Bit9 Parity Knowledge Service
Have you ever seen a message like this: "ctex07.exe is trying to access the Internet" and asked, "What is ctex07.exe? Is it part of an application I own? Can I trust it running in my environment?" If you are trying to maintain the integrity of your endpoints, you know how difficult it is to keep pace with the rapid proliferation of unauthorized software.
That is where Bit9 Parity Knowledge Service comes in. The Bit9 Knowledge Service provides an in-the-cloud feed from the Bit9 Global Software Registry, the world's definitive source for identifying unauthorized software on computers. By tapping into the Bit9 GSR's comprehensive catalog of commercial software and malware, you have the actionable intelligence you need to decide if the software running in your environment is trustworthy or not.
About Bit9 Parity Knowledge Service
Bit9 Knowledge Service captures the context of each software component - who published it, what products it ships with - and then uses integrated virus-scanning and other code analysis tools to determine a threat level for the file. What you get is the most complete profile for any piece of software you find.
For the first time, IT administrators and security professionals can leverage a single source to determine the identity and integrity of software. When this information is combined with the software control capabilities of Bit9 Parity enterprise application whitelisting, users get the most effective protection against unauthorized and malicious software possible.
With Bit9 Knowledge Service you will be able to:
- Uniquely identify Windows software through hash-based signatures
- Know exactly who published and shipped each software module
- Access the fastest-growing catalog of software and applications
- Take advantage of the largest file catalog to include both commercial software and malware
- Leverage multiple data sources and scanners to identify software that would otherwise go undetected
- Build a whitelist of application and devices appropriate to your business
Benefits
- Automatically Assign an Identity to Software - Unrecognizable software gets installed on Windows computers from a variety of sources such as websites, USB drives, CDs and DVDs. Assessing the viability of the software is difficult unless more information can be ascertained about the software -- software identification that helps IT staff make better decisions regarding the trustworthiness of the software.
- Automatically Assign a Trust Factor to Software based on Reputation - Confirming the presence or absence of certain critical files across thousands of endpoints can be challenging if not impossible. Endpoints configurations, for varying reasons, are inconsistent and automated processes to deliver, patch or remove software can sometimes fail leaving the configuration in a compromised state.
- Real-time Risk Alerts - Know when a potentially malicious file has been introduced to an endpoint
- Real-time Configuration Alerts - Visibility into who made the change, when and on what endpoints.
Understanding how changes are made is critical to improving processes and managing security. Centrally tracking and logging change information for thousands of endpoints, regardless of source or intent, helps accelerate support diagnostics and security forensics, and provides the detail required to meet compliance regulations.