Some organizations underestimate the risk of unpatched server vulnerabilities, choosing to postpone patching and hope for the best. Other organizations comprehend the risk but are powerless to act because of rigid maintenance windows, a lack of resources, heavily regulated or hard-to-patch systems, or discontinued support by the software vendor. PatchPoint, a network appliance-based vulnerability shield, solves these dilemmas and mitigates unpatched vulnerabilities by detecting and correcting problems in the network traffic before it reaches servers

How it works

PatchPoint is a network appliance-based vulnerability shield that mitigates unpatched vulnerabilities by detecting and correcting problems in the network traffic before it reaches servers.

PatchPoint protects by performing a discovery of servers, including the applications, ports and protocols. Based on the discovery, PatchPoint determines and provisions the relevant, application-specific protection for unpatched applications.

As traffic flows through PatchPoint to the servers, individual sessions are decoded and monitored for vulnerable conditions. When necessary, PatchPoint can replicate the function of a software security patch by applying a corrective action directly within the network stream.

As new software security patches are released by software application vendors, PatchPoint automatically downloads the appropriate inline patches from Blue Lane. Updates may be applied dynamically without requiring any reboots of the servers or the PatchPoint appliance.