Start-up aims to shed light on network and firewall holes
A Lucent spinoff called Lumeta has begun offering managed services aimed at assessing network and firewall vulnerabilities.
While the market for security services is getting crowded, this start-up has a couple of things going for it. First, it is led by a technology development team that includes senior scientists Bill Cheswick and Avishai Wool, who are veterans in firewall and security research from their years at AT&T Bell Laboratories. And second, Lumeta has developed Unix-based technologies for network discovery and firewall analysis that the company says can audit networks more quickly and subtly than other services can.
The Network Discovery service can map out an internal network to see whether connected routers are authorized or whether there may be what Wool calls "rogue services" on the corporate network.
"We have one client that found adult Web services," he says. "And another found, to its surprise, that it was connected to a university in Asia."
Lumeta declined to name customers, except one -- Microsoft.
The second of Lumeta's services, called Firewall Analyzer, looks at configurations on Check Point Firewall-1 systems and Cisco routers. In the fall, the service should be able to test Cisco PIX firewalls as well.
The service runs through vulnerabil-ity-assessment checks by trying out hundreds of millions of different routines, including checks of source and IP destinations, source port numbers and more.
It simulates "every possible packet that a firewall would ever see," Wool says.
Lumeta's checks permit the discovery of misconfigured firewalls within seconds by means of proprietary algorithms, he says. The company's approach does not involve network-penetration attempts, which is common among security auditing services.
"We uncover vulnerabilities no other tool has the time or ability to look for," Wool says. "One client had a rule to allow traffic into an internal server for netnews, but misconfigured the rule so that any hacker from the outside could attack the machine. The port number was correct, but they were doing source-port filtering in a way that unfortunately supported all kinds of attacks."
Lumeta competes against dozens of companies providing vulnerability-assessment services, such as Internet Security Systems and Securify. But it's impossible to tell how price-competitive Lumeta is because the company won't disclose prices.
Lumeta began in October and has 30 employees. The company has $5 million in funding from Lucent, Draper Fisher Jurvetson Gotham and others.
Network World
Symantec Backup Exec 12 and Backup Exec System Recovery 8 deliver industry leading Windows data protection and system recovery. Download this whitepaper to find out the top reasons to upgrade and how to get continuous data protection and complete system recovery.
Data and system loss — from a hard drive failure, malicious attack, natural disaster, or simple human error — can happen anytime. Don’t leave your business vulnerable. Make sure you have a secure recovery strategy in place. Symantec's latest backup and system recovery technology can efficiently restore critical applications, individual emails and documents and even restore your entire system in minutes in the event of a loss.
Businesses face a growing challenge to ensure that the IT environment is properly protected. Backup Exec 12 integrates with other applications in the Symantec family of products, to complement your current data protection strategy, keep your data securely backed up and make it recoverable when you need it most.
Crimeware: Understanding New Attacks and Defenses
By Markus Jakobsson, Zulfikar Ramzan
Published Apr 6, 2008 by Addison-Wesley Professional. Part of the Symantec Press series.
Enter now! | Official rules | Sample chapter
Securing VoIP Networks: Threats, Vulnerabilities, and Countermeasures
By Peter Thermos, Ari Takanen
Published Aug 1, 2007 by Addison-Wesley Professional.
Enter now! | Official rules | Sample chapter
