|
|
|
|
|
|
 
|
|
|
|
Provider
|
|
Policy Update Method
|
Log & Report Interface(s)
|
SLA
|
Additional Comments
|
|
Allegiance
Telecom
|
CheckPoint FW-1/VPN-1 on Nokia HW |
PGP-encrypted
email requests are configured into policy, then installed
|
Real time logs via CheckPoint Logviewer daily, raw logs upon request, monthly reports via e-mail |
Reduced
times for emergency adjustments and outages, 9 hours max for standard changes
(normally done within 1 hour)
|
HA and VPN
options. Includes expert policy development and implementation, and quarterly
Vulnerability Scans against firewall.
|
|
AT&T |
Server-based: CheckPoint FW-1/VPN-1 on multiple HW platforms Premises-based: Cisco PIX Router-based: Cisco HW & SW Network-based: Multiple Vendors, integrated into a Network-Based service |
Policy updated
remotely after validated request received from customer's security contacts
|
Server-based: Logs via FTP or LEA, reports via HTML or PDF Premises-based: Logs via FTP, reports via HTML and PDF Router-based: HTML or PDF Network-based: Logs via FTP, HTML reports via Secure Web Interface |
None
|
Server-based: Available with AT&T access link only. HA, VPN, URL Screening, DMZ, Extranet add-ons. Premises-based: HA, URL Screening, DMZ, Extranet add-ons. Multiple Cisco PIX solutions matched to customer's needs. Router-based: Available with AT&T access link only. DMZ add-on. Tested to integrate with AT&T managed VPN service. Network-based: Available with AT&T access link only. HA is standard for IP-enabled Frame Relay or ATM and Network-Based IP VPNs. Anti-Virus, Anti-Spam, URL Screening, DMZ, Extranet add-ons. |
|
Bangalore Labs
|
CheckPoint (on Solaris, Nokia, Windows, Linux), Cisco PIX, NetScreen, Nortel Contivity |
Using secure
VPN channel, customer requests change via Portal or e-mail, SP identifies need
for update, manager validates and approves, notifications sent on approval,
after change & in periodic reports
|
Secure Web
Portal
|
Governs response time for availability and performance events and change requests, availability of SOC and monitoring service, timely notification of security updates and bug-fixes |
No automated response. HA, VPN, IDS, Virus/Vulnerability update add-ons. Includes 24/7 availability & performance monitoring, change management, backup/restore, periodic reporting and log analysis. |
|
Cable
& Wireless
|
Cisco PIX, CheckPoint on Nokia appliance |
Customer
contacts SP by phone with secure customer ID and password, or opens ticket via
my.cw.com; SP staff then implements request in firewall policy
|
Secure Web
interface
|
Time to
respond to problem after notification or detection, time interval to update
customer on problem resolution, and time to replace faulty hardware, depending
upon priority of problem. Also SLA for time to implement rule change requests.
|
HA, VPN, IDS and Response, Scanning and Analysis, Forensics Analysis and Penetration Testing add-ons. Weekly log reports detail traffic patterns and potential security risks. Operations team includes former personnel from top US security agencies. For services delivered at C&W facility, on-site spares enable 90 minute HW replacement. Anytime access to firewall logs and policies. Unlimited configuration and rule-set updates. Secure off-site storage of backups. |
|
ClearPath
Networks |
Network-based, using Cisco 7200s in network core |
Via online
Network Reporting Tool user interface, or phone call to 24/7 NOC at corpHQ
|
Optional
upgrade
|
99.99
percent availability
|
Must purchase Internet Access, at minimum, to order this service. HA, IDS Monitoring, iVPN, iGuardian, iMail and DNS hosting add-ons. Optional upgrade for 24/7 proactive monitoring, notification and electronic log/report access. Uses Cisco CBAC technology. |
|
Genuity
Managed Services
|
CheckPoint FW-1 on Nokia IP series 120, 330, 530, 710, 740 |
SP primarily configures and manages customer's security policies, but customers can also make own policy changes via CheckPoint GUI. Customer opens a ticket, SP verifies identity of contact & nature of change, then implements, tests & pushes change |
Reports
via secure e-mail, security logs via ticket request
|
A number
of Service Level Guarantees forManagement, Monitoring, and Maintenance (see
Sidebar on Service Level
Agreements)
|
No automated response. Optional features include managed PKI, end-user helpdesk, HA, NAT support, VPN and more. Advanced features include hardware acceleration, support for customer managed digital certificates, RADIUS, SecurID, ACE, etc.. Customer provided security equipment may be used with shared management option. |
|
Guardent |
Market-leading firewalls, including NetScreen, Cisco PIX, CheckPoint on Nokia |
Requests
are authenticated, then deployed in accordance with clients' change management
process
|
Secure
Portal
|
Commitments
for change request response and notification as a result of monitoring activities
|
HA (failover and load balancing), VPN, Gateway Antivirus and URL/Content Filtering add-ons. Distributed data processing model, based on Guardent's Security Defense Appliance (SDA) at the client premises. |
|
Interliant,
Inc. |
CheckPoint on Nokia appliance |
Requests
are submitted via secure website, authenticated via authorized contact
|
Secure website
and secure FTP
|
Availability,
uptime and response resolution times for changes and problems
|
HA, VPN, content filtering add-ons. Real-time status and statistics for each firewall in addition to a range of daily reporting features. |
|
Internet
Security Systems
|
CheckPoint (Nokia, SunFire), Cisco PIX, NetScreen |
Gold customers can request unlimited policy changes; Silver customers get 2 free requests per mo. SP engineers validate requests, notify customer if change may cause tech issue or security compromise |
Customer
Portal and raw logs
|
Yes
|
Choice of Gold or Silver service levels. HA, VPN, monitored firewall add-ons. Monitoring option upgrade provides notification of security-related activity detected by firewall. SP defines initial policy, verifies proper operation after install, then monitors health and availability, providing notification and remediation advice for failures/outages and troubleshooting for any firewall-related connectivity problems. |
|
Provider
|
|
Policy Update Method
|
Log & Report Interface(s)
|
SLA
|
Additional Comments
|
|
LURHQ
Corporation
|
Cisco PIX, CheckPoint FW-1, IPTables, Gauntlet |
Client calls SOC or fills out ticket via Sherlock Enterprise Security Portal Intrusion Analysts discuss change with client & make suggestions as necessary, then implement update and close ticket |
Secure,
web-based Sherlock Enterprise Security Portal
|
Connectivity,
incident response, and help desk responsiveness criteria
|
Automated response as dictated by client. HA and VPN add-ons. Customer must purchase access link from SP. |
|
NetSolve,
Inc.
|
Cisco and CheckPoint |
Submitted via web portal or contacting assigned security engineer No extra charge for emergency change requests |
Secure Web
Portal provides access to all security reports and raw data
|
Rebate on monthly charges (up to 100 percent) if customer is unsatisfied with service. Although operational metrics are reported, SP will issue refund regardless of performance against metrics |
Automated response if approved by customer. HA, VPN, IDS, Internet Router, managed WAN, LAN or IP telephony add-ons. Long-term data management and log host service also available. Fixed fee per device includes all change requests, custom signature development, configuration archiving, firewall policy changes, OS upgrades, etc. |
|
Network
Associates, Inc.
|
NAI desktop firewall software |
"No need
to manually configure"
|
Local reporting
available through the client
|
None specified
|
No automated response or HA. Automatic Updates. Permission based Traffic Blocking. |
|
PresiNET
Systems
|
PresiNET's vDeadbolt and vDeadbolt Enterprise Appliances For more information see files on vDeadbolt (.pdf) and vDeadbolt Enterprise (.pdf) |
Configuration
change requests made by phone (authenticated) or via Secure Web interface
|
Real-time
reports via Secure Web interface and PDF
|
May be customized
according to client's requirements
|
HA and multi-link fail-over, VPN, IDS, On-Line Real-Time Executive Reporting, Artificial Security Intelligence Analysis, Certificate Authority Services, Bandwidth Management, Fail-Over, Continuity Alert add-ons. Clients may set automated threshold alerts and actionable responses through secure Web interface. Client-premises appliances act as remote sensors and service delivery platforms, with core services from SOC. |
|
Proseq
AS
|
"Whatever the customer wants" |
Changes
remotely administered, by default twice per month, or optionally at customer
request
|
Secure Web
interface and optional e-mails according to SLA
|
Yes
|
HA and correlation
with IDS available as add-ons.
|
|
RedSiren
|
Cisco PIX, CheckPoint |
Via combination
of secure connection & vendor-specific Management software
|
Secure Web
interface
|
All change
and update time frames, varies by severity
|
HA and extra report storage add-ons. Service includes event correlation, VPN configuration, rule reviews, rule updates, scan service, patch updates and incident hardening. Firewall Support Helpline and Management OnDemand also available. |
|
SBC
Communications |
Cisco PIX, Nokia/CheckPoint FW-1 and NetScreen appliances |
Authorized
rep may request changes verbally or by e-mail, authenticated by self-selected
"secret phrase" or shared public key encrypted e-mail
|
Secure Web
Portal
|
Guaranteed
response on standard and priority rule set changes with financial remuneration
for non-performance
|
No automated response. HA, VPN, IDS, AV, content filtering add-ons. Independent of access link, but part of SBC's Monitoring-Intrusion Detection offering. |
|
Provider
|
|
Policy Update Method
|
Log & Report Interface(s)
|
SLA
|
Additional Comments
|
|
Secure
Designs, Inc. |
WatchGuard |
Via e-mail
or telephone request
|
Secure Web
interface
|
Pro-rated
refund for service failure
|
HA, VPN, content filtering and e-mail AV scanning add-ons. For small and midsized companies. |
|
SecurePipe,
Inc.
|
SecurePipe RM-512 HW & SW |
Requests made via phone, e-mail, fax or secure web form; after token-based phone authentication, SP implements policy update at / for specified time. May also have SP make changes in response to immediate threats |
Logs via
Secure Web Portal, reviewed by NSEs daily and available to customer for further
review and regulatory reporting
|
Timeframes
for security incident notification, response to customer requests and ruleset
& user access changes
|
Service includes incident response by Network Security Engineers (NSEs). HA, IDS, VPN, (sa)2 authentication, e-mail relay and AV add-ons. |
|
SecureWorks
|
Cisco PIX 500 series, CheckPoint on Nokia, SecureWorks iSensor |
Client submits
change request, SP applies it
|
Quarterly
Security Review and On Demand
|
Yes
|
HA and VPN
add-ons available.
|
|
TruSecure
Corporation
|
ShadowWall: Cisco PIX, CheckPoint FW-1 on Nokia, Solaris, Secure Platform, CyberGuard appliances SecureWatch: SNMP and/or SYSLOG compliant system |
ShadowWall: Via telnet, SSH or X for Cisco and CyberGuard; via management console for CheckPoint SecureWatch: N/A (monitor only) |
ShadowWall: Change statuses, alert logs and reports via Secure Web Portal, raw logs via specific firewall vendor control console SecureWatch: Secure Web interface |
Standard and Premium options SLA items include (but not limited to): Availability, Report Frequency and Content, Time to Respond and Event Log Storage Duration |
HA option for both. VPN add-on for ShadowWall on CheckPoint. ShadowWall is full-service turnkey managed firewall solution. SecureWatch is monitor-only solution for IDS, Firewall and VPN systems. Both are available in Standard and Premium versions, differentiated by Service Level Agreement commitments. |
|
Unisys
Corporation
|
CheckPoint, Nokia, Cisco, CyberGuard |
Client supplies
secure written (e-mail) request; every change is reviewed by senior security
specialist to ensure no holes are opened
|
Real-time logs (via mirroring solution) or on request (via secure e-mail) Daily, weekly, and monthly reports and all trouble tickets via Secure Web interface |
Oriented
around notification times
|
HA, NIDS, HIDS, policy configuration, software upgrades, relicensing and hardware maintenance add-ons available. HW maintenance includes remote problem identification, site dispatch, equipment repair/replacement, service restoration and validation. |
|
Verio
|
CheckPoint NG, Nokia IP 120, IP 330, 530, & 650, NetScreen 5 |
Requests
from customer's designated POC authenticated via SecurID for phone and web portal
requests. SP then validates request and presents alternative if requested change
presents risk to customer's security posture
|
Secure Web
interface (authenticated with SecurID)
|
99.93 percent SOC Availability, 15 minute Firewall Outage Notification, Change Request Completion and Hardware Replacement timeframes Service credits issued if SLA not met |
Five VPN connections included. HA, VPN, IDS, rule changes, VPN client and help desk token, various HW cards (NIC, VPN accelerator, etc) and additional SecurID tokens available as add-ons. Manage/monitor and monitor only services also available on customer hardware. Customers may lease equipment from Verio or provide their own (subject to platform certification). |
|
VeriSign,
Inc.
|
CheckPoint FW-1/VPN-1 on Nokia and Sun platforms Cisco PIX |
Request opened via phone, e-mail, or web-based ticketing system SP manages request through Acknowledgement, Validation & Implementation stages, providing client with feedback / status at each step |
Secure Web
interface and FTP if needed
|
Acknowledge automated change request within 30 minutes or phone request within 1 hour, validate within 4 hours, implement within 4 hours of validation or per customer maintenance window Trouble ticket notification via e-mail and/or page within 15 minutes, follow-up status phone call within 30 minutes |
HA, firewall-resident VPN, Managed Authentication, Managed PKI, Managed IDS, Help Desk add-ons available. SP monitors for health, performance & security events. Suspicious activities are normalized and analyzed; security engineers are automatically engaged as needed. Includes free vulnerability scans of firewall during initial deployment and quarterly. |
|
MCI
(WorldCom)
|
Global Managed Firewall: CheckPoint VPN-1 on Nokia Managed Firewall WatchGuard: FireBox |
Customers
submit request via secure web interface; SP's SOC verifies request and administers
the changes
|
Daily Reports
via Secure Web interface, Logs via FTP
|
Yes
|
Global: HA, VPNs, Content Filtering, Personal Firewalls, VPN Acceleration Cards, Internet Colocation add-ons. Uses proprietary HTTP proxy originally developed as part of WorldCom's InterLock firewall. WatchGuard: Redundancy, Site to Site VPNs, and Content Filtering add-ons available. Both include redundant SOCs, annual vulnerability scan, Security Policy Wizard (proprietary automated tool to assist with policy development), and Web Based Policy Viewing. |
|
Provider
|
|
Policy Update Method
|
Log & Report Interface(s)
|
SLA
|
Additional Comments
|
