SECURITY TOOLS - DEFENSE & MANAGEMENT

US

• US - Carnegie Mellon Tools for CERTs - SiLK etc
• US - National Vulnerability Database of NIST
• US - Mitre's CVE
• US - Mitre's CVE - taxonomy and pointers

Security industry oversight

• DE - German Trade and Investment association, including description of German Security Industry

Management tools

• US - CA security solutions
• US - Cisco
• US - CA
• US - IBM
• US - NetIQ
• DE - Secude (Fraunhofer & SAP related)

Business process level - continuous monitoring - big data

• Splunk - 'Turn Machine Data into Real-time Visibility, Insight and Intelligence'
• Sourcefire
• HP Arcsight

• Trusteer - "rapport" to secure the browser
• DK CodeSealer - protection against man-in-the-middle
• SpectorSoft - monitoring of employee and home
• CyberSource
• US - Oversight systems - (Sally Trivino)

Hardware

• Intel SGX- Software Guard Extensions

Data and Database security

• CA - Datapassports (Schedule1)/a> - trusted data objects and data passports, Stephen Marsh in advisory board
• US - Protegrity - database security
• IL - DBSafe - database security
• US - Cosort - field security and data de-identification

Data Analysis

• SA - Paterva - Maltego data analyis tool (graph based)

Digital Rights Management

• GigaTrust - Rights Management Systems - integrated with Windows

Securing Apple's OS X

• Corsaire - ref White Papers

Emerging

• Internet2 edu wiki - including security aspects
• IL - White Cyber Knight - Eyal Adar
• IL/US - CyberArk - SSO password vault, inter-business vault
• IL - Dynasec - Mati Ram - Frank Hoeben
• Outpost24 - PCI DSS
• Splunk - Google for machine data

Mail, communication, ftp

• MessageLabs
• US - Tumbleweed
• Mimesweeper
• US - Axway - secure ftp, cloud, ...

Network security

• US - Lumeta (spin-off Bell Labs) - IPSonar
• US - Tufin (used by Mobistar.be, evaluated by TLN)
• IL/US - Algosec.com - firewall analysis
• IL/US - Imperva - the new Check Point
• IL/US - Incapsula - spin-off from Imperva
• IL/US - Skybox (attack simulation)
• IL - RawAnalysis - Vanadium - Shay Smooha
• Lumeta - IP-sonar
• CA - Cirond - wireless network security
• US - RedSeal - firewall and router management/review
• CA - Nakina - network infrastructure and defence
• PL - Malkom secure communications in Warsaw

Some good stuff can be found at ...

• SANS.org
• Security Patterns
• CAPTCHA - Completely Automated Turing Test To Tell Computers and Humans Apart
• US/EU - TCG - Trusted Computing Group (AMD, HP, Sun, IBM, Intel, Infineon,...)
• IL/US - Imperva - 'Total Application Security' - database, appl, worms, ...
• IL - Finjan - surfin' gate
• IL - Checkpoint
• CA - Gennux - anti-spam
• CA - Genetec - IP video security
• CA - SecuGraphics
• CA - Labcal - biometrics
• UK - Microfocus - bought HP's security portfolio
• UK - Darasoft.com - IT management and security management - started in 2000, specialises in FCAPS (ITU's Fault, Configuration, Accounting, Performance, Security
• Eraser - free file and folder eraser
• BE - NOXS (ex-Comsol)
• NL - SafeBoot
• FR - ArsAudi - log correlation
• US - NIPC - National Infrastructure Protection Center - includes tools agains DDOS attacks
• US - CERT paper on firewall security
• US - Somarsoft - DumpAcl - DumpSec
• US - ISS - X-force
• US - Vontu ("Ventoux")
• US - Fortinet (ASIC-based applicances)
• US - Arbor Networks
• US - ArcSight
• US - Qualys - scanning and vulnerability management (appliance)
• US - Imprivata - single-sign-on (appliance)
• US - Brabeion - software to support PwC's ESAS model
• US - Archer Technologies - information security management software
• US/IL - Radware
• US - Sybari - anti-spam _ bought by Microsoft
• US - e-Security.net - Sentinel - incident management - quid relationship wit Novell?
• US - Vanguard - RACF
• US - Symantec - anti-virus
• US - NFR - Network Flight Recorder
• US - Axent - Home of ESM, NetRecon, ...
• US - DorianSoft - event logging and management
• US - Voyence - critical configuration and change management
• US - Lumeta - IP((sonar))
• US - L3 - L3 expert
• US - V-one
• US - LavaSoft - anti-spyware
• FI - Codenomicon - blackbox negative testing - DEFENSICS
• ODS - statistical behavioural analysis in the net
• SecurityFocus' ARIS - Attack Registry and Intelligence Service - gathering IDS data for tracking and analysis
• www.secnet.com

FIREWALLS

General interest

• CSI - Computer Security Institute - firewall site(GOCSI)
• ICSA - International Computer Security Association - firewall & IPsec certification
• Zero Knowledge Systems - Freedom Architecture
• The anti-smurf: netscan.org
• Brent Chapman's firewall mailing list

Vendors

• CH - Siemens Civil and National Security services - e.g. Lock-Keeper (Whale-like)
• FI - Nokia
• DE - Utimaco - firewall/vpn
• IL-US - Checkpoint - home of Firewall-1 - ref also to the Firewall-1 mailing list
• Canada - Milkyway - BlackHole firewall
• US - CISCO - home of PIX
• US - NetScreen - used e.g. by SWIFT -
• US - TrustedNetworkTech - Linux in-line appliance - secure TCP/IP footprint
• US - Network Associates
• US - Sun - SunScreen & Solstice firewalls
• US - Secure Computing - Borderware & Sidewinder firewalls
• US - IBM - Internet Connection Secure Server Firewall for AIX
• US - TIS - Trusted Information Systems - home of fwtk, Gauntlet, secure DNS
• US - Raptor - Eagle firewall
• US - CyberGuard - 1 - MLS philosophy
• US - CyberGuard - 2
• GTA's NAT box - GNATbox
• US - NetGuard/LanOptics - Guardian firewall for NT
• ACR - Java/ActiveX - suggestion from Andy Beard
• www.secnet.com

Firewall outsourcing

• DefendNet - for ISP's or larger enterprises - FW-1 oriented
• RIPTech - eSentry
• NetSolve - CISCO-oriented

Physical containers tools

• BE - Camco (Heverlee - Bert Kuypers)