SOURCE: eEye Digital Security

eEye Digital Security

August 19, 2010 15:31 ET

eEye Digital Security Extends Leadership Position in Federal Government Security Standards for SCAP, FDCC, and DISA STIGS

eEye to Expand Government Sector's Most Widely Used Vulnerability Management Solution, Will Add More Than 35 New Benchmark Tests for SCAP

PHOENIX, AZ--(Marketwire - August 19, 2010) -  eEye Digital Security, the largest provider of vulnerability management and compliance solutions to the Federal government, today announced that it will introduce more than 35 new benchmark tests for the Security Content Automation Protocol (SCAP). SCAP measures systems to find vulnerabilities and evaluate their possible impact. These tests meet the requirements of Security Technical Implementation Guides (STIGS) for the Department of Defense's (DoD) Defense Information Systems Agency (DISA), and for the Federal Desktop Core Configuration (FDCC) standard.

"eEye has written the book when it comes to vulnerability management and compliance solutions that meet government agency regulations and security standards," said Marc Maiffret, eEye CTO and co-founder. "These new capabilities will be implemented in eEye's security management console, Retina CS, a centralized security compliance and reporting platform written from the ground up to meet the needs of government customers by providing stronger support for ever-changing SCAP standards."

Agencies within the Federal government, ranging from critical national defense to civilian organizations, have benefited from the security and compliance advantages eEye has provided for over a decade. Among the leading-edge vulnerability management solutions that have helped agencies to ensure security and compliance are the following:

  • Retina.GOV: Retina.GOV provides unified vulnerability management and compliance with continuous monitoring of systems to adhere to government-related compliance and assessment standards.

  • Retina Network Security Scanner: This flagship component of Retina.GOV is SCAP certified as an FDCC Scanner, Authenticated Configuration Scanner, Authenticated Vulnerability and Patch Scanner, and Unauthenticated Vulnerability Scanner.

  • DISA STIG auditing: For more than three years, eEye has provided STIG auditing capabilities for Windows 2000, Windows 2003, Windows XP Professional and additional Microsoft systems.

  • FDCC auditing: For over a year, eEye has provided FDCC auditing capabilities for Windows XP and Windows Vista.

  • Information Assurance Vulnerability Alert (IAVA): For more than six years, eEye has been the leader in providing complete auditing capabilities, offering more comprehensive IAVA audits than any other vulnerability management provider.

New Templates Proactively Support Government Standards

The 35-plus new SCAP benchmarks will extend eEye's leadership in government compliance and reporting for DoD STIG, FDCC, Microsoft, National Institute of Science and Technology (NIST) and more. The simple functionality of the SCAP templates, together with standards support, will empower government organizations to leverage industry knowledge and keep up-to-date with industry best practices. In addition, eEye will proactively support new standards such as the Asset Reporting Format (ARF) and Asset Summary Results (ASR) as they are released.

Additional Government-Specific eEye Resources Include:

Previous Government Solutions Announcements Include:

About eEye Digital Security

Since 1998, eEye Digital Security has made vulnerability management simpler, less expensive and more effective by providing the only unified vulnerability and compliance management solution that integrates assessment, mitigation and protection into a complete offering. With a proven history of innovation, eEye has consistently been the first to uncover critical vulnerabilities and prevent their exploit. eEye leverages its world-renowned research to create award-winning solutions that strategically secure critical IT assets and the data they hold. Thousands of mid-to-large-size private-sector and government organizations, including some of the most complex IT environments in the world, rely on eEye solutions to protect against the latest known, unknown and zero-day vulnerabilities. See more at

Follow eEye Digital Security


Contact Information

  • Contact:
    Joe Franscella
    Trainer Communications
    Email Contact