eEye Digital Security's Retina Wins SCAP Certification from National Institute o
f Standards & Technology
Retina meets NIST standards for automated vulnerability management, measurement and policy compliance. Irvine, CA, March 18, 2010 -- eEye Digital Security (http://www.eeye.com), a pro vider of unified vulnerability management (http://www.eeye.com/Solutions/Busines s-Need/Vulnerability-Assessment.aspx?src=prw&2) and compliance solutions, today announced that its Retina vulnerability management solution has received SCAP ce rtification from the National Institute of Standards & Technology. With this gov ernment validation, Retina now meets core NIST standards for automated vulnerabi lity management, measurement and policy compliance. Additionally, Retina also me ets Federal Desktop Core Configuration (FDCC) compliance standards on the Micros oft Windows XP Professional and Windows Vista operating systems. The Security Content Automation Protocol (SCAP) combines a number of open standa rds that are used to enumerate software flaws and configuration issues related t o security. The protocol measures systems to find vulnerabilities and offer meth ods to score those findings in order to evaluate the possible impact. "We are very honored to receive recognition from NIST and pleased that our engin eering efforts behind Retina has built a solution strong enough to meet U.S. gov ernment standards for automated vulnerability management, measurement and policy compliance," said Kevin Hickey, eEye CEO. In brief, Retina has been validated to meet the following SCAP capabilities: * FDCC scanning capability to audit and assess a target system to determine its compliance with FDCC requirements; * Authenticated configuration scanning capability to audit and assess a target s ystem to determine its compliance with a defined set of configuration requiremen ts using target system logon privileges; * Authenticated vulnerability and patch scanning capability to scan a target sys tem to locate and identify the presence of known vulnerabilities and evaluate th e software patch status to determine compliance with a defined patch policy usin g target system logon privileges; * Unauthenticated vulnerability scanner: the capability to determine the presenc e of known vulnerabilities by evaluating the target system over the network. The award-winning suite of powerful Retina security solutions identify known and zero-day vulnerabilities and provide intrusion prevention, security risk assess ment and mitigation, enabling security best practices, policy enforcement and re gulatory audits. Retina has the power to immediately target vulnerabilities and generate detailed reports that meet strict government-mandated compliance requir ements. eEye has been providing security technology and services to small and mid-size e nterprises and to state and federal government agencies for more than 10 years. Also announced today, eEye will debut a website devoted to government customers and end-users at http://www.eeye.com/gov For more information on SCAP, please visit: http://scap.nist.gov and http://nvd. nist.gov/scapproducts.cfm. About eEye Digital Security: Founded in 1998, eEye Digital Security is a leader in vulnerability management a nd compliance, providing the only unified solution that integrates assessment, m itigation and protection into a complete offering. eEye enables secure and compl iant computing through world-renowned research and is consistently the first to identify and protect systems from zero-day threats. eEye is a trusted advisor pr oviding network security education; product deployment services and enterprise-w ide integration. All trademarks contained within this press release are the sole property of thei r respective owners and are hereby acknowledged. Press Contact: Victor Cruz, Principal MediaPR.net, Inc Irvine, CA 92617 (401) 349-3369 vcruz@mediapr.net http://www.eeye.com