취약점 분석 통합 툴(Vulnerability Scan Consolidators) 소개

○ Vulnerability Scan Consolidators

1. Atlantic Systems Group Information Assurance

2. Epok® CAULDRON

3. Prolific Solutions proVM Auditor

4. RedSeal® Vulnerability Advisor 4.2

5. Relational Security Rsam® Enterprise Governance, Risk, and Compliance: Threat & Vulnerability Management

6. Skybox® Risk Control

1. Atlantic Systems Group Information Assurance

Type	Vulnerability Scan Consolidator
Target(s)
Format	Software
OS	Windows XP Professional SP2 or Vista
Hardware
License	Commercial
SCAP Validated
Standards	SCAP, OVAL, CVE, CVSS
Supplier	Atlantic Systems Group, Inc.
Information	http://www.asg.cc/IA2/

2. Epok® CAULDRON

Type	Vulnerability Scan Consolidator
Target(s)
Format	Software
OS	Windows Server 2003 (x32 and x64)
Hardware
License	Commercial
SCAP Validated
Standards
Supplier	Epok, Inc.
Information	http://www.epok.net/products_cauldron.html

3. Prolific Solutions proVM Auditor

Type	Vulnerability Scan Consolidator
Target(s)
Format	Software
OS	Windows running JRE 6 Update 17+
Hardware	1.8GHz+ CPU, 2GB RAM, 250MB disk
License	Commercial
SCAP Validated
Standards
Supplier	Prolific Solutions, LLC
Information	http://www.proso.com/catalog/provm-auditor/

4. RedSeal® Vulnerability Advisor 4.2

Type	Vulnerability Scan Consolidator
Target(s)	Brocade (BigIron®/FastIron® 8, ServerIron® XL 7.5); Check Point (Provider-1 R65/R70/R71, VPN-1 Power, VPN-1 Unified Threat Management [UTM] R65/R70, VPN-1 Power VSX R65/R70); Cisco (Adaptive Security Appliance [ASA] 8.3.1, Firewall Services Module [FWSM] 2/3/4, IOS 11.0-15.0, NX-OS 5.1, PIX 6.3/7/8, VPN3000 4, Aironet® 12.3/2.4T(5)); Citrix® NetScaler® 9.2 F5; BigIP 10.2; Fortinet FortiOS 4.0; Juniper® (Netscreen® ScreenOS® 6; JUNOS® 8.5/9.3/10.0/10.1/10.4); McAfee Enterprise Firewall 8 (Sidewinder))
Format	Appliance or Software
OS	Server: Windows 2003/2008 Enterprise Server (64-bit) running JRE 6 Client: Windows 7 or XP SP3 running JRE 6 update 17
Hardware	Server: Multicore CPU (2-16 cores), 8-128GB RAM; 250GB+ disk (sizing depends on size and complexity of network to be scanned) Client: 2GB RAM
License	Commercial
SCAP Validated
Standards
Supplier	RedSeal Systems Inc.
Information	http://www.redsealnetworks.com/products/vulnerabilityadvisor/

* Vulnerability Advisor works with all of the major vulnerability assessment vendors. It can automatically collect vulnerability assessment data on a scheduled basis or you can import it from the client UI.

5. Relational Security Rsam® Enterprise Governance, Risk, and Compliance: Threat & Vulnerability Management

Type	Vulnerability Scan Consolidator
Target(s)
Format	Software
OS	Windows running backend SQL Server
Hardware
License	Commercial
SCAP Validated
Standards
Supplier	Relational Security Corp.
Information	http://www.rsam.com/products_vulnerability.htm

6. Skybox® Risk Control

Type	Vulnerability Scan Consolidator
Target(s)	Systems/devices from AlterPoint®, BigFix®, Check Point, Cisco, eEye, HP, IBM Internet Security Systems, Juniper Networks, McAfee, nCircle, Nessus, Nortel, Opsware, Qualys, Symantec
Format	Appliance (Skybox 4000) or Software
OS	View Server and Collector: Windows Server 2003/2008/XP/7; CentOS 4 (64-bit), Red Hat Enterprise Linux 5 (64-bit) View Manager: Windows Server 2003/2008/XP/Vista/7; Red Hat Enterprise Linux 5
Hardware	View Server: <500 node network: 2GHz Pentium IV (2.8GHz Xeon dual server recommended), 4GB RAM, 10GB disk (20GB recommended); 501-10,000 nodes: 2GHz Pentium IV (Xeon EM64T or AMD 64-bit Opteron® recommended), 4GB RAM (8GB recommended), 10GB disk (40GB recommended); 10,001+ nodes: Xeon EM64T or AMD 64-bit Opteron, 8GB RAM (16GB ecommended), 40GB disk (80GB recommended) Collector: 2GHz Pentium IV, 1GB RAM (2GB recommended), 10GB disk (20GB recommended) View Manager: 2GHz Pentium IV, 500MB RAM (2GB recommended), 500MB disk (2GB recommended)
License	Commercial
SCAP Validated
Standards	CVE
Supplier	Skybox Security, Inc.
Information	http://www.skyboxsecurity.com/products/risk-control