Wednesday, September 1, 2010

Patch Management Software Allows Security Choices For Now

Large corporations as well as small businesses have begun to turn to automated patch management software for security and updates. The average user has become used to the security updates and fixes and businesses have much more to secure against. The frequent patches and additions to the Windows operating system has accustomed the consumer to the need for fixes on a regular basis.

 

Most home users will enable automatic updates for the Windows operating system and this is a specific and limited type of patch management software. There are many more programs on almost every computer which also require patching. For the larger company or business, this can be a time and labor intensive job keeping up with patches and securing the system.

 

However today there are multiple choices in programs for managing updates and patches automatically or semi automatically. Security of the company assets is a primary source of concern for many businesses and enabling the latest security fixes provides enhanced security and functionality to the programs. Although these patches are essential they can be time consuming in larger operations if patch software management is not used.

 

These programs usually have a special console and it may well be located on a single master machine on the network. The master console can determine which programs should be patched and which should be overlooked. The user can also determine from which website a patch should be downloaded.

 

A company with multiple machines may well have different purposes for each one and different programs installed as well. In that case the management software will scan each machine separately and apply the patches or fixes. Software to manage patches will usually intelligently apply only those patches necessary for the programs present on the machine.

 

There are generally two types of management software for patches. The first type is an agent based management solution. Management programs that use the agent have a program installed on each machine, which performs a scan of the machine. This agent then downloads and installs necessary fixes and then sends a message to the central machine concerning what programs are installed and updated.

 

Other types of management programs use a central machine as the controller. This central computer with a program on it scans each of the machines in the system applies the necessary system changes on the targeted computers in the network. This is known as agentless management in that the only requirement for the other machines is that they be connected to the network, instead of the internet as is required for agent based solutions. The agentless type of management software requires more direct supervision than the programs which reside on individual machines.

 

These alternatives have cut the cost of maintaining some security aspects of a large network. It has become popular even among home users. However, a business should consider their available bandwidth, work force, and corporate needs before deciding upon particular management program, since the differences are so striking.

No comments:

Post a Comment