Solera Networks, a provider of network forensics solutions, today released Solera OS 5.0, a major update to its network forensics platform.
Solera OS 5.0 helps IT security teams see everything happening on their networks in real-time, helping to recognize threats, and understand exactly what’s needed to defend against future attacks.
Solera OS 5.0 is what powers the company’s flagship “DS Appliance”, and makes network forensics usable in deployments ranging from range from small or branch office locations to dedicated 10Gb appliances with expandable storage for larger and faster networks. The solution goes beyond dated packet capture and network sniffing tools to revealing actionable evidence in real-time.
Malicious network activity and attempts to steal data, compromise users, or hijack network resources can be identified through the interface, enabling a swift incident response, remediation, and fortification. Solera OS integrates with several network security technologies to pivot directly from an alert or log and obtain full-payload detail of the event before, during and after the alert. It offers an open web services REST API that enables customers leverage technologies including ArcSight, FireEye, Splunk, Sourcefire, Palo Alto Networks, SonicWALL or any other application.
Solera OS 5.0 touts more than two hundred new features, including:
1. A completely redesigned DeepSee® UI that makes security event investigations a snap
2. Application classification that recognizes and indexes more than 530 applications—leading the competition by several hundred applications
3. Geolocation and Google Earth® integration to map all sessions and traffic patterns to intuitively pinpoint suspicious activity
4. DeepSee Active Reporting to instantly deliver query results and eliminate wasted investigation time waiting for reports
5. DeepSee Media Panel built into Solera OS for quick viewing of all images crossing the network to effectively enforce acceptable use policy
“We are in a new threat environment, which became clear sixteen to eighteen months ago with the early Aurora breaches,” said Steve Shillingford, President and CEO of Solera Networks. “Since then, attackers have honed in on targets using ultra-sophisticated methods, while most defenders have languished, continuing to follow a ‘set-it-and-forget-it’ approach to security. This release of Solera OS 5.0 has been met with a flood of customer anticipation as organizations arrive at the realization that their networks are being breached every day, if not every hour. Often coming to us with a sense of urgency and helplessness, organizations quickly abandon their fear of the unknown once they see how network forensics empowers them to meet the aggressors head-on.”
Today’s threats are persistent, low-lying, multi-vector onslaughts that succeed one way or another to breach and compromise the best-defended networks. Effectively protecting organizations from the damaging effects of these concerted attacks requires Networks Forensics (NF) and constant network surveillance to see and know everything happening on the network.
“Between 2010’s Operation Aurora, Stuxnet and the ongoing escalation of WikiLeaks and Anonymous events and 2011’s Breach-a-Week of even Security Vendors, it should be clear that ‘best practices’ aren’t – and ‘good enough security’ isn’t,” said Joshua Corman, Research Director for Enterprise Security at The 451 Group. “Adaptive Persistent Adversaries require adaptive persistent defenses. Enterprises need to invest in greater visibility and agility. We need to see more sooner and support a prompt and agile response.”
“Our high-profile customers realize that they are going to be exploited at some point,” said Dave Nett, Vice President of secure systems integrator, SNR Systems. “Understanding the overall scope and exposure of an incident is imperative. Without a product that provides the full visibility of your enterprise traffic, you simply can’t know.”
Solera Networks is offering a 30-day trial of its Virtual Appliance which can be downloaded here.
