Qualys' internal scanning appliance is a gateway to its Internet-based scanning service. This setup is very similar to that of nCircle's IP360, where several scanning appliances reference a single management server for all configuration and vulnerability information. However, the management and aggregation server resides on Qualys' system, not at the customer location.
Organizations install the QualysGuard appliances inside their enterprises and administer them from the Internet-based interface. The gateway device simply makes outgoing SSL-encrypted requests to Qualys' servers, asking if there are any jobs to perform. If the appliance finds a job, it downloads it, and away it goes. In a nutshell, nothing is stored on the QualysGuard internal appliance. Scan requests, reports and even scan signatures reside on Qualys' network. Although this might seem like a strange model, it means you never have to worry about attack-signature updates. Because of its design, this system is an excellent choice for large enterprises wanting to deploy scanners throughout their networks.
Qualys' reports can be customized, and its vulnerability detection was acceptable, though we hope to see better coverage in the future. Tiered user privileges can be tailored to an organization's demands, and user preferences can be adjusted for dead-host scans, load-balancer detection and even password brute-forcing. To add a layer of device segregation, network hosts can be separated into groups, enabling security administrators to create itemized reports based on business criticality, for example.
Our wish list items: Being able to export raw data to additional formats (currently raw data can be exported in XML, HTML and MHT only), integration with a ticketing system and greater integration with enterprise asset-classification efforts.
QualysGuard Intranet Scanner $2,995; price of annual subscription service depends on number of hosts scanned. Qualys, (800) 745-4355, (650) 801-6100. www.qualys.com
REPORTS
Analyize In-Line NAC strategies and products.
ANALYTICS Plan and design your enterprise blade server deployments
InformationWeek U.S. IT Salary Survey 2008
Salaries for business technology professionals are falling. Here's what you need to know in order to make good hiring decisions and personal career choices. Download Today
Qualys' internal scanning appliance is a gateway to its Internet-based scanning service. This setup is very similar to that of nCircle's IP360, where several scanning appliances reference a single management server for all configuration and vulnerability information. However, the management and aggregation server resides on Qualys' system, not at the customer location. 
REPORTS
ANALYTICS
Follow 
