Lumension Security Sets Criteria for Next Generation Whitelisting

Lumension SVP of Americas Matt Mosher Explains How to Integrate Whitelisting and Vulnerability Management for Operational Efficiency

Traditional approaches to whitelisting can secure the network only at a single point in time, and as a result, require constant updates. In a video available now from Lumension Security, Senior Vice President of Americas Matt Mosher describes the evolution of whitelisting and details how to efficiently maintain a "known good" state within a dynamic threat environment.

"It is easier to contain a known universe than an unknown one," says Brent Rickels, senior vice president at First National Bank of Bosque County. "Lumension Sanctuary, by design, allows users to run administratively approved programs only and restricts any unknown and unauthorized executables from springing to life. It addresses all of our concerns when it comes to malware prevention and blocking unauthorized applications."

In the video, Mosher reveals the opportunities that exist for the whitelist to provide intelligence on decisions beyond simply identifying bad or unknown applications.

"To make application control operationally manageable, Lumension Security's approach extends beyond the executable level to enable whitelisting to add value at the application level to the IT decision making and network management process," says Mosher. "Operational whitelisting describes the emerging security model for identifying not only what executables are running within the network environment, but also providing a reference library that determines what applications those executables are associated with, the latest versions of the executables, and any vulnerabilities connected to the executables."

"The evolution of threats is requiring organizations to look at their current security strategy beyond only protecting against unknown applications and malware, to also address insider threats and targeted external threats. While a number of niche companies, such as Bit9, offer features that provide application level protection, we are seeing enterprises demand integrated endpoint security solution suites for simplified management and the highest level of protection that can grow with their organization," said C. Edward Brice, SVP of Worldwide Marketing for Lumension Security. "Our customers are choosing Lumension Security over niche vendors that only provide one level of protection, because we provide a multi-faceted approach to security that can protect against unknown applications, malware, application mis-configurations, data leakage, and security vulnerabilities. In total, our solutions are designed to mitigate risks and provide operational efficiency with lower TCO and tangible ROI."

Lumension Security's Endpoint Protection Suite is comprised of Sanctuary Application Whitelisting and Sanctuary Device Control, which protect against targeted threats and enable only authorized applications and devices to execute or connect to a network server, terminal services server, thin client, laptop or desktop. Sanctuary simplifies the discovery phase so that administrators can uncover all of the applications that are executing on the endpoints. Once known what applications are on the network, a policy can be established and enforced.

For a free 30 day trial of the industry leading Lumension Security Endpoint Protection Solution, please visit http://www.lumension.com/eval_request.jsp?rpLeadSourceId=7005.

About Lumension Security(TM), Inc.

Lumension Security(TM), formed by the combination of PatchLink® Corporation and SecureWave® S.A., is a recognized, global security management company, providing unified protection and control of enterprise endpoints for more than 5,100 customers and 14 million nodes worldwide. Leveraging its proven Positive Security Model, Lumension Security enables organizations to effectively manage risk at the endpoint by delivering best-of-breed, policy-based solutions that simplify the entire security management lifecycle. This includes automated asset discovery, vulnerability assessment, remediation and validation; security configuration management; application control and device control; extensive policy compliance reporting; and integration with leading network access control solutions. Headquartered in Scottsdale, Arizona, Lumension has offices worldwide. PatchLink, now Lumension, was founded in 1991 by Sean oshir. More information can be found at www.lumension.com.

Lumension Security, the Lumension logo, PatchLink® and Sanctuary® are trademarks or registered trademarks of Lumension Security. All other trademarks are the property of their respective owners.