assuriaONLINE Customer and Partner resources Logon / register
|
|
|
|
|
|
|
assuria bulletin
ContentsChanging default reporting format. Assuria Auditor Console changes Assuria Auditor multi-session reports Line Manager and Technicians reports Console update - Changed / added files
IntroductionAssuria Auditor AutoUpdate #76 is an enhancement update. This AutoUpdate adds the Assuria Information Reporter (AIR) to the Assuria Auditor console introducing new and improved functionality.
AIR is standards based using XML for data representation and XSLT style sheets to format output into HTML or PDF. AIR originally developed as part of Assuria Log Manager is to replace the use of Crystal reports within Assuria Auditor. It is intended that Crystal Reports will be removed via the AutoUpdate process in approximately 3 months time.
AIR is now common to both Assuria Auditor and Assuria Log Manager and will be a key component of future Assuria products.
Retention of Crystal reports: Any users who would like the Crystal Reports functionality to be retained after that time please contact Assuria.
Assuria Auditor User GuideThe Assuria Auditor Users Guide has been updated to include the changes introduced at the AutoUpdate and the updated Users Guide is available for download from AssuriaOnline.
Transition to AIRThe transition to AIR requires no specific user action, the application of Assuria AutoUpdate #76 will add AIR to your system.
Changing default reporting format.The default reporting format for multi-session reports can be changed by going to the Maintenance menu – Maintenance -> Options Reporting tab.
Crystal reportsAt Assuria AutoUpdates #76 all of the Assuria Auditor multi-session reports currently produced via Crystal reports are replicated in AIR.
In addition some new reports are added and include: • Agent AU Level • Agent Population by OS • Last Agent Communications • Most Recent Scan.
Further reports are planned in upcoming releases.
Users are invited to submit requests for additional reports to info@assuria.com.
Assuria Auditor Console changesThe integration of AIR into the Assuria Auditor Console has enabled further enhancements to the user interface.
The Console dashboard includes charts to show: • Agent AU Level • Agent Population by OS • Last Agent Communications • Most Recent Scan.
At this AutoUpdate Assuria has added the ability to print the data making up to the dashboard graphs.
In addition Users can also view the data contributing to the graphical information by double clicking on any bar on the graph.
Assuria Information ReporterAssuria Information Reporter brings new options to the multi-session reports, these include the ability to select risk levels to be reported.
The browse tab exposes the ‘View’, ‘Export’ and ‘Delete’ buttons. ‘View’ allows previously generated reports to be viewed.
‘Export’ copies the report to another folder in the current format.
Assuria Auditor multi-session reports
Multi-session reports are designed to give an overview of the security of the enterprise’s information systems. Reports are produced from the results of a single scan or from multiple scans as required.
There are three groups of multi-session reports:
Administration Reports:Administration Reports assist the Assuria Auditor administrator to manage an installation with relevant information about the population of managed Assuria Auditor agents.
The existing Administration Report
· Agent AU Level – Shows the current AU level as known by the Console of all configured agents.
is complemented by the addition of the reports below.
· Agent Population by Operating System shows the agent population by operating system.
· Last Agent Communications shows the date / time the Console last received communication from agents.
· Most Recent Scan shows the date / time of the last recorded scan for the agent.
Executive ReportsExecutive Reports assist with high level decisions about the status and direction of the each system and the installation’s security level.
The available Executive reports are:
Latest State: Graphical representation and analysis of the vulnerabilities detected for selected agents and/or classes during the last scan within (or for) each session.
Network Trends Analysis: This report displays a month by month comparison of vulnerabilities. It displays the: · Percentage of checks for which vulnerabilities were found · Percentage of checks for which vulnerabilities were found, broken out into the three risk levels of High, Medium, and Low.
Network Vulnerability Assessment Summary This report is useful for assessing the organization’s susceptibility to violation in relation to its policy and vulnerability conditions. It displays the: · Distribution of vulnerabilities by risk level · Percent of vulnerabilities by risk level · Percent of vulnerabilities per run.
Scan Differences: Information about vulnerabilities that are unique to a specific scan. You select a group of scans, then specify the ID of the scan you want to report on. Assuria Auditor compares the results of the selected scan to the results of the group and reports on any vulnerabilities that are unique to that scan.
Scans Summary sorted by Host: Graphical representation, sorted by host, of the: · Percentage of High, Medium, and Low vulnerabilities found during the selected scans · Percentage of High, Medium, and Low checks that were run during the selected scans (the total, regardless of whether or not a vulnerability was detected).
Scans Summary sorted by Vulnerability: This report is the same as the previous Scans Summary by Host report, except it is sorted by vulnerability.
Scorecard: A numerical representation of the vulnerabilities found, to allow a comparison of all agents in the system. A simple vulnerability scoring system is used to create this report.
Vulnerable Agents: The Vulnerable Agents report shows the agent with the most vulnerabilities. In graphical form it is useful to identify if a single or small number of servers are inconsistent with other similar systems.
Detail from the ‘Vulnerable agents’ report.
Line Manager and Technicians reportsAre designed to help with decisions about applying high level plans.
Host Assessment: Detailed information about each vulnerability found in the selected scans. For each host included in the report, vulnerability information is presented in decreasing risk level order. The detail section is preceded by a graphical summary of the vulnerabilities found, plus a tabulation of all checks made.
Vulnerability Assessment: Descriptions of the vulnerabilities detected in selected scans. Vulnerabilities are presented in decreasing risk level order, with a list of each host affected. The detail section is preceded by a graphical summary of the vulnerabilities found, plus a tabulation of all checks used in the scans
Session based reportsSession based reporting is focused on reporting for a single scan or session. These reports are produced by default and are typically in HTML format. Assuria has enhanced the functionality in this are with Standard based reports and expanding HTML reports. See Assuria Bulletin 37 for more information.
Applicable platformsAssuria Auditor Console only.
Textual ManifestThe full manifest of new and changed files for this update can be viewed below Agent updatesThere are no agent updates in this AU. Console update
| ||
