The core application systems of those large enterprises and organizations consist of a large mount of Unix/Linux servers, Windows servers, network devices, and applications over them, which might be ERP, CRM, resource management, billing system, office automation, electronic operations and maintenance, knowledge management and other client/server and/or browser/server applications.
Generally, administrators and operators use Telnet/SSH to remotely manage Unix/Linux servers and network devices, and use Windows Remote Desktop Protocol (RDP) to remotely manage Windows servers, while might be used are VNC /HTTP /FTP /Rlogin /Rsh and etc.
There seems to be a paradox to security managers. In one side, to counteract the threats from network eavesdroping and hijacking, security managers urge and even require administrators to use those encrypted protocols in remote management. In other side, due to the lack of auditability, security auditors might prevent administrators to use those encrypted protocol so that they can collect and record the audit information. Which choice should the security managers adopt? to use encrypted protocols to avoid threats, or not to use encrypted protocols in order to audit the operations?
We believe that:
ENCRPTED PROTOCOLS SHOULD AND CAN BE AUDITED IN THE SAME WAY AS THOSE UNENCRYPTED PROTOCOLS.
See how we make it work.
News & Events
- Cutting-Edge Network Behavior Audit Technology from BMST
- Session Auditor supports X-Window now!
- Session Auditor is enhanced with HP RGS support!
- Session Auditor supports Citrix ICA
- Session Auditor Lite released today!
- BMST gets Hi-Tech Enterprise Certificate!
- BMST Office Moves to new location
- Session-Auditor v1.5 released
- BMST was founded with cutting edge inline RDP/SSH audit product!