January 3, 2011
Tenable Network Security, Inc., the leader in Unified Security Monitoring and creator of the popular and award-winning Nessus vulnerability scanner, announced today that Tenable SecurityCenter 4 has been validated by NIST to perform Security Content Automation (SCAP) FDCC Compliance Auditing for the Microsoft Windows XP and Vista platforms. Tenable SecurityCenter was one of the original solutions to receive FDCC certification. Certification of the latest version of Tenable SecurityCenter allows U.S. Government agencies to utilize Tenable’s latest innovative features to meet FDCC compliance.
In July of 2007, the U.S. Office of Management and Budget (OMB) released a memorandum to Federal CIOs mandating that all government agencies implement FDCC for all Windows XP and Vista desktops. In addition, all government agencies must use, when available, a NIST SCAP validated tool to audit and monitor compliance with the FDCC mandate.
SCAP is a suite of open standards that enumerates software flaws, security related configuration issues, and product names, measures systems to determine the presence of vulnerabilities, and provides mechanisms to rank (score) the results of these measurements in order to evaluate the impact of the discovered security issues. SCAP defines how these standards are used in unison to accomplish these capabilities.
“NIST’s SCAP tool validation is important because it provides independent, standards-based verification of the security functions delivered by Tenable’s SecurityCenter suite,” said Ron Gula, CEO of Tenable. “Tenable is pleased to announce this validation for SecurityCenter 4 and we are committed to supporting NIST's Federal Desktop Core Configuration standards and delivering solutions that help make government agencies both secure and compliant.”
For more information on Tenable’s validation status with NIST, please click here.
For more information on how Tenable SecurityCenter 4 performs FDCC audits, please visit the Videos section on our website.