Mu Security, a leader in the security analysis space, today announced a new certification program called MUSIC (Mu Security Industrial Control). If you haven’t heard of Mu Security before, take a look at this Hack Report article, in a nutshell, Mu Security’s appliances automate the security testing an analysis of an IP-based product or application against a whole array of attack scenarios. In other words anyone who needs to test systems, software or appliances against vulnerabilities on ongoing basis will benfit from Mu’s appliances. The list of of Mu’s customers includes network equipment manufacturers like Motorola, Juniper, Alcatel or F5 and service providers like Sprint.
Full article…

Comments: 1 Comment

Securing and keeping up server environments is tedious enough, but what about all these virtual machines that are popping up all over the network? Blue Lane, which I’ve talked about in the past - here and here, might have found a cure for all those VMs wreaking havoc within your network.
Full article…

Comments: 3 Comments

What if you could mimic the function of a patch on the network instead of rushing to test and deploy the actual patch right away? That’s what triggered the whole idea of inline patching. Blue Lane takes a whole new approach to the way we can respond to vulnerabilities that require immediate patching.
Full article…

Comments: 3 Comments

I’ve first learned about Blue Lane when they were still in stealth mode, they operated under a different company name first. Network Computing posted this Interview with Blue Lanes CEO Jeff Palmer. As he points out don’t confuse them with a patch management vendor.

I believe Blue Lane offers a very promising approach to solve the burning issues of reacting to security issues in a controlled manner rather than to deploy untested patches.

…
How does it work?

We typically follow the security patches from the vendors. We focus on those applicable to servers and remotely exploitable over the network. Our design emulates, in a context-aware way, the detection logic and correction logic of the vendor’s patch.

The correction logic can vary depending on the vulnerability. In the case of a buffer overflow, the vendor patch may truncate traffic; so we truncate traffic on the wire. In some cases the patch would terminate a session, so if that’s the remedy we would do it as well. In some cases it’s as simple as returning an error message.

So Blue Lane doesn’t apply patches to servers?

We sometimes get confused with patch management or software distribution. We in no way handle the vendor patch. We remediate until it’s realistic for the enterprise to deploy the patch on machines that can be patched. We are an adjunct to a healthy software update process.

The full article can be found here.

Comments: 1 Comment