Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Tenable Earns NIST SCAP Tool Validation for Federal Desktop Core Configuration (FDCC) Audits

April 11, 2008

Columbia, MD

Tenable Network Security, Inc., the leader in unified security monitoring and creator of the popular and award-winning Nessus vulnerability scanner, announced today that Tenable’s Security Center has been validated by NIST to perform Security Content Automation (SCAP) FDCC Compliance Auditing for the Microsoft XP and Vista platforms.  

In July of 2007, the U.S. Office of Management and Budget (OMB) released a memorandum to Federal CIOs, (http://www.cio.gov/documents/FDCC_Memo.pdf) mandating that all government agencies implement the FDCC for all Windows XP and Vista desktops. In addition, all government agencies must use, when available, a NIST SCAP validated tool to audit and monitor compliance with the FDCC mandate. 

The Security Content Automation Protocol (SCAP), pronounced “Ess-Cap”, is a method for using specific standards to enable automated vulnerability management, measurement, and policy compliance evaluation (e.g., FISMA compliance). More specifically, SCAP is a suite of open standards that enumerates software flaws, security related configuration issues, and product names, measures systems to determine the presence of vulnerabilities, and provides mechanisms to rank (score) the results of these measurements in order to evaluate the impact of the discovered security issues. SCAP defines how these standards are used in unison to accomplish these capabilities.

“NIST’s SCAP tool validation is important because it provides independent, standards-based verification of the security functions delivered by the Tenable Security Center and related components,” said Ron Gula, CEO of Tenable. “Tenable is pleased to announce this validation for Security Center and to provide our current and future customers the highest level of confidence that our solutions deliver on their security promises.” 

For more information on Tenable’s validation status with NIST, please visit: http://nvd.nist.gov/validation_tenable.cfm 

For more information on how Tenable’s Security Center performs FDCC audits, please visit: http://www.tenablesecurity.com/demos/

About Tenable

Tenable®, Inc. is the Cyber Exposure company. Over 24,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. As the creator of Nessus®, Tenable extended its expertise in vulnerabilities to deliver Tenable.io®, the world’s first platform to see and secure any digital asset on any computing platform. Tenable customers include 53 percent of the Fortune 500, 29 percent of the Global 2000 and large government agencies. Learn more at tenable.com.

Contact Information:

Cayla Baker
[email protected]
(443) 539-6476

Stay up to date!

Subscribe to our email alerts for new press releases.

Subscribe for press release updates

Try for Free Buy Now

Try Tenable.io Vulnerability Management

FREE FOR 60 DAYS

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now and run your first scan within 60 seconds.

Buy Tenable.io Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

Try Nessus Professional Free

FREE FOR 7 DAYS

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.