|
Lancope SMC (StealthWatch Management Console)/StealthWatch 4.1 appliance gets very good marks overall, with excellent marks for capability and security and good marks for usability, performance, interoperability, manageability, sand scalability. Lancope has not substantially changed anomaly detection abilities in this release, and instead emphasizes monitoring and management improvements. Testers, however, still found the scope and accuracy of the SMC reports on anomalous behavior in the network to be compelling. Testers were also able to use the reports to react swiftly when likely security problems arose. Testing included use of network data gathered for over a month to train the StealthWatch 4.1 appliance, and testers found that the SMC made it easy to create and distribute policies. However, they advise that only senior security staff be permitted to create SMC policies, since there is no automatic way to roll back configuration changes. The console is based on the Dell PowerEdge 1750 Server with dual 3.06GHz processors, 4GB RAM, and 146GB hard drive space in a RAID 5 configuration. Graphic displays are useful, but IT managers would do well to monitor other real-time monitors in this release of system software. Testers had no problem with the SMC appliance and found it suitable for large-scale deployments.
|
Information Sources, Inc.
![[Get Copyright Permissions]](http://license.icopyright.net/images/icopy-w.gif){kind=small}