HP yesterday introduced a software console for monitoring hardware and applications on corporate networks for possible security threats.
EnterpriseView, unveiled at the RSA Conference in San Francisco, sits on top of HP's security information and event management software, called ArcSight. The SIEM product is key, because it is the data hub underneath the console.
Also feeding event information to ArcSight are TippingPoint, HP's intrusion prevention system, and Fortify, the company's analytical software for spotting security vulnerabilities. Having all its security software communicating to deliver data in one console that customers can use to spot threats is HP's overall product strategy.
Customers have demanded a single console like EnterpriseView to avoid having to use separate staff to monitor each product separately. "That's a huge focus of why we're centralising all of this," Stuart McIrvine, director of product management for HP Enterprise Security Products, said.
Product integration into a single console is not expected to stop at security. HP and other vendors are gradually moving operational chores, such as software patching and updating and hardware configuration, into the same management console as security. The integration makes sense, in that an unexpected change in a software configuration, for example, could indicate a security threat, as well as an operational problem.
EnterpriseView is not meant to work only with HP products. The company plans to support competitors' software as well, according to McIrvine. This is important since companies would balk at tossing a SIEM system, for example, just to run HP's console.
EnterpriseView starts at $US250,000.
HP also launched Application Security Monitor as part of its Fortify Software Security Center, a suite of products for testing applications for vulnerabilities. AppSM provides centralised searching, reporting and analysis for Java and .Net applications across multiple environments, including mobile. AppSM starts at $5,000 per application server.
HP is also extending its Fortify products to include vulnerability testing for applications under development for Google Android and Apple iOS tablets and smartphones. It is selling a server-side component to monitor events driven by a mobile device and feed the information to ArcSight. If a potential threat is detected, it can be blocked by TippingPoint.
Finally, HP announced the Cloud Connections Partner Program for service providers willing to feed event data from the cloud to ArcSight. The first companies to join include file-sharing site Box and Okta, which sells identity and access management for the cloud.
This article originally appeared at crn.com
Issue: 315 | May 2013
Access CRN's extensive online resources including; email bulletins, community discussions and unique online news.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can log on to the CRN website or start posting comments on articles.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain '@crn.com.au' to your white-listed senders.