Secure Elements, the industry leader in standards-based IT audit and compliance management, and SignaCert Inc., the forefront provider of independent IT controls solutions, today announced a joint marketing and product development agreement through which the two firms will deliver the first complementary NIST Security Content Automation Protocol (SCAP) solution that combines positive attestation of SCAP configuration audits and the associated binary/library implementations.
On June 1st, 2007 the Office of Management and Budget (OMB) mandated that providers of information technology shall certify applications are fully functional and operate correctly as intended on systems using the Federal Desktop Core Configuration (FDCC) by Feb 1, 2008. On July 31st, 2007 OMB required that NISTs Security Content Automation Protocol (S-CAP) be utilized by industry and government in support of this initiative. SCAP measures systems against configurations, but falls short of ensuring that the components are authentic, and un-tampered.
"SignaCert is actively involved with SCAP to help not only facilitate rapid adoption, but to help present a Positive Security Modelas an extension to the project," said Wyatt Starnes, Founder and CEO, SignaCert. "Together with Secure Elements we will deliver significant and immediate value to customers by enabling file based, positive attestation of FDCC image and general platform elements, definitively proving, against verifiable platform standards, that systems are deployed and configured as intended."
Secure Elements offers the only enterprise solution that works directly with the SCAP content, enabling Federal agencies to meet the OMB Mandate for FDCC compliance. By partnering with SignaCert which can independently verify and validate applications at the binary level the two companies are now uniquely positioned to offer Federal agencies a comprehensive, end-to-end, SCAP solution that enables full compliance with the FDCC.
"Secure Elements is always seeking out complimentary technologies that not only enhance our SCAP offering, but also simplify and improve the IT security compliance process for our Federal customers," said Ned Miller, President and CEO, Secure Elements. "In working closely with Federal agencies and understanding their pain points when it comes to achieving FDCC compliance, it became clear that partnering with SignaCert would create tremendous synergies between our two companies, and, for the first time, will provide customers with a single solution for achieving SCAP compliance with certification at the binary level."