Company
Solutions Demo

Learn how SignaCert solutions create a more stable IT environment while reducing costs. Register

Press Release

Media Advisory: SignaCert to present at 3rd Annual Security Automation Conference hosted by NIST

Sept 18, 2007

SignaCert, the leader in independent IT controls, will be speaking this Thursday, September 20, 2007 at the 3rd Annual Security Automation Conference, hosted by NIST, DISA, and NSA, taking place Sept. 19-20, 2007 in Gaithersburg, Maryland. Learn more at http://nvd.nist.gov/scap/docs/SCAP_Agenda_2007.pdf.

SignaCert's talk will focus on FDCC and SCAP compliance using a positive security model and will give a brief overview of the "Positive Model" as it applies to SCAP and FDCC, and what's missing. While SCAP covers the configuration, security posture, and application settings of a platform, there is still a set of the configuration that is not controlled or governed by the configuration of the platform. That is the platform components themselves, such as binaries, images, libraries, and other data elements that do not reside in a second order control point.

This is where SignaCert comes in. SignaCert's product is an independent IT control that measures, proves and verifies that the system applications are exactly the same in ongoing production as they were when they were deployed. This ongoing independent monitoring increases system security, improves availability of critical IT infrastructure, and fulfills critical compliance and auditing requirements. Find out how during the talk.

About SignaCert

SignaCert is the leading provider of end-to-end and partner-based IT compliance solutions based on known-provenance whitelist technology. These methods allow SignaCert's direct customers to rapidly achieve and prove continuous compliance for the systems that deliver critical business services. The SignaCert architecture is designed to seamlessly integrate with existing change processes and continuously monitor critical business services without disruption.

Additionally, SignaCert's OEM and ISV Partners can supply to, or license content from, the SignaCert Global Trust Repository (GTR), adding new and important capabilities to their product offerings. All use cases are supported by a rich repository of vendor-independent software measurements. These "white" or "allow" list methods enable SignaCert's patented technology to be quickly deployed and provide immediate visibility into the actual state of IT infrastructure.

Founded in 2004 by 34-year IT security and compliance industry veteran Wyatt Starnes, SignaCert has assembled a world class team of industry leaders with hands-on IT experience for its executive team, board of directors, and advisory board.

SignaCert's end-customers span a wide variety of industries, including financial services, government, and healthcare.