Skip to main content

What is Dane?

Introduction

Dane is an innovative cybersecurity software designed to assess and enhance the security posture of network security policies, whether they are in the cloud or on-premises. By focusing on network access policies, Dane helps organizations ensure their firewall policies are robust, compliant, and effectively managed. The primary objective of Dane is to provide a comprehensive solution ensuring that security policies are not only compliant but also actively managed to minimize risks. Dane achieves this by offering real-time auditing capabilities, tools for constructing application-specific frameworks, and seamless redeployment of security zones with network access policy templates. This holistic approach allows organizations to maintain a high level of security, addressing both compliance and operational challenges. By integrating cutting-edge technology and user-friendly interfaces, Dane empowers businesses to proactively manage their cybersecurity posture, reducing vulnerabilities and enhancing overall network security.

Core Features

The Auditor

The first core feature of Dane is the Auditor. This feature allows for real-time auditing of network security policies against an application-specific framework. The Auditor identifies non-compliant rules by comparing firewall security policy configurations with the client's application framework. If a rule is found in the framework, it is deemed compliant; otherwise, it is not. The framework is maintained by the client and includes flow matrices for all applications. By evaluating the security posture, the Auditor highlights areas of non-compliance, which helps organizations understand and mitigate potential risks in their information systems.

The Builder

The second key feature is the Builder, which addresses one of the biggest challenges in enterprises: constructing an application-specific framework. It assists application managers who often struggle to provide flow matrices for applications by offering initial matrices for validation. When managers cannot propose flow matrices, the Builder suggests them, making it easier to create and validate the necessary configurations. The Builder includes a dedicated web interface that simplifies this process, allowing managers to construct and implement v0 flow matrices effectively.

The Deployer

Lastly, the Deployer feature facilitates the redeployment of security zones with network access policy templates from the application-specific framework. The Deployer integrates with existing systems by leveraging technical implementation workflows to push the templates. This seamless integration ensures that deployment processes are smooth and efficient. A common use case is replacing an overly permissive firewall rule (e.g., any-any accept IP rule) that needs to be removed. With Deployer, there's no need for temporary rules. It allows for the deployment of application-specific templates from the framework securely. Dane uses internal technology to ensure that all deployments are secure and protected against potential threats.