Security Update Manager
June 04, 2004
ECM from $995/server and $30/workstation; SUM from $25/server and $5/workstation
- Ease of Use:
- Value for Money:
- Overall Rating:
Flexible, configurable system. Distributed patch deployment across the network eases bottlenecks. Good range of feature options.
Limited range of patches. Online help could support forward planning of system install.
While overall system is limited to Microsoft patch options, performance is especially flexible for larger enterprise networks or for handling remote branches.
ECM collects and then stores Registry and security settings with other configuration details. The information is gathered from client-based agents which are polled according to a user-defined schedule. Information is stored on a SQL Server database and can be seen through the web interface or using the Crystal Reports facility.
The system is customizable, with access being possible from anywhere on the network. Parts of the system are distributed around the network to help balance loadings. SUM can download patches to a local server and these can be relayed to distribution servers so they are ready for deployment to any client or group of clients.
SUM gets its information and patches from the Microsoft XML Security Database and combines it with ECM's configuration database to determine vulnerabilities. Updates are downloaded regularly and prioritized. Each new patch is assessed by Configuresoft's Rapid Response Team (whose findings are usually made available in 12 hours).
The deployment process is wizard-controlled and flexible. For example, re-booting can be postponed after a patch is applied and if a patching attempt results in the computer hanging, SUM can kill the process and re-initialize the system.
Testing a new patch is done by targeting a baseline system in a group. ECM records registry entry changes and additions, affected DLLs and new files that appear. After assessing the impact, the administrator can devise rules to ensure the integrity of clients before the fix is rolled out.
The system does not include popular non-Microsoft applications. With a little more work to broaden the services, ECM with SUM could be a major contender.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- ICYMI: CEO Sacked; MS Zero-day; Passwords dropped; Ransomware wild, charging hack
- 9.2 million medical records for sale on darkweb
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry