SNMP Research International, Inc.

Secure Your Network

• Products
  •  
  • Agents
  •  
  • Managers
  •  
  • Developer Tools
  •  
  • User-Ready Solutions
  •  
  • Products by RFC
  •  
  • List All
  •  
• Services
  •  
  • Technical Support
  •  
  • Professional Services
  •  
• Partners
  •  
  • Technology Partners
  •  
  • Channel Partners
  •  
  • Customers
  •  
  • What Our Customers Are Saying About Us
  •  
  • Success Stories
  •  
• Technology
  •  
  • SNMP Standards
  •  
  • Supported RFCs
  •  
  • White Papers
  •  
  • Glossary
  •  
  • FAQ
  •  
• About Us
  •  
  • Company
  •  
  • News and Events
  •  
  • Contact Us
  •  

Additional Information

• SNMP Security Analyzer White Paper
• SNMP Security Analyzer On-line Demonstration
• SNMP Security Analyzer Case Study [PDF]
• Available Platforms

SNMP Security Analyzer

The SNMP Security Analyzer™ is a software tool that assists in the deployment and administration of SNMPv3. If an SNMPv3 manager is unable to communicate with an SNMPv3 agent and it is not clear why, this tool can help find the cause. It also can identify SNMP security exposures that may not be obvious to the network administrators.

How SNMP Security Analyzer Works

The SNMP Security Analyzer has a discovery engine that can find all the devices on the network. Once the SNMP Security Analyzer finds an agent on the network, it conducts extensive testing on that SNMP agent looking for misconfiguations that may prevent SNMPv3 communication, misconfigurations that weaken SNMP security, and known SNMPv3 security vulnerabilities. As an alternative to a network wide discovery, SNMP Security Analyzer can work from a pre-determined set of IP address. Once the analysis is complete, the Security Analyzer automatically generates reports that identify and prioritize the discovered issues.

The SNMP Security Analyzer adds value to the network management toolbox by finding and intensively analyzing all SNMP agents on the network, testing for security issues typically known only by SNMPv3 security experts, and generating network wide reports, all automatically. The level of analysis done by the SNMPv3 Security Analyzer would be difficult, time-consuming, and costly to do manually.

Security Issues that SNMP Security Analyzer can Find

The SNMP Security Analyzer looks for problems such as:

• Agents subject to the authentication bypass vulnerability (CERT Vulnerability Note VU#878044). This is a significant security exposure because it allows a non-authenticated user to access the agent. The SNMP Security Analyzer finds devices that have not been updated to remove this vulnerability.
• Multiple SNMPv3 agents with the same SNMP Engine Identifier (snmpEngineID). For security reasons, the snmpEngineID must be unique network-wide in order to generate unique local keys. Duplicate snmpEngineIDs are a common cause of an SNMPv3 manager not being able to talk to an SNMPv3 agent. In networks where duplicate snmpEngineIDs exist, a security breach for one device means a security breach for all devices that share that same snmpEngineIDs.
• SNMPv3 agents with clock rollbacks. For security, an SNMPv3 manager should reject replies from these agents because it cannot trust the authenticity of the reply. The reply could be a replay attack.
• SNMPv3 agents with clock latches. For security, an SNMPv3 manager should reject replies from these agents. Agents with clock latches rarely happen in practice. The agent must be manually reset to recover.
• SNMP agents that allow non-secure access. This includes SNMPv1 and SNMPv2c agents, which are inherently insecure. It also includes SNMPv3 agents configured for access without authentication or privacy.
• SNMP agents that have incorrect or unused security information configured.

Who Should Purchase SNMP Security Analyzer and Why?

If you are responsible for the security of your network, the devices on your network, and the management of your network, the SNMP Security Analyzer is an essential tool that you should be using.

• SNMP Security Analyzer can be run on a periodic or continuous basis.
• Running SNMP Security Analyzer on a periodic basis provides a snapshot into your network health and security that can be compared with previous reports.
• Running SNMP Security Analyzer on a continuous basis provides immediate notification of new, non-compliant devices on your network and notification of nefarious activity associated with the devices.
• SNMP Security Analyzer provides information beneficial to network security audits and promotes network security compliance.

Available Platforms

SNMP Security Analyzer is available on the following platforms:

• Linux
• Windows

How to Find Out More Information

Read detailed information about what the SNMP Security Analyzer does in the SNMP Security Analyzer White Paper.

Take the guided walkthrough followed by a self-guided tour of sample reports in the SNMP Security Analyzer On-line Demonstration.

SNMP Security Analyzer can be licensed for use with small, medium and large networks. Please email info@snmp.com for licensing information. You can also contact our sales department via phone at +1 865 579-3311.

Home | Company | Contact Us | Products & Services
News | Partners & Customers | Protocol | Site Map | Sales Query

Copyright © 2024 SNMP Research International, Inc.
Questions? Please let us know.
SNMP Research: www.snmp.com