Security Practice

Increased demand for business transactions across enterprise networks require hosting a complex IT environment. The complexity has increased with a significant number of critical applications moving to the hosted pay-per-use model. Traditional firewalls and security tools are inadequate to address security challenges posed by this situation. The GS Lab Security practice addresses needs of vendors who are building products for this rapidly evolving marketplace.

With distinct focus on security marketplace, the Security practice has segmented its offering in various categories of macro functionality listed in each block of the diagram below. The blocks represent our expertise and successful track record of delivery.

Differentiation

The Security practice at GS Lab is unique in that it holds expertise at all three technology layers that need to be addressed, viz., network layer, application protocol layer, and user application layer.

At the network layer, the Security practice specializes in packet assembly for deep packet inspection at wire-speed, port scanning, and network level vulnerability detection including Nessus plug-ins.

At the application protocol layer, the security practice has worked with a large number of application level protocols including HTTP, SOAP, email protocols, chat protocols, SIP/RTP, LDAP, and web services suite of protocols. The practice understands the vulnerabilities related to each.

At the application layer, the security practice understands AAA functions, provisioning of resources and users, network scanning for application discovery, compliance violations, and attack detection/prevention. The practice understands the policy frameworks and how they should be implemented efficiently.

Some of the current work in progress

  Suite of products for AAA and identity management functionality
  SOAP security in application firewalls
  Application assessment and vulnerability management
  Application visibility monitoring and reporting
  Data transformation and load for security sensitive HL7 data

Delivery capabilities

Aside from the standard software development related capabilities, the key capabilities possessed by GS Lab for this market place are: techniques typically used for security of any IT infrastructure, understanding of the entire software stack leading to an insight into the security problem addressed, and techniques to test for security violations. These capabilities are domain related and are present in the security practice of GS Lab along with the ability to develop the product.