Vendors at a Glance
click to enlarge
Still, though no VA scanner tested was what we'd consider fully mature, we can't envision living without one. Foundstone's FoundScan is our Editor's Choice because of its detailed reporting, thorough coverage and scalable design, but only by a small margin. Retina from eEye was a close second, and we were intrigued by some of the features found in products from nCircle and Harris.
As always, real-life practicality was the focus of our tests, so we drew our criteria from concerns that have been expressed to us by security professionals across the globe.
Management: An application that is difficult to install, configure, troubleshoot and maintain will be underutilized. For example, we've seen organizations that own licensed copies of Tivoli, Computer Associates' Unicenter TNG and other network-management products but never use them because of the time and effort required to get them deployed and keep them working.
We also recognize that the data produced by a VA scanner could place an enterprise at tremendous risk if compromised, so the scanner must require authentication. Better yet, it should permit multitiered authentication. By tiering authentication, an enterprise can limit an administrator's exposure to the area he or she is responsible for, and nothing more.