In the afternoon of July 11th, 2006, AURORA V4 press conference, headlined "the Birth of Vulnerability Management Expert, the Escalation of Security Management", was held in NSFOCUS Exhibition Hall, with journalists from over 30 mainstream media including CCID, ccw.com.cn, yesky.com, China Information World, China Computer World, China Network World, NetAdmin World, NetWork & Computer Security, etc.
In the conference Chen Wenfeng, the Vice General Manager of NSFCOUS officially announced the release of AURORA V4; Dong Mingwu, the Product Manager of NSFOCUS Solution Centre, gave an introduction to the new product, and together with Wu Yunkun, the Director Solution Centre, answered journalists' questions in detail. The conference was presided by Li Qingshan, the Director of Marketing Department.
Powered by the professional research achievement of NSFOCUS Security Team, AURORA V incorporates NSIP as well as other leading techniques, and is capable of discovering security vulnerabilities in the network assets automatically, efficiently, timely and accurately. Especially AURORA will analyze those discovered vulnerabilities in the assets in detail, and quantify the risk via authoritative risk assessment models, in an attempt to providing a professional solution; most prominently the Open VM procedure platform provided by AURORA incorporates advanced vulnerability management concept into the whole implementation process.
As early as the designing stage, AURORA V4 fully took industry's business requirement into consideration, in order to satisfy telecom and enterprise level customers' security assessment and vulnerability demands. The main target customers of the products are operators, financial institutes, army and government agencies. AURORA V4 has an overwhelming competitive advantage in medium & large network application.
New Features of AURORA v4
■Multi-level Distributed Deployment
Powered by the multi-level distributed deployment, open platform and multi-task, multi-user supports, AURORA v4 effectively meets the demands of operators and state ministries & commissions' large-scale network. Besides, for availability and efficiency consideration in government agencies, an intelligent "ONE-TOUCH" task mode, fast report, intelligent summary and other techniques are designed to meet customized demands of various industries.
■Innovative Open VM Platform
Based on the latest Open VM procedure, in which the vulnerability management circle is divided into five stages of early warning, assets management, analysis, remediation and audit, NSFOCUS established an Open VM procedure platform first in China. This open platform enables partial implementation of Open VM in AURORA V4; furthermore the platform exposes multiple interfaces for secondary development, on which AURORA can completely implement the Open VM procedure associating with the third party products.
■Automated Vulnerability Management Procedure
AURORA V4 automates the procedure of assessment, vulnerability & assessment analysis, verification and management; tasks like common assessment, reports and updates are also performed automatically. These features significantly reduce the cost of manual maintenance.
■Security Analysis of Web-based Application
In view of the huge damage caused by the existing vulnerabilities in Web applications, AURORA V4 first introduces the detection of Web application vulnerability, in which vulnerabilities such as SQL injection or information disclosure in a website will be detected by discovering the viewable ASP, JSP, PHP and CGI pages via in-depth analysis to the site contents or source code analysis to the webpage.
■Totally New, User-friendly Report System
AURORA V4 provides online and offline report systems. Intensive statistic and analysis in vulnerability distribution, impact, TOP 10, host information and other aspects will thoroughly reflect the overall network security status from multiple views. Besides the common offline report, AURORA also provides a powerful online report system. A useful report filter bundled with the product helps customers to gain valid information more effectively, and generates reports in various formats based on different roles and contents.
■Chinese and English Versions
AURORA V4 and the later versions ship with the first international version in China, with Chinese and English supports. Its user interface and operation fully comply with the habit of customers in English countries. Most importantly the descriptions in bugtraq also support Chinese and English, which makes AURORA an internationalized security product with competitive advantage in the global market.
|
