Lumension Endpoint Integrity Service Verifies the Integrity of Software Running on Your Customers’ Endpoints

In today’s Web 2.0 world, more software is developed and downloaded than ever before. More sophisticated, polymorphic and stealth malware continues to outpace traditional endpoint security solutions. All of these challenges present solution providers with an opportunity to deliver significant value to customers by effectively validating the integrity of customers’ endpoints. By validating the integrity of software on customers’ endpoints, ISVs can help ensure the protection of sensitive data, improve operational efficiencies and reduce IT costs.

Lumension EIS is an internet-based service that enables ISVs to determine software integrity by providing software validation information to endpoint security products and solutions. EIS is designed to support a wide range of advanced security solutions such as: software policy compliance, whitelist audit and enforcement, security configuration validation and drift avoidance, software license and security management, change control process enforcement, etc. Lumension EIS:

  • Provides key information necessary to validate the integrity of software for both OS and applications running on endpoints (servers, desktops, laptops, and virtual machines.)
  • Leverages relational intelligence from Lumension’s industry-leading security content database (which includes security configuration, vulnerability, and patch management information,) to facilitate truly seamless updates within highly secure (“locked down” or “whitelist enforced”) software environments.

EIS will have software validation information from key ISVs that provide software to business and organizations, including the complete set of Microsoft’s commercially available business products. Additionally, Microsoft is licensing EIS as a part of the Microsoft Reputation Services.

More Information for ISVs on Lumension EIS

To learn more about Lumension EIS and how you can include validation information for your software products or understand how EIS can enhance your security or systems management software.


Lumension EIS Benefits to ISVs and ISV Customers

Lumension EIS is based on a multi-vendor standard – jointly developed by Microsoft, Lumension and other security ISVs - that provides unique advancements designed to benefit ISVs and their customers, including:

  • Cryptographically strong SHA-256 hashes (MD5 and SHA-1 also included)
  • Complete certificate information (for signed files)
  • Highly detailed and structured vendor, version, and installation data

By validating that OS and application software is in its originally manufactured state, security solutions can show definitively if endpoint software has been compromised by malware or unauthorized modificiations.

Lumension is currently working with its current content and/or development partners to add fully-verified validation information for their software products. Lumension has established an ISV program for ISVs that are interested in adding validation information for their products into EIS.

To provide the customer community with the widest possible array of software integrity solutions, Lumension has also created the EIS Licensing and Integration Program. This program is designed to enable security and systems management ISVs to extend their solutions with new features and capabilities that leverage EIS.