SOURCE: StillSecure

October 03, 2007 09:00 ET

StillSecure Announces Support for Federal Desktop Core Configuration (FDCC) Guidelines

SUPERIOR, CO--(Marketwire - October 3, 2007) - StillSecure®, provider of secure network infrastructure software, today announced that VAM®, the company's vulnerability management platform, can be used to help Federal Agencies meet the Federal Desktop Core Configuration (FDCC) guidelines as outlined by the National Institute of Standards and Technology (NIST).

Because there are numerous detailed requirements in the FDCC guidelines, manually testing each device takes three to four hours which makes the process time consuming and error-prone. VAM eases the pain by allowing administrators to automate testing of all devices simultaneously to determine if they meet the guidelines.

The FDCC is an OMB-mandated security configuration for Microsoft Windows Vista and XP operating system software. A new VAM scan is available to test for compliance with the new guidelines. VAM scans devices for required configuration settings, delivers reports on areas of non-compliance, and provides a workflow process for tracking remediation efforts. Implementing the scan now allows ample time to conduct any remediation activities required to meet the February 2008 compliance deadline.

StillSecure is developing a similar test for Safe Access®, the company's network access control (NAC) product. The Company expects an off-the-shelf test to be available in the fourth quarter of this year to test devices for compliance with FDCC guidelines as they attempt to connect to the network. Safe Access can be configured to quarantine non-compliant devices until remediated.

"Using VAM, Federal Agencies can take advantage of consistent, timely and valuable data that provides a step-by-step process for maintaining standards outlined by the OMB," said Alan Shimel, Chief Strategy Officer at StillSecure. "It cuts down on the time required for compliance. In the long run it will not only help protect agencies against various threats, but it will also decrease operational costs and increase overall network performance."

Pricing and availability

StillSecure VAM is available from StillSecure or through any of its authorized resellers. StillSecure VAM is Common Criteria Certified and FIPS 140-2 compliant. It is sold on an annual subscription or purchase-plus-maintenance basis that includes product upgrades, rule updates, and engineer-delivered customer support. VAM is available as a software appliance (includes hardened OS) or as a preconfigured integrated hardware appliance. For a VAM trial contact StillSecure sales at

About StillSecure

StillSecure creates secure network infrastructures. By converging networking and security, StillSecure is the foundation for secure, intelligent, highly automated networks that are easy to manage and protect. StillSecure customers range from midsize companies to the world's largest enterprises and agencies in government, financial services, healthcare, education, and technology.

Contact Information