Nodeware is designed to be a continuous vulnerability management platform with the ability to run 24/7 on production networks with low network utilization and no impact to the assets on them. There is no need to schedule or configure scans, as regular network inventory highlights new assets in near real-time and adjusts the scanning of known assets based on availability.
Each asset on a monitored network is targeted for a full scan once per day, depending on availability and responsiveness. A full scan includes fingerprinting, unauthenticated scans, and if configured, authenticated scans.
Nodeware's patented technology ensures scans are virtually invisible to the end user, and that transient assets are included even if they are only on the network for a short while.
Traditional vulnerability scanning is generally an intricate, time consuming task that has to be scheduled for off hours or amended and rescheduled to not disrupt regular business operations. This presents a challenge because some employees take their laptops and mobile devices home or turn off their PCs at the end of the workday.
In addition, traditional vulnerability scanning tool’s impact on assets is related to the way that the plugins are written. They are often based on exploits for a given vulnerability, with the malicious payload removed. The scans can reduce the performance and availability of services, sometimes even after the scans complete.
Nodeware's Open Vulnerability and Assessment Language (OVAL) based approach does not leverage disruptive testing techniques. It avoids certain scan types that can cause unwanted disruption including Denial of Service (DoS), brute forcing, resource exhaustion, or memory overflow.
Comments
0 comments
Please sign in to leave a comment.