Skybox Security

Network Assurance

Whether you have 10 or 10,000 network devices, locating and addressing potential network threats can be a formidable task. With Skybox® Network Assurance, IT managers have the tools they need to correlate layers of network data and pinpoint the issues that need action. Network Assurance gathers and analyzes network device configuration data, creating a detailed network model and topology map. Use Network Assurance to find security issues caused by device configuration errors, or troubleshoot access issues and connectivity routes with our patent-pending Access Analyzer technology. The network model is updated automatically, giving network managers a working environment to stage security, compliance or other planned network changes without impacting the live network.

Business Benefits

  • Reduce chances of service disruptions or security breaches
  • Automate network compliance audits with reports in minutes
  • Enhance visibility and oversight of network management process


Technology Benefits

  • Verifies access compliance against out-of-the-box policies (PCI DSS, NIST, NSA guidelines)
  • Enables visibility into network topology and access routes by generating a network topology map
  • Identifies root causes of outages to troubleshoot connectivity paths in seconds
  • Analyzes network impact of security and availability requirements -- before change is made
  • Reduces network assessment time by 80%-90%



Classic Features
  • Network device compliance and configuration checks
  • Network topology map with drill-down and search capabilities
  • Out-of-the-box best practice policy, based on PCI DSS, NIST, and NSA guide lines
  • Compliance metrics and reporting
  • Support for most layer 3 network devices and firewall types
  • Network and firewall configuration management: AlterPoint, Check Point Provider-1, CiscoWorks, HP NAS, Juniper NSM
Exclusive Features
  • Network model combines detailed topology data with knowledge of device behavior and access paths
  • Network access policy management
  • Customizable access policy (security and availability)
  • Root cause analysis for access violations
  • Holistic network access simulation


Case Study

Using a decentralized network management system to support a network environment for over 30,000 employees was a logistical nightmare for this network security team. By using Skybox Network Assurance, this organization was able to centralize the management of its network devices, easily troubleshoot network access issues, diagnose security incidents, and provide detailed network compliance reports.

  • Automated network management eliminates unnecessary manual processes.
  • Achieve compliance with regulatory, industry, and internal security policies including SAS70 and Sarbanes Oxley.
  • Reporting capabilities keeps management abreast of network compliance status.


How It Works

Step 1 – Collect. Skybox® Network Assurance automatically collects configuration data from all network devices including firewalls, routers, and load balancers as well as information on corporate security policies, and industry best practices.

Step 2 – Map and Analyze. The network analysis engine normalizes the data into a device configuration database and creates a model and a visual map of the network. Using the model, network access compliance, network changes, and availability issues are evaluated quickly with no impact to the live network.

Step 3 – Report and Act. The output provides useful information to several groups within the organization. The corporate security team verifies network compliance with corporate policies. The network operations team is able to balance network security and availability while planning error-free.