Loading…

SSL framework

Don't leave the door to your revenue services unlocked. Detect and Take Action on Encryption Vulnerabilities before attackers do. Free*. Open-source. Automated.

Every company with internet-facing commercial services and respective revenue streams needs to protect them at all levels and thus using a reliable encryption based on SSL/TLS certificates has become an industry standard. As a rule SSL/TLS certificates are used to a great extent even inside one company: personal client cabinets, internet banking, e-mail web services, online CRM systems - all benefit from them. As the need for encryption tools grows so does the number of people and departments utilizing them. This leads to a situation with each department responsible for their own certificates and a lack of a centralized oversight to monitor them all. This bears risks of certificates becoming outdated, revoked, insecurely configured and vulnerable to new types of flaws that appear at drastic speed over recent years. In the world with cutthroat competition and dynamic consumer trends losing even several hours of business transactions simply because a web server certificate has expired, or allowing adversaries to bypass access controls to business services is absolutely unacceptable.

ssl-sert

Keeping a keen eye on encryption

ssl-qualys

Fortunately, there are ways to counter and solve issues of certificate management and security. They can range from using a dedicated employee to perform a manual check on the certificate status, rerouting all information and responsibilities to a central IT department or an even cheaper method - finding the right solution for the task, for example Qualys SSL Labs. This free service performs a thorough analysis of any SSL web server configuration and is used by millions organizations world-wide. Which means you can use it to precisely check the state of SSL/TLS certificates of your web servers to make sure everything is up to date and running vulnerability-free. The only downside - you still need someone to perform the task of launching the service and monitoring the results, which can be cumbersome job for a business that has more than one service that relies on digital certificate encryption.

Free your time and resources

This is where our SSL Framework comes in. It consists of two parts:

  1. An open-source free-to-use utility that natively connects to Qualys SSL Labs open API to enable monitoring of your company's domains and output results in the format that you choose.
  2. An analytical package for your preferred SIEM that deploys the content and enables interactive dashboards and real-time e-mail or syslog alerts on security status changes.

Combining SSL Framework with SIEM allows you to keep up with all the information about SSL certificates in your company. This includes automation of general data gathering, updates on the implementation of encryption algorithms and ciphers, scheduling machine-based checks, showing overall server rating, monitoring the date of expiry and updating you on the changes and new vulnerabilities that your certificate version may succumb to in the never-ending process of cybersecurity evolution. SSL Framework already instantly integrates with the most popular SIEM systems: HP Arcsight, IBM QRadar and Splunk, with more to come. The best part? It is completely free and takes only few minutes to deploy into production.

SSL FRAMEWORK

Splunk Dashboard

The certificate will expire soon, the certificate has been revoked, the server became vulnerable... Don't miss anything important!

SSL FRAMEWORK

HP ArcSight Dashboard

The certificate will expire soon, the certificate has been revoked, the server became vulnerable... Don't miss anything important!

SSL FRAMEWORK

IBM QRadar Dashboard

The certificate will expire soon, the certificate has been revoked, the server became vulnerable... Don't miss anything important!

Product downloads:

See how SSL Framework is applied for practical security