr<5T` CquA?qT&ݥeA',h6ܦ`iO3/0q_nB]'vT{5Fs:^‹OAG&q副w" +'@Mwt$xgwWē;&~O2k-(G>?FZ:Yۏo3Eߗ DWf= !kjb`!@4#|.4JAwy4,$~D?S9E=1[Ɉ*7V8E -96i>L]ILa!-(!-D.N~aIzMf&sLj$O:MIuMMm&[ 0ka*"l\M!'q/丱5ˋCAE& :.CAy3ukeaӰ1fSYht!ncb9k\ZJӂ,w)]do=73֘0>HtL'fKn@Vmj|)5,\ <\πJ*nA4`]"rR$lgN((bXL~-=]H<>f?|}.[œ>V-V]M5:[Gtm,)I`ޝKj_$Y+vl"6\%pKp| 1k0"(S[]ă04]w7s(pW'N#j`n `& \oN+r HPgA~\b@Ԕ0(bR$!Ѕ8i,)@"!9͉k#co u;3ǾBp),f,TՊR &uUCu]j)@]zC YV^"ߖӄ\I \A] / PIZL WuK`frtfcѼ]*lkM‰/WQwqwsѾ\ rSM·_s}mP0mw %EfvʂT{S.ͅdUh,Y3U94dG_14e-AgpD0/& F^M21Sl֖S|~ƫ#x]b12;Ztr:X)` zQg 3ba>o Hk&5+<r<(2_2ʯjsI(Qރ^F9R`sy pjg@Si~CgG(ku6wZFQd3r'Ƈ~Fg(gmfOw~~}v3 ͠Oы_|OgP~Q(GFyʻ0{s?0׃2ː?=/ r qAeW@?WӇ3߇3?d_P>f'(U1OOr 3ڿΠ = >k^픊8kgK " SV9,.N3kP! g  z-22Bό ~/>{'sg+I\WKM0TntEճK\7cn%:vņ^_ | SG0ӚܴO]l/yd֦WV5lNA6K戧D>Y;yУx߇ oRgU>j{$qAz#O7m8ه^V՟p3n>x|fOvHy>lob^/OUq29wYu8 % HM׳pNzR?аsW3@z<}K=sq`pl@R'9w1EM++J9wwrH{""Cأ*R%}a`R++ QPफ़h[iRo膖 yVi8an%[C#DK(xxmE_ƌmRfP-{|yN؛ڎy@7 J,5{SňD@GoMgM_`jc 6%bn1vk,B']ӛL͑,O~f+gMcUݢQoM <:,9NW&]" >oٔ^^CN*˗ X627  ;| s|íd<@T6?rށwr$\C+c˃]"sdR:=aG=<0 ;VWS.ӡg.Ngo pt&-c ]tncxƍW51Hspo1x& x+XtSL I m oxhd9Ck+cɘP;Ar,#<[^ҵ<ok39Ϸ[<-v7 s#gk_2ҳe>v ǯ-ǬyvJ^Qt 7tlmb @J\ >7#Tt ` GYu`Kr 8ǩ3fhp#1tB\ (X`to@ Q1?c]'nNQMF®u4-oveљ&ߙn3QaW_<'tcbS,ۙB ya1 g'{y{~kC'> kL~sx:Y}#s!?²Lj3mg^^kte(n aaXY[PE"]\b:(=zk|XKc!&̱`=br8Lte4Qs|J9Km)轋ȝgz^4}jsX# *#f" χ"@Ă+"e}q$Y":Ÿ0+n:' wX{ysB(O{>! *`gG/>!2D!6xvpMIwşoxqNjV(ZNN`)XfչxS%ȕ/2f#oUAF]Z%Nbi~ۊX#iQfrYOjJZR۽wߺ"f/F ۲M*i29Z{) q-֫"mxTˉY+z[;6Nw6̈́M /b;f1ԲOt-