Technology

Best in Class Technology

Accurate Scan Results: IndusGuard technology uses built-in expert system technology to probe systems and produce definitive proof of the vulnerabilities discovered or malware found. This reduces false positive reporting to less than 1%, providing faster and more accurate reporting for the websites.

Risk Analysis: IndusGuard technology delivers an accurate and thorough analysis about how vulnerabilities in one system can affect another, giving you up-to-date insight into how vulnerabilities impact the entire enterprise. The solution performs scanning, threat correlation and vulnerability detection.

Malware Monitoring: IndusGuard Malware Scanning (IMS) engine is a powerful mechanism that combines individual capabilities of three basic detection systems comprising Signature Detection, Anomaly Detection and Blacklisting. It not only provides total security to your own website but ensures full protection for the visitors of your site as well. Signature matching mechanism compares over 2,900,000 malware signature patterns and 11,000 different types of malicious scripts that are updated every hour. Anomaly Detection mechanism uses a tightly integrated sandbox to capture incidences of those anomalies that remain undetected by signature matching scripts and malwares. Blacklisting mechanism enables detection of blacklisted or suspicious URL’s or phished websites that may redirect your visitors. With a database of over 121,000 suspicious websites each of these URLs is updated and verified every hour using automated scripts.

Compliance & Policy Checking: IndusGuard Vulnerability scanning engine produces a policy compliance report that enables you to determine which systems in your enterprise network are violating governmental regulations (SOX, IT Act 2000), industry-recommended security policies (PCI), and corporate standards and best practices.

Auto-update: IndusGuard Vulnerability scanning engine regularly updates its extensive vulnerability database automatically for the latest information on new vulnerabilities, preventing you from inadvertently leaving your network exposed.

Authenticated Scans: The solution supports credentialed and non-credentialed scans for vulnerability assessment, web application audit and malware monitoring. This ensures all the pages of the web site are covered and not just the non-credentialed pages. Deep Scanning: Performs deep inspection checks of system files to detect unauthorized programs, validate updates and check for worms. More than 14,000 vulnerability definitions and 54,500 vulnerability checks with complete explanations of the vulnerability, links and patch download information Artificial Intelligence Engine: Uses an expert intelligence system, JESS (Java Expert System Shell), to mimic an attack by chaining together vulnerabilities across multiple layers including network, OS, web application and database. Broad Platform Coverage: Support for wide variety of software, and application scanning as well as support for many systems and services on the internet facing systems including SMTP, IMAP, POP, LDAP, Finger, DNS, SNMP, RPC, FTP, Registry.

Detailed Dashboard

One of the most powerful features of IndusGuard is its ability to provide robust and useful reports for any person responsible for security within your organization. Once an audit is completed, analyzing the data can be a daunting task. Depending upon the audience, there is often too much or too little data. The reporting framework in IndusGuard has been designed to provide the flexibility necessary to satisfy all parties. Various levels of technical details are supported, allowing reports to be tailored for audiences ranging from upper management to system administrators. IndusGuard Scan Reports are delivered through an interactive online dashboard - IndusGuard Security Information Centre accessible via a standard Internet browser. This unified service provides all the monitoring and administrative functionality necessary to manage scanning and reporting.

• User friendly presentation with drill down reporting features.
• Immediate and unambiguous view of important vulnerability information leading to identification of solutions for mitigation.
• Highly perceptible information panel showing system hotspots and critical and high vulnerabilities.
• Segregation of reports in "Executive Summary" and "Technical Details" categories.
• Graphical representation of trends and statistics on system wide vulnerabilities available as part of executive reports.
• Remediation reports containing, system links, definitions of vulnerabilities and detailed steps for fixing the problem along with time estimates targeted to network systems specialists.
• Alerts that notify existence of threats in real time. Trend reports that show risk for the corporate assets over time including details on patched and open vulnerabilities.

Secure Infrastructure

Our entire dashboard infrastructure, and all customer data, is maintained within redundant, highly secure SAS-70 Type II certified datacenter. The Statement on Auditing Standards (SAS No. 70) is a widely recognized auditing standard developed by the American Institute of Certified Public Accountants (AICPA). It's geared toward service organizations or service providers of information technology and related processes. Organizations under SAS 70 Type II audit scrutiny must demonstrate adequate controls and safeguards when they host or process data belonging to customers.

Responsive Support

Support and technical expertise are critical to ensuring the success of any security service. Indusface provides comprehensive technical support for its IndusGuard service. Indusface offers both standard multi-level technical support, as well as custom support tailored specifically to a customer or partner’s needs.