Called the HP Security Incident Management Program, the offering is a suite of threat detection and assessment technologies combined with management processes that help organizations head off viruses, worms or denial-of-service attacks before they get out of hand.
HP is offering these integrated services because "the threats are becoming more complex, more malignant, more persistent and … more pervasive," said Tony Redmond, chief technology officer with HP Services, based in Dublin, Ireland.
"We are very conscious that we have to provide protection across all the elements of our portfolio" because all market segments are equally vulnerable to attack, Redmond said.
The most advanced element of the lineup is software for enterprise and SMB (small and medium-sized businesses) customers that will automatically detect and suppress virus and worm attacks to give system administrators time to isolate and remove the problem code, he said.
Such technology is essential these days, Redmond said, because virus infections are designed to multiply far faster than even a few years ago, so fast that its impossible for humans to respond to them manually.
Hackers are also extremely quick to respond to public notices of system and security vulnerabilities than ever before. Some respond with exploits just weeks after the release of a public vulnerability notice.
HPs package is based on technology the company developed over the past four years to protect its own systems and is running internally, according to Douglas Brown, HPs security solutions architect. The company plans to release the incident management package early in 2005 for enterprise and SMB customers. HP has yet to set the pricing for this suite.
The package allows the system to detect when it has come under attack from a virus or worm that has newly emerged "in the wild," Brown said. HP provides the expertise to analyze and reverse-engineer the virus or other threat to determine the most effective way to block it, he said.
The suite brings together in an integrated package a wide range of security products, processes, features and functions that are available separately from HP or third-party suppliers.
Its components can work with HPs OpenView network management software, but its not a requirement, Redmond said. For example, customers can choose the latest component of HPs federated identity management technology, called OpenView Select Federation, which provides centralized management of user authentication and data resource access.