Optistream

All serious cyber attacks have one thing in common: the hackers are targeting the crown jewels – your sensitive customer databases, your business applications...

This raises some fundamental questions:

"If one of my employees is victim of phishing attack, what could be the extent of the damage to my information system?"

"If my VPN or web server get compromised, can the attacker reach my most sensitive data located deep inside my network?"

The answer may seem simple, but it's not!

Optistream gives you a complete understanding of your network, so you can respond quickly and proactively to these questions at any time.

Optistream is an automatic network & cloud workload protection platform that enables:

• Interfacing with your information system: easily retrieve raw data and build a virtual copy of your hybrid infrastructure (both on-premises and cloud). This allows you to test all the flows interactively and at your leisure, without any risk to production.
• Interactive mapping: view and manipulate your architecture as it really is at all times, and test point-to-point flows for a comprehensive understanding of your network.
• Advanced algorithms: utilize a set of advanced algorithms designed by IT security specialists to assess your security level at any time, at no extra cost.
• Remediation studio: define your target in a virtual environment, enabling you to continuously check the effectiveness of your changes at zero marginal cost with KPIs focused on each of your business assets and without the need for a physical pre-production environment.

This first article in our “Optistream show case” series shows you how to set up Optistream and create a digital twin of your infrastructure effortlessly. It also illustrates the platform potential through the use of interactive mapping and the security compliance engine.

Part 2: Defend against in-depth infiltration
Part 3: coming soon
Part 4: coming soon

Mirror your hybrid-network in record time

Setting up your infrastructure on the Optistream platform marks the beginning of your experience with our solution. This setup accurately represents your physical infrastructure, including network equipment, workstations, servers, and interconnections. It provides a visual object that you can easily manipulate within our platform.

This stage is simplified by Optistream that feeds from multiple knowledge bases:

• Your unified equipment and firewall management solutions (e.g. Tufin, AlgoSec)
• Raw configuration files for your equipment (e.g. Cisco, Fortinet, Check Point…) and cloud environments (AWS¹)
• Your existing CMDB²/ITAM³ solutions: add information about your endpoints (user workstations, servers, cloud workloads...) hosting your critical business applications and data

Optistream merges and enriches all of this data to build the digital twin of your infrastructure.

¹ GCP and Azure coming soon

¹ Configuration Management Data Base

¹ IT Assets Management

Interactive map

Your workspace is now ready.

The core of Optistream allows you to simulate flows between different network points. For instance, you can test reachability from one network point to another, evaluate ACL rules (authorizing or blocking filters) that your flows pass through, or modify the digital twin by adding routers or firewalls.

With the workspaces feature, you can manage multiple scenarios and versions of your digital twin. This enables you to divide your project into smaller parts, test and evaluate them independently, and merge them once changes meet your goals, ensuring a safe deployment of your project.

Test your network flows & firewall rules

Optistream's traceroute feature allows you to test the validity of flows at both the routing and filtering levels.

Network routing checks are particularly relevant during IS transformation operations or migration projects, which may involve the addition or decommissioning of networks, changes to routing tables, or other modifications that could impact the overall architecture. These checks can reveal flows with faulty or unexpected behaviors introduced during such operations, making Optistream a valuable partner for managing these projects.

Filtering checks are part of the process of securing and segmenting your network, and are the foundation of your security policy.

Example

For illustrative purposes, imagine a network segmented into several subnets: one dedicated to employee workstations, and another for hosting business services such as an ERP system.

An Optistream user can check if the server hosting the company's ERP is reachable at the routing level by the sales team's PCs (PC Sales). Additionally, he can ensure that firewall authorization rules are correctly implemented so that the sales team can access the application:

Otherwise, security policy states that PC Sales must not have access to the high-privileged IT supervision area (Monitor server) even though routing is in place (filtering level check):

Automation

These simple manual tests ensure that routing and filtering are consistent with your requirements.

However, modern infrastructures are increasingly complex, and manual checks quickly become unmanageable and time-consuming due to the exponential number of rules.

Optistream addresses this challenge by offering the ability to continuously and automatically check compliance with your rules (ACLs) by setting up your security policy using our Security Policies module.

Security compliance through Optistream

The objective of the Security Policies module is to enable you to maintain a target level of global security while ensuring the accessibility of your most sensitive business applications.

As changes are made to your virtual infrastructure, our security policy audit can be carried out, and the calculated KPIs will reflect your infrastructure's compliance level with the policy.

This feature provides a low-cost way to verify that your network filtering rules comply with your security policy. Through our dashboards, the KPIs enable you to assess the improvement in your compliance and to test your projects before going live.

In our next article

What we have seen is just the first use case for Optistream. We invite you to follow our upcoming publications, which will introduce the core intelligence of our solution: our automated audit algorithms. We'll demonstrate how to run security audits on your digital twin and assess the security of your infrastructure using our tailored KPIs.

Part 2: Defend against in-depth infiltration