Endpoint
3/9/2012
08:35 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

StillSecure Enables Organizations To Safely Allow Mobile Devices

Safe Access 6.0 also provides IAV reporting capabilities for its federal and DoD customers

SUPERIOR, CO, Mar 05 (MARKET WIRE) -- StillSecure, a leading managed security services provider and certified compliance company, announced today significant upgrades to its NAC solution, Safe Access. The award-winning product now allows IT administrators to quickly and safely enable the use of personal mobile devices and tablets onto corporate networks by including bring-your-own-device (BYOD) identification and enforcement capabilities.

With Safe Access 6.0, enterprises will also have the ability to identify not just mobile devices, but also game systems, printers and VoIP phones, and selectively allow or deny access to those endpoints.

Compliant, optimized and specialized for deployment in defense environments, Safe Access 6.0 will also provide IAV reporting capabilities for its Federal and DoD customers, including three of the four major military branches. By leveraging StillSecure's exclusive military-grade IAV rule set, customers can now work directly with IAV findings that are the lifeblood of DoD information assurance activity.

Instead of requiring the user to trace from a hotfix or CVE ID back to an IAV, Safe Access 6.0 reports its endpoint baseline results in the form of IAVs, providing a significant productivity boost for DoD security experts.

"These latest product enhancements end the hand wringing that is inevitably associated with letting employee mobile devices and tablets onto company networks," said James Brown, Chief Technology Officer for StillSecure. "StillSecure understands the challenges IT administrators face given the burgeoning bring-your-own-device-to-work trend. For enterprises that support an increasingly mobile staff who often need access to work via their personal devices, StillSecure provides access and monitoring capabilities for thousands of those devices to ensure a company's most critical data remains protected."

About Safe Access Safe Access is a certified NAC solution that stops unauthorized access, prevents malicious endpoint activity, and enforces an organization's security policies. It also helps companies comply with PCI, HIPAA, GLBA, FISMA and SOX. Safe Access is deployed widely in the DoD and across leading mid- to large-scale enterprises. Also, Safe Access is the NAC solution of choice for the world's largest and most demanding NAC deployment with the Department of Defense (over 700,000 end users).

Safe Access provides control over how security policies are defined and enforced across a network. Further, Safe Access defines and enforces the rules and criteria for authorizing access to the network. The solution provides numerous access control options for devices that either meet or do not meet security policy, and for either guest or unmanaged devices.

With its purpose-built baselining engine, Safe Access has unparalleled testing speed, even with a very broad test set. Safe Access can be deployed on either virtual or physical hosts.

Safe Access can be purchased directly from StillSecure or through its network of resellers.

About StillSecure StillSecure designs and delivers managed network security solutions and certified compliance solutions for IT executives facing escalating security threats and evolving compliance requirements, as well as data centers looking to cement long-term customer relationships. Unlike vendors with uncertified partial fixes or self-audited solutions, StillSecure unites security experts, certified processes and innovative technologies to provide holistic solutions that eliminate the need to juggle multiple vendors, products and requirements.

For more information, call (303) 381-3830, visit http://www.stillsecure.com or the StillSecure blog at http://www.thesecuritysamurai.com, or follow http://twitter.com/securitysamurai and http://twitter.com/stillsecure.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6117
Published: 2014-07-11
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

CVE-2014-0174
Published: 2014-07-11
Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

CVE-2014-3485
Published: 2014-07-11
The REST API in the ovirt-engine in oVirt, as used in Red Hat Enterprise Virtualization (rhevm) 3.4, allows remote authenticated users to read arbitrary files and have other unspecified impact via unknown vectors, related to an XML External Entity (XXE) issue.

CVE-2014-3499
Published: 2014-07-11
Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

CVE-2014-3503
Published: 2014-07-11
Apache Syncope 1.1.x before 1.1.8 uses weak random values to generate passwords, which makes it easier for remote attackers to guess the password via a brute force attack.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.