About InfoWorld : Advertise : Subscribe : Contact Us : Awards : Events : Store
InfoWorld HomeNewsTest CenterOpinionsProduct GuideTechIndex
PRODUCT REVIEWS GUIDE    REVIEWS    ANALYSES    SPECIAL REPORTS 
 

TEST CENTER

 
Peering in at a price

By Mandy Andress
March 29, 2002

STAND-ALONE APPLICATIONS have traditionally ruled the network vulnerability assessment space, but assessment services are gaining in popularity. Such services can provide detailed analysis of Internet-facing systems from the eyes of an attacker, but they have not been able to scan internal networks -- until now.

   ADVERTISEMENT
  

Free IT resource

TechNet: More ways to know it, share it, and keep it running.

Sponsored by Microsoft

Free IT resource

Attend the SOA Executive Forum: Breaking SOA Bottlenecks SOAExecForum.com/may2007

Sponsored by InfoWorld

RELATED LINKS
»  AT&T buys high-speed wireless spectrum for $2.5 billion
»  Google, IBM promote 'cloud' computing at universities
»  IT trainer offers master's degree for hackers
»  Networking RSS feed 

IDG ENTERPRISE NETWORK
More Network LAN/WAN News...  (ComputerWorld)
Lucid8 adds data protection to software lineup for Exchange  (ComputerWorld)

TOP NEWS 


IT SOLUTION SEARCH
Akaba PointScan is a Web-based service through which administrators launch scans of internal and external networks, either by simply clicking the Scan Now button or by scheduling daily, weekly, or monthly scans. The network range is preconfigured in the account and there are no options to configure; just click and go.

The Web server passes scan requests to Akaba's scanning machines, which then launch the scan on the targeted network. Scans are performed in blocks of 32 addresses to reduce the load on the target network. PointScan tries to stay unintrusive and does not run checks that may crash services or systems. The scanning engine mostly uses proprietary tools developed in-house by Akaba.

To scan internal networks, Akaba configures a VPN between its scanning systems and the targeted network. Some nifty routing tricks on Akaba's end prevent issues with duplicate private IP address ranges.

We had PointScan scan an internal and an external network several times while we added new systems and changed services running on them. We tried a variety of Windows systems at various patch levels. We also had some Red Hat Linux systems, an HP Jet Direct print server, and a Snap Server.

PointScan can only identify network-based vulnerabilities, such as IIS (Internet Information Server), FTP, SMTP, and Finger. The service does not look at detailed application information, account settings, or Windows registry entries. This is an area Akaba can easily improve by adding functionality to its scanning engine.

We found PointScan yielded inconsistencies in its scanning results. It would find an issue in one scan then fail to find it in the next, and vice versa, even though no changes were made to the configuration. Other strange things popped up, such as a Windows vulnerability listed for a Linux system and an FTP vulnerability listed for a system that did not have FTP running. PointScan also seems to default any open UDP 500 port as PGPNet, even though it is the standard port for isakmp, which is standard for IPSec.

Working with Akaba, we traced some of the inconsistencies to issues with dropped packets. Akaba plans to add functionality to their scanning engine to better handle them.

PointScan shines in its useful, easy-to-read report. Colorful charts and graphs start off the report, followed by other high-level information, such as the number of high, medium, and low class vulnerabilities sorted by IP address. The report lists new vulnerabilities identified in the most recent scan as compared to the previous one.

The report provides a thorough discussion of the identified vulnerabilities as well as detailed steps necessary to remove, or at least mitigate risks. The report also lists vulnerabilities that are no longer on the network in comparison to the last scan. This list can give you a false sense of security if the change was not actually made on the network and PointScan just did not find the vulnerability in the most recent scan.

Organizations that want to regularly scan their Internet-facing systems should at least consider PointScan, keeping in mind that not everyone uses the expensive VPN devices that Akaba supports. The price of the service may not be cost-effective for internal network scans. For example, the Retina scanner from eEye Digital Security is an excellent product that can scan an unlimited number of IP addresses for only $4,995 ($1,770 annual maintenance). PointScan is at its best as an automated scanner to regularly check external systems, such as Web servers and mail servers.




  BOTTOM LINE
Akaba PointScan
BUSINESS CASE
Vulnerability assessment services can help administrators identify misconfigured servers before attackers do. But Akaba attaches a hefty price tag to the service.

TECHNOLOGY CASE
High marks for its ease-of-use and informative reports. But inconsistencies in Akaba's scanning engine warrant careful evaluation.

PROS
+ Excellent report

CONS
- Not cost-effective for large networks
- Dropped packets are not handled well by scanning engine

COST
$5,490 annually for unlimited scans of 10 IP addresses, or $65,280 for 256 addresses; Additional one-time setup costs $4,995 for internal scan.

PLATFORMS
Any Web browser; Internal network scans require VPN configured between Akaba and target network.

COMPANY
Akaba, Inc.; www.akabainc.com

Consider
Ease of use9
Implementation7
Innovation7
Interoperability6
Scalability7
Security6
Suitability6
Support7
Training8
Value3
Consider
12345678910
See our scoring methodology



RELATED SUBJECTS

Networking
Security

SPONSORED WHITE PAPERS
EMC - Lower costs and improve reliability-Get the EMC CLARiiON white paper!
Ciphertrust - Are you ready for Sobig.G? Learn how to protect your email systems.
CDW - Personal attention. CDW. The Right Technology. Right Away.
EMC - Explore key performance features and capabilities of EMC ControlCenter 5.1.1.
Intel - Free Intel white paper shows you how to deploy a secure wireless LAN
Cisco - FREE WHITE PAPER: BLUEPRINT to design and implement secure VPNs
Verity, Inc. - "Mass Consolidation Hits the Web-Search Market"
McDATA - Download a FREE storage consolidation white paper from McDATA(R).
Lucent Technologies - Overcoming Common Firewall Limitations
Lucent Technologies - Leverage Your Mobile High Speed Data Access. Download Free White Paper!
Nokia - Get the scoop! Mobilizing business white papers & case studies.
BMC Software - Maximize the Potential of Enterprise Data: Free white paper!
Network Associates - Free white paper - Strategies for Optimizing Network Costs and Benefits
Entrust - Manage identities across applications. Improve productivity.
Stalker Software - CommuniGate Pro - Transform your Email and Calendaring
Remedy - A NEW Gartner Research Note:Producing Quality IT Services

Search the IDG White Paper Library:


SPONSORED LINKS

INFOWORLD MARKETPLACE


» WAN Visibility and Shaping for Branch Offices
Branch Office PC software for visibility and shaping of WAN traffic by Application, URL, and User
» Apply BPM and ITIL at your IT Help Desk
ServiceWise brings BPM to complete IT service while eliminating integration cost. Learn more here.
» Register for your FREE Desktop Virtualization kit.
Take command of the desktop with VMware desktop virtualization  Register today for your FREE kit.
» Tech Primer - WAN Acceleration techniques
A great vendor-neutral report from application-delivery.org that explains the commonly used WAN ...
» Ensure business continuity with multiple links
Elfiq recommends using links from different ISPs for maximum redundancy at an affordable cost.

 HOME  NEWS  TEST CENTER  OPINIONS  PRODUCT GUIDE  TECHINDEX   About : Advertise : Subscribe : Contact Us : Awards : Events 

Copyright © 2008, Reprints, Permissions, Licensing, IDG Network, Privacy Policy

All Rights reserved. InfoWorld is a leading publisher of technology information and product reviews on topics including viruses, phishing, worms, firewalls, security, servers, storage, networking, wireless, databases, and web services.

Computerworld :: Network World :: CIO :: PC World :: Darwin :: CMO :: CSO
IT Careers :: JavaWorld :: Macworld :: Mac Central :: Playlist :: GamePro :: GameStar :: Gamerhelp
ITWorld Canada :: Computerwoche :: Techworld UK :: tecChannel :: IDG.se :: IDG.no