Tripwire IP360
Vulnerability & Risk Management

Features:

TRIPWIRE IP360 v7.2

ENTERPRISE-CLASS VULNERABILITY AND RISK MANAGEMENT
Understanding security risk on the global enterprise network is essential to comprehensive IT risk management. However, the high rate of change on enterprise networks, the constantly changing threat environment, and increased focus on internal and regulatory compliance have made this task increasingly difficult. The solution is Tripwire® IP360™, the leading vulnerability and security risk management system that enables organizations to cost-effectively measure and manage their network security risk.

Tripwire® IP360 provides complete visibility into the enterprise network including all networked devices and their associated operating systems, applications and vulnerabilities. It’s an ideal foundational control for effective security risk management. Tripwire’s industry-leading vulnerability and exposure research team (VERT) keeps Tripwire IP360 up-to-date with accurate, non-intrusive discovery signatures that are both current and relevant to large enterprises.

Tripwire IP360 then uses advanced analytics and a unique quantitative scoring algorithm based on several factors— including the vulnerability score and business-relevant asset value—to prioritize the vulnerabilities for remediation. The result is actionable data that enables IT security teams to focus on the tasks that will quickly and effectively reduce overall network risk with the fewest possible resources.

The Tripwire IP360 security risk management solution delivers:

• Comprehensive, agentless discovery and profiling of all network assets;
• Highly scalable architecture with low network and system impact;
• Advanced prioritization metrics combine asset value and vulnerability score; and
• Actionable reporting designed for all enterprise audiences.

APPLICATION INVENTORY
Tripwire IP360 discovers all networked hosts, applications, services, vulnerabilities and configurations, which provides a comprehensive view of your network and sets the foundation for effective risk management and compliance processes. Only Tripwire IP360 provides host and network profiling through an agentless, non-intrusive and low bandwidth solution.

INTELLIGENT PRIORITIZATION
Tripwire IP360 discovers a wealth of data about the hosts that reside on your network, but rather than provide that data in an endless list, it prioritizes remediation tasks, which enables users to focus on the items that will most effectively reduce risk on critical systems.

Reports are available for all audiences— from technically-focused users to executives—providing a customized view into the state of the network.

CENTRALIZED REPORTING AND ADMINISTRATION
Tripwire IP360 provides an easy-touse web interface for administration, configuration, reporting and workflow. Highly granular access controls and user roles enable the solution to conform to existing security processes. Customized reports that provide thorough, objective and comprehensive views of risk on the network are available for all audiences— from technically-minded security teams to executives and audit teams.

DISTRIBUTED, APPLIANCE-BASED ARCHITECTURE
Tripwire IP360 utilizes a hardened appliance architecture designed for security, ease of installation and centralized management that is scalable to the largest global enterprises. Utilizing a lockeddown, non-Windows operating system, strong encryption for communications between devices and system and vulnerability signature updates provided consistently by Tripwire, IP360 is a secure, easy-to-maintain solution.

INTEGRATION/OPEN ARCHITECTURE
Tripwire IP360 is built on open standards that enable the integration of vulnerability and risk management into existing business processes and IT systems such as help desk, asset management, SIEM, intrusion detection/ prevention and other security solutions. The comprehensive endpoint intelligence gathered by Tripwire IP360 can be leveraged to enhance existing information management solutions and drive automation across the security ecosystem.

TRIPWIRE IP360 HIGHLIGHTS

• Comprehensive discovery and profiling of all network assets
• Customer-designated asset values to place security risk in the context of the business
• Objective risk metrics and automated reporting to measure network security risk and track progress over time

Integrated web application scanning:

WebApp360: Enterprise Class Web Application Scanning
Online systems such as banking, healthcare, e-commerce, and customer support portals increasingly collect and provide access to extremely sensitive data and internal systems that provide a juicy target for opportunistic hackers. Since mid-2006, web application vulnerabilities such as Cross-Site Scripting (XSS) and SQL Injection attacks have made up an increasing percentage of newly discovered vulnerabilities and actual reported intrusions.

The commonly held solution to securing web applications has been to perform security testing during development and QA. But what if the application was developed by a third party, and not the enterprise? What if an emergency code change occurred and the security analysis was insufficient? And what about the underlying operating system, adjacent applications, and databases connected to the web applications – none of which are tested by traditional web application scanners? Security assessments that occur during production are the only assessments that give enterprises real time, continuous knowledge of the security posture of their web applications. WebApp360 is designed for exactly that -- web application security testing for production environments.

WebApp360 delivers:

• Complete web application infrastructure assessment , including web applications, underlying operating systems, and adjacent applications in production environments
• Comprehensive security risk analysis, combining web application coverage with network, operating system, and infrastructure exposure intelligence
• Leverages Tripwire's appliance-based architecture, eliminating the high cost of deployment and maintenance associated with other solutions

WebApp360 extends Tripwire’s market-leading security risk management platform, IP360, to include assessment of enterprise web applications, offering the industry’s most comprehensive view of IT security risk. WebApp360 enables enterprises to automatically and continuously detect critical web application vulnerabilities within the context of overall IT risk, enabling security teams to focus resources on the most important risks. Available as an integrated add-on module to IP360, WebApp360 benefits from IP360’s market-leading scalability, manageability, appliance-based architecture and vulnerability coverage. Together, WebApp360 and IP360 offer customers an unprecedented, prioritized assessment of IT security risk, from web applications to the underlying IT infrastructure supporting them.

Documentation:

Download the Tripwire IP360 Datasheet (PDF).