Secure Elements ISV assessment and certification services enable ISVs to attest that their applications are FDCC compliant backed by the leading SCAP vendor and trusted partner to the Federal Government. Secure Elements will leverage the C5 Compliance Platform to assess ISV applications against baseline configurations for compliance with the FDCC profile from the NIST SCAP data stream for the targeted operating systems Microsoft XP and Vista.
The Office of Management and Budget has issued memorandums to government CIOs requiring the adoption and implementation of the secure Federal Desktop Core Configuration (FDCC) baseline for Microsoft Windows XP and Vista by February 1, 2008. These memorandums provide language for agencies to use in solicitations to ensure new acquisitions include these common security configurations and require information technology providers to certify that their products operate effectively using these configurations.
"OMB is requiring ISVs to certify their applications running on these platforms do not alter the operating systems security settings and operate as intended on the FDCC," said Andrew Bove, Chief Technology Officer at Secure Elements. "The standard installation, operation, maintenance, and patching of an ISVs software must not alter the configuration settings from the approved FDCC configuration."
"As the key contributor to the NIST SCAP data streams for Microsoft XP, Vista, and related applications, and as the leading solution provider for auditing these configurations, we have credentials that are unique to the industry", said Scott Armstrong Vice President of Marketing and Alliances at Secure Elements. "We look forward to providing ISVs with FDCC SCAP assessment and certification services for their applications via our C5 FDCC SCAP Certified Application initiative. As the ISVs go to partner for FDCC SCAP Certification, we will ensure the ISVs are compliant, and that they can attest with certainty that their applications are FDCC Ready."