Major New Release Delivers Broader, Continuous Visibility of User Access and Behavior Without Requiring Logs or Agents
CUPERTINO, Calif., May 30, 2007 - Securify®, Inc. today announced general availability of the next version of its identity-aware monitoring solution that discovers and verifies what each user is doing on the network in real-time. This major new release adds strong integration with Microsoft Active Directory in order to correlate activity with actual user names. This release breaks ground with its identity-based Discovery capability and dashboard which supplants the need for tedious forensic querying of log data for network discovery tasks.
Securify's automated Discovery capability helps discover "who, what and where" during the planning phase of infrastructure change (such as network segmentation or data center moves) and identity and access management projects, without requiring any prior knowledge or rules definition. The Discovery Dashboard provides a single view of passively monitored traffic and correlates user groups and their associated activity on critical business systems. Securify's appliances dynamically draw existing directory information including groups and memberships.
Unlike traditional solutions used for discovery, Securify does not require agents, logs or application recoding on the client or server side. Securify is also focused on real-time, continuous discovery and verification, unlike other behavioral solutions that are used primarily for forensics and typically lack the identity-based controls and identity-based discovery that Securify offers.
"Leading enterprises continue to grant broader access to employees, contractors and partners and the importance of real-time user monitoring is growing exponentially," said Buck French, Securify President and CEO. "IT teams we have talked to spend an estimated 33% of their time trying to manually gain visibility and verify 'who is doing what and where' on the network. Securify delivers an automated, real-time way to achieve this in order to support business initiatives while also meeting audit and compliance requirements."
Existing Securify solutions for real-time monitoring and verification are used by some of the largest and most sensitive federal and commercial networks to monitor more than 2.5 million users world-wide. Securify is also one of the only monitoring solutions available to achieve Common Criteria EAL3, after a rigorous evaluation of the company's product and development processes by an independent laboratory.
Unique capabilities of this release include:
- Deep integration with existing directories: Securify now provides enterprise-level scalability in acquiring user identity data from existing identity stores, including Microsoft Active Directory, and importing group information from directories. Ultimately, this level of integration enables Securify to map all networked activity back to individual users on a continuous, broad and scalable basis.
- Discovery Mode: Securify's automated Discovery capability helps discover "who, what and where" during the planning phase of infrastructure change and identity and access management projects, without requiring any prior knowledge or rules definition. The Discovery Dashboard provides a single view of passively monitored traffic and correlates users, groups and their associated activity on critical business systems. Additional information on what users are doing is also provided, including protocol decode, ports, bandwidth, URLs and commands and more.
- Controls Mode: Securify's Controls capability for verification builds on the Discovery View. Securify automatically verifies traffic against expected user access and behavior controls as well as pre-built security best practices. Securify Control capabilities instantly pinpoint and provide real-time alerts on the following representative examples:
- Access by non-authenticating users such as de-provisioned terminated users
- Verifying access of users that should be on the network, e.g. re-assigned employees or outsourcers but who inappropriately, perhaps inadvertently, access systems they shouldn't
- Detects bypass of a secure access gateway e.g. a user goes directly to a database, bypassing the secure web front end
- Detects valid user login but from unexpected location or route, e.g. compromised credentials, which would typically not be detected by an access management system
- Network access exceptions such as printers that are not behaving as expected
- Insecure or malicious activities including tunneling of services such as FTP inside of HTTP to transit firewalls
Pricing and Availability
This new version is now available directly from Securify or from our authorized partners (please see http://www.securify.com/company/partners.html). Pricing for 5.3 is dependent upon configuration with starter packages starting at around $50,000.
About Securify, Inc.
Securify's identity-aware solutions monitor and verify network access and user behavior for critical business systems and networks. Our appliances provide continuous visibility to fill critical gaps in planning and audit discovery, identity and access management and insider risk mitigation.
Securify solutions uniquely address both application access verification and network access with the ease and context of a network-based solution. We offer robust integration with identity stores for in-depth discovery and behavior verification.
Today, Securify continuously monitors and verifies 'who, what, where, and when' across millions of users on the most sensitive networks in the world, including Visa, Guardian Life, the largest Federal agencies and all branches of the Department of Defense. Our patented, award-winning solutions are the only monitoring and verification appliances to achieve Common Criteria EAL3 certification.
Named as a Deloitte Fast 50/500 company, an Inc. 500 company, a Fortune Magazine "Cool Company," and a Red Herring Magazine Top Private Security Company, venture-backed Securify is headquartered in Cupertino, CA with offices in Herndon, VA and New York City.
###
© 2007 Securify and SecurVantage™ are trademarks of Securify, Inc. All other trademarks, service marks and company names are the property of their respective owners.
