Maintaining information assurance on these systems is critical and is accomplished through the information assurance vulnerability alert (IAVA) process, in which software is updated by the vendor to maintain data integrity.
Byline: sujit03 ForeScout Technologies, a market leader in access control and policy management solutions, and eEye Digital Security, a provider of integrated security and threat management solutions, today announced a teaming relationship to deliver a combined vulnerability assessment (VA) and network access control (NAC) solution to automate the process of ensuring all devices connecting to Department of Defense (DoD) networks are in compliance with Information Assurance Vulnerability Alerts (IAVA) standards and grant access based on this compliance.
This includes information assurance alerts such as Information Assurance Vulnerability Alerts (IAVA), Time Compliance Network Orders (TCNO) and others that are elements of information assurance best practices in the Department of Defense as well as Federal Information Security Management Act (FISMA) reporting.
Demonstrating its commitment to government agencies, Foundstone is pursuing Common Criteria certification and is in the process of adding support for the Information Assurance Vulnerability Alerts (IAVA) standard to Foundstone Enterprise software.
27, 2003 Support for Information Assurance Vulnerability Alerts (IAVA) & Common Criteria Standards Signal Foundstone's Growing Commitment to Government Security Foundstone, experts in strategic security, today announced its plans to enhance its risk management offerings for government agencies and organizations within the Department of Defense, with Common Criteria certification and support for Information Assurance Vulnerability Alerts (IAVA).
The STAT Information Assurance Vulnerability Alert (IAVA) compliance tool is very flexible and will be used by NMCI's industry delivery partners and the government to assess the NMCI network," said Bart Abbott, Raytheon's NMCI program manager.
In addition to the FedCIRC list, STAT Scanner searches for vulnerabilities from several other sources, including the MITRE Common Vulnerabilities and Exposures (CVE) list, the SANS/FBI Top 20 vulnerabilities list, the CERT (Computer Emergency Response Team) list, and the Information Assurance Vulnerability Alerts (IAVAs) issued by the Department of Defense (DoD) and all the military branches.
