Stonewall Networks

Cornerstone Policy Server

How secure is your network? Without comprehensive Security Policy Management,that's a tough question to answer. Cornerstone, from Stonewall Networks, gives security conscious companies a network view of security and a single source for network security policy management. Why is this important? Without central management of network security resources, security settings can be misconfigured or out of sync with approved corporate security policies.

Cornerstone lets you accelerate the introduction of new network security policies and new service offerings with confidence. Less time is spent training and installing, thereby reducing operational costs. Even more importantly, your network is more secure, and it can be proven for audit and regulatory compliance.

Cornerstone provides centralized, consistent, and reliable management of security policies for all managed security devices. Security policies are evaluated, configured, and monitored for the entire network without the need for manual interaction with individual network devices. This approach saves time, reduces training, and provides unparalleled security when deploying new services over complex networks.

Use Cornerstone to set your security policies, and we'll take it from there. Cornerstone knows your equipment, providing multi-vendor support for today's networks. It can even help evaluate security policies to improve overall network security. Cornerstone scales with your network; as the network grows, Cornerstone grows too, using our patented TrueScale technology. TrueScale provides the flexibility to manage devices efficiently, effectively, and redundantly in networks of all sizes.

	Technology
	Benefits
	Features & Specifications
	Requirements / Configs
	Arrange for a Demo
	Download White Papers
	Brochures & Datasheets
	Technical Support

Technology

	Centralized Network Security Policy Management
	Cornerstone brings comprehensive security management to multi-vendor networks. The Cornerstone Security Policy Manager provides centralized, consistent, and reliable application of security policies to all managed security devices. Application of policy is done safely and effectively without the need for manual interaction with individual network devices. Additionally, Cornerstone enables network-wide policy enforcement, not just device-level enforcement, making total security a reality. Without Cornerstone each network security device operates autonomously, leaving holes and vulnerabilities that open your network to sophisticated attacks. With Cornerstone you have a whole new way of managing security policies in your network, ensuring accurate security policy implementation while reducing training, cost, and time-to-market.


Enlarge

	Easy to Deploy, Configure and Manage your Security Policies
	Today's networks are large, dynamic and complex. Attempting to manage the security policies without a policy manager is time consuming, costly, and ultimately error prone. Additionally, using traditional representations of security policy does not provide the graphical topology view security professionals are demanding. Cornerstone policies are shown as part of a graphical topological view of the network. You no longer have to close your eyes and try to visualize policies using a collection of complex rules. You can also use the same graphical interface to create new policies and rules. As an example you can create complicated full mesh VPN tunnels with just a few mouse clicks. Cornerstone also makes it easy to set up policy management for your network. With auto-discovery of managed security devices;automated awareness and construction of network topology; and automatic analysis of existing policies, Policy Management and provisioning becomes as easy as point, click,done!

Enlarge

	Innovative Technology
	The heart of Cornerstone's extensibility is the innovative use of XML. No other policy manager available today fully leverages the dynamic and extensible nature of XML for both inventory and data transformations. Instead they are trapped in a mindset of rigid object-oriented representations of data such as the DMTF (Distributed Management Task Force) and the CIM (Common information Model). The Cornerstone Security Policy Management platform contains an XML database and XSLT data transformation and SAX like tag oriented processing that has revolutionized how multi-vendor policy management is performed. By applying XML in such innovative ways Cornerstone has significantly reduced the complexity of policy management and provides a truly agile core. As a result, adding support for new managed security devices or security applications can be achieved in weeks rather than months.

Enlarge

	Auditing, Reporting and Compliance
	Applying policy is not enough in a world where security risk, business needs, and regulatory compliance change daily. To have effective security you need to document Change and ensure the policies applied in the network are Current, Correct, and Compliant. Current: By providing a measure of policy aging you are alerted to potentially out of date policies that may otherwise get overlooked. Cornerstone alerts you to old policies lurking in the network that may be out of line with Best Practices as part of Cornerstone's Policy Health Monitor. Correct : Keep an eye on changes, spot unauthorized policy deviations, and provide remediation on the spot with Cornerstone's Real Time Continuous Policy Auditing (rtCPA). Compliant: Have peace of mind knowing that regulatory concerns are being overseen by Cornerstone, and be able to easily generate compliance reports for auditors. Cornerstone's TotalReport provides the insight into your network's security policies. Change : Track changes over time with policy versioning. This provides an ability to revert to known good network policies or these snapshots of policy can be used to support forensic activities.

Enlarge

	Superior Scale
	From just a handful of managed security devices to thousands, Cornerstone is ready. With Stonewall Networks TrueScale technology, the Cornerstone Security Policy Manager is primed to work in any environment. Start small or start large; Cornerstone gives customers affordable options that match their Policy Management needs. Don't pay for the big box to manage small deployments. Start with a single affordable Policy Management appliance and get the core functionality of Cornerstone in a small package. Then, as your network grows, you can easily expand the Cornerstone platform by employing additional Device Management and Policy servers. And with the High Availability and Redundancy options you can have peace of mind knowing that Cornerstone is always working for you. From the smallest to very largest networks, let Cornerstone show you what our TrueScale, technology can do to reduce the time and effort needed for effective policy management. Each Cornerstone Security Policy Manager contains three primary components that are independently deployable in the network to maximize scalability: 1. Policy Server: The heart of the Cornerstone Policy Manager. This component has the ability to run independently on its own server and support up to 20 Device Managers. This component can be run in a redundant mode on a secondary server to provide High Availability functionality. 2. Client: A thin client that can reside on any user workstation, allowing users to connect to the system from virtually anywhere. 3. Device Manager : The component that handles all the interaction(s) with the managed security devices in your network.Each Device Manager can support up to 100 managed security devices.

Small Network Large Network Enlarge Enlarge