Kisco Hooks SafeNet Into IBM’s SIEM

May 6, 2014 Alex Woodie

Kisco Information Systems is shipping a new release of its IBM i exit point security solution that hooks into IBM‘s QRadar security information and event management (SIEM) offering. The integration will enable SafeNet/i customers to get a more complete picture of attempts to compromise perimeter defenses.

SafeNet/i is a network security tool that locks down potentially dangerous routes of access to the IBM i server, such as SQL, ODBC, and FTP connections. The software logs all exit point activity, and also uses IBM journaling to keep an irrefutable log of any configuration changes made to the security tool itself.

With version 10.11, Kisco introduced several new features, including integration with IBM’s QRadar offering, a SIEM that consolidates and correlates network security event information from multiple devices. With the new integration, IBM i security event information collected by SafeNet/i can now be made available to QRadar to provide a more accurate picture of potential cyber attacks. Kisco is not the first IBM i security software vendor to hook into QRadar, but this move gives Kisco customers more options to bolster their perimeter defenses.

The new release also brings new sequencing options that will be useful for object-level testing. Prior to this release, customers could only use the standard progression of testing provided by the software, Kisco says. With version 10.11 the company is providing “multiple sequence checking options that allow the customer to tailor object checking to their own unique needs.”

Another new feature is the capability to provide specific object authorization paths for native IBM i object checking. Previously, the product didn’t differentiate between native IBM i object authorization paths and IFS object authorization paths. Separating the two makes for easier administration and reporting, and also makes it faster.

Finally, SafeNet/i also brings new features designed to improve segregation of duties when using user profile swapping. With this release, SafeNet/i can now be set up to be server dependent, meaning a user profile can be swapped for one specific server, but not for others.

SafeNet/i version 10.11 is available now in Lite and standard versions. The standard version delivers more powerful network security at the object level; finer-grained control over SQL verbs, CL and FTP commands, and full support for the Web-Central browser interface. The Lite version costs $1,295, while the standard version starts at $2,495. For more information see www.kisco.com.

Sponsored By
LINOMA SOFTWARE

You can win the battle to meet data security compliance requirements!

When it comes to your current FTP processes:

        • Have you wondered if there's a more automated, cost-effective way to exchange
           data that keeps HIPAA, PCI DSS, GLBA and SOX compliance auditors happy?
        • Are you looking for a better way to protect sensitive files from a data breach?
        • Would you like to streamline your processes, and thus give your programmers
           more time for other projects?

GoAnywhere, Linoma Software's managed file transfer software suite, solves all of these challenges and more. With GoAnywhere, your organization can secure, automate, and encrypt the data transfers with your trading partners, customers, vendors, employees and internal systems. It supports multiple platforms and all popular protocols, including FTP/S, SFTP, HTTP/S, AS2, SCP, and more.

The GoAnywhere managed file transfer suite, with an optional NIST-certified FIPS 140-2 encryption module, is comprised of three products: GoAnywhere Director, GoAnywhere Services and GoAnywhere Gateway.

GoAnywhere Director automates and secures file transfers using a centralized approach with a single point of control. It can connect to almost any system (internal or external) using standard protocols. GoAnywhere Director can also encrypt and compress files using popular Open PGP encryption, GPG, ZIP, GZIP and TAR standards.

GoAnywhere Services is a secure FTP server (and optional web server) that allows trading partners and employees to connect to your system and exchange files in a secure environment. As an on-premise solution, it includes SFTP, FTPS, and FTP servers with extensive management controls and audit log reporting. A secure HTTPS server can also be enabled for performing ad-hoc file transfers through an intuitive browser-based interface or through its Secure Mail module that includes a plugin for Outlook 2010.

GoAnywhere Gateway is both a reverse proxy and forward proxy, providing an additional layer of network security when exchanging data with your trading partners. By placing GoAnywhere Gateway in your DMZ (public network segment), your sensitive data and servers will remain safely protected in your private network. Its enhanced reverse proxy service does not require inbound ports to be opened into your private network which is essential for compliance with PCI DSS and strict security policies. In addition, it can work with GoAnywhere Services for load balancing to help provide increased capacity by sharing the workload among servers.

GoAnywhere can be installed onto IBM System i, IBM System p (AIX), IBM System (Mainframe), Windows, Linux, UNIX, HP-UX, Mac OS and Solaris platforms.

Take a brief video tour of Linoma Software's GoAnywhere MFT solution,
watch our customer success stories,
or visit our website at www.GoAnywhere.com

U.S. Economy Creates A Decent Number Of Jobs In April As The World Turns: Investments In IBM i

Table of Contents

Recent Posts

Subscribe

Pages

Search