Companies are struggling to keep up with a barrage of network security nightmares, including viruses, worms and hacker attacks. This makes it more difficult to protect core assets, such as sensitive personnel information, customers' credit card numbers and intellectual property. There are frequent reports of supposedly secure networks failing, resulting in lost revenue and damaged reputations.
To combat these increasing threats, network administrators must choose from a host of products, services and practices. Two common solutions are penetration testing and vulnerability scanning. These solutions are often lumped together, but there are significant differences between them. Vulnerability scans identify potential problems based on an evaluation of a network's defenses and known vulnerabilities. Penetration testing reveals more information about a network by actively attacking a system, probing all defenses and revealing real, not theoretical, vulnerabilities.
Both methods have an important role in testing network security. At Core Security Technologies, we recognize the importance of vulnerability scanning, use it in our consulting practice and partner with several companies that provide this technology. But while vulnerability scanning is a good first step, it shouldn't be considered the final step, because it doesn't answer the fundamental question, "Is my network secure?"
Vulnerability scanning does not address the implications of an intrusion, leaving network administrators to determine if a vulnerability is real or a false positive, if it can be exploited and what risk it poses to a network. Without determining the true threat to a network, administrators must devote resources to patching every vulnerability, often wasting significant time and effort patching systems that may not require it.
A penetration test is an authorized attempt to breach the security defenses of a system using the techniques of hackers, worms and viruses. With a penetration test, you exploit vulnerabilities in your network and try to replicate the kinds of access a hacker could achieve and identify which resources are exposed. The results go far beyond the data yielded by a vulnerability assessment. An administrator is able not only to quickly identify and prioritize real vulnerabilities but also to gain insight into the effectiveness of other security measures in place.
Some proponents of vulnerability scans say running a penetration test puts a network service at risk for downtime and using exploits could compromise the network's integrity. However, with a commercial-grade automated product, penetration testing can be conducted in a safe manner and poses less risk than most vulnerability scanners.
Vulnerability scanning is an excellent first step for a penetration test, but it's important to go further. Without running a penetration test, network administrators cannot be certain that their networks can withstand an attack. A penetration test can identify and eliminate real paths of attack.
Paget is CEO of Core Security Technologies. He can be reached at paul.paget@coresecurity.com.
- +
Ticked Off at Tick the Box Mentality 04/02/2008 13:01:15
Does your executive search firm know the difference between an MIS manager and a CIO, and if it does, can it explain that difference to its corporate clients?Does your executive search firm know its MIS managers from its elbow? Does it even know the difference between an MIS manager and a CIO, and if it does, can it explain that difference to its corporate clients? - +
Strategies for Dealing With IT Complexity 24/12/2007 10:30:47
Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Everything you need to know about email and web security (but were afraid to ask)
How to improve employee productivity in small and medium businesses
Controlling storage costs with Oracle database 11g
Discover the advantages of an open architecture multi-vendor network solution
Gaining Competitive Advantage Through Enterprise Planning
Best Practice in Building an Integrated Information Management Strategy
IT Service Management Needs and Adoption Trends: An Analysis of a Global Survey of IT Executives
CRM your salespeople will love
Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
ComOps Deploys Corporate Performance Reporting Solution For Healthcare Test Manufacturer 2008-12-02 10:09:00+11
Mornington Peninsula Shire implements Objective to manage knowledge and deliver service excellence 2008-12-02 09:56:00+11
Virtual magic: HR specialist throws out 40 servers, adds 8TB SAN and saves $100,000 for disaster recovery 2008-12-01 15:28:00+11
Sybiz adds up for SMEs in downturn 2008-12-01 14:27:00+11
EXCOM scores back-to-back award trifecta 2008-12-01 10:46:00+11
Business Intelligence and Enterprise Performance Management: Trends for Emerging Businesses
Hyperion surveyed 163 companies to understand BI and EPM requirements, evaluation processes, and extent of adoption. Top areas of current and future investment for emerging businesses include budgeting and planning as well as management reporting solutions. Read on to discover more.
Buying Guides
Latest Products
Buying Guides
