Press Release

SignaCert Releases Latest Version of Enterprise Trust Server; Receives Patent

Oct 1, 2007

New version extends capabilities of first-of-its kind independent verification and measurement solution for business and government enterprises

PORTLAND, OREGON — SignaCert, Inc., the leading provider of independent IT controls solutions, today announced a major upgrade to its Enterprise Trust Server, the only technology of its kind to definitively prove that IT systems remain exactly as intended in production. The numerous usability improvements include increased flexibility and enhanced reporting functionality, from console-based dashboards to customizable reports, which verify device integrity down to the binary level. The upgrade enables scenarios such as "exact match" that no other product can achieve.

The technology behind the Enterprise Trust Server was recently acknowledged with the issuance of United States patent #7,272,719. The patent applies to SignaCert's unique method of generating signatures and assembling them into an integrity log for integrity verification and measurement against a known and trusted reference.

"When the company launched last January, SignaCert's goal was to have the most comprehensive, detailed software verification system on the market — something no one else was — or is — doing. The patent acknowledges that SignaCert has created unique and proprietary technology," said Frank Tycksen, VP of Engineering for SignaCert. "Working with new technology, it was important that we listen to what customers had to say; the latest enhancements are a result of their input."

Key features of Enterprise Trust Server 1.5 include:

• One-to-many verification: Compares multiple devices with a single integrity reference to pinpoint deviations.
• Scalable and flexible: SignaCert's database of authentic signatures validates many scenarios required for understanding IT systems - from identifying what software versions are present on devices, to ensuring that only approved software is installed, to proving that a group of devices match their specified standard build precisely.
• Enhanced reporting: Reports deliver meaningful actionable information. A comprehensive dashboard provides high level view of which systems and devices have deviations and allows drill down to the exact device and the specific deviations. Reports are extensible; ETS allows connectivity to external reporting packages and middleware solutions.
• Fine grain visibility: Find every deviation down to the binary level, but also correlate the deviations individually or in groups to the package level: the product, application, build, or version to which is belongs.

About SignaCert

SignaCert is the leading provider of end-to-end and partner-based IT compliance solutions based on known-provenance whitelist technology. These methods allow SignaCert's direct customers to rapidly achieve and prove continuous compliance for the systems that deliver critical business services. The SignaCert architecture is designed to seamlessly integrate with existing change processes and continuously monitor critical business services without disruption.

Additionally, SignaCert's OEM and ISV Partners can supply to, or license content from, the SignaCert Global Trust Repository (GTR), adding new and important capabilities to their product offerings. All use cases are supported by a rich repository of vendor-independent software measurements. These "white" or "allow" list methods enable SignaCert's patented technology to be quickly deployed and provide immediate visibility into the actual state of IT infrastructure.

Founded in 2004 by 34-year IT security and compliance industry veteran Wyatt Starnes, SignaCert has assembled a world class team of industry leaders with hands-on IT experience for its executive team, board of directors, and advisory board.

SignaCert's end-customers span a wide variety of industries, including financial services, government, and healthcare.