"Secure Elements is proud to help support the security needs of the US Government community, said Scott Armstrong, VP of Marketing and Alliances at Secure Elements. While we provide our customers these vulnerability and compliance checks as part of our real-time NIST SCAP Validated Database feeds, we also have made a commitment to the broader IA community to provide access to SCAP vulnerability checks for emerging vulnerabilities. While most vendors today offer only proprietary checks and methodologies, and often do not provide open public access to this content, we believe that the best interest of the community, and national security, is served by contributing to the OVAL Repository and the National Vulnerability Database (NVD).
"This recognition reflects our commitment to author and contribute to industry leading, publicly available security content initiatives," said Scott Carpenter, Chief Security Architect for Secure Elements. We have contributed content for auditing the Federal Desktop Core Configuration (FDCC) for Microsoft Windows XP and Windows Vista, and continue to contribute vulnerability checks on a near real time basis to the OVAL Repository. As the first vendor to become NIST SCAP Validated for providing a Vulnerability Database, Secure Elements is recognized as the authoritative "go to" source for content, products and services based upon open standards."
"The OVAL Repository Top Contributor Award is reserved for organizations that assist in making the OVAL Repository a gold standard for open information security content," said Jon Baker of the MITRE Corporation and part of the group moderating OVAL. "Secure Elements is recognized today for their invaluable content submissions of new definitions and enhancements to existing Repository content."
OVAL is an international, information security community standard that promotes open and publicly available security content and standardizes the transfer of this information across security tools and services. The OVAL Repository, hosted by The MITRE Corporation, contains OVAL content that organizations can use to determine the presence of a specified software vulnerability, configuration issue, program or patch.
In addition to authoring and contributing content to ISAP that is compliant with the NIST Security Content Automation Protocol (SCAP), the Secure Elements C5 Compliance Platform was recently selected for government-wide use by the 27 Presidents Management Agenda (PMA) Scorecard Agencies for FDCC Scanning and OMB reporting, and is the first solution that enables SCAP Validated enterprise-class automated and continuous monitoring of IT security controls.