SPYRUS
MCAFEE, INC. Announces Latest SIA Partners to Pass Interoperability Testing
New Partners Deliver Joint Interoperability
Focus 08, Las Vegas – October 20, 2008 - McAfee, Inc. (NYSE: MFE) today announced that three of its current McAfee? Security Innovation Alliance™ (SIA) partners, ArcSight, Application Security, Inc. and SenSage, have passed compatibility testing. These innovative joint solutions will help mutual customers improve their security and compliance while lowering operational costs.
ArcSight now integrates with McAfee ePolicy Orchestrator® (ePO™) to enable closed-loop security monitoring, log management and policy enforcement. By passing alerts generated from correlated events into ePO, the ArcSight SIEM Platform drives the quick detection of security threats, compliance violations and policy breaches, improving the context for targeted countermeasure, audit and remediation functions provided by McAfee security solutions. Application Security, Inc. now enables joint customers to view and report on database vulnerabilities, threats and events from the ePO console, and SenSage now provides in-depth reporting on log data from virtually any McAfee product and publishes reports directly into ePO dashboards.
To stimulate further innovation and interoperability, McAfee is also hosting its first SIA Developer Conference today, a one-day event being held in Las Vegas. As part of the Developer Conference, McAfee will be announcing the winner of its 2008 Most Innovative Technology Partner Award to the SIA partner that best leverages the McAfee security and compliance management platform to deliver joint customer value. The winner will be highlighted on the McAfee SIA Web site later today at www.mcafee.com/sia. The SIA Developer’s conference is being held in conjunction with FOCUS 08, McAfee’s user conference sponsored in part by 19 SIA partners who will either showcase their completed integrations or speak about their upcoming integrations.
In addition, McAfee has added six new partners to the SIA program, including Alcatel-Lucent, Centrify, netForensics, Prevari, Secure Elements and SPYRUS. “McAfee is investing in the SIA program to help position both McAfee and our partners for future growth,” said Joe Gottlieb, vice president of corporate strategy and technology alliances, McAfee. “We have also recently extended the program to include partners that provide authentication technologies that supplement McAfee’s data protection products. Through interoperability testing, we can together help our customers drive operational savings with ‘McAfee Compatible’ products. This makes it easier for businesses to improve their protection, manageability and overall return on their security investment with faster deployment times and faster time-to-value.”
The SIA program accelerates the development of interoperable security products and simplifies the integration of those products within complex customer environments. Through the program, these companies will integrate with McAfee ePO software, McAfee’s industry-leading security and compliance management platform, and/or McAfee Endpoint Encryption software, an enterprise-wide security solution that uses powerful encryption and strong access control to prevent unauthorized data access on desktops, laptops, and Tablet PCs as well as smartphones and PDAs.
For more information on how to apply or become a Security Innovation Alliance partner, please visit www.mcafee.com/sia.
About McAfee Inc.
SPYRUS, Inc., a Microsoft Managed ISV Partner and Microsoft Gold Certified Partner, has pioneered portable security products and solutions for the information security market since its inception in 1992. Our primary product lines of LYNKS Hardware Security Modules, Rosetta Series II smart cards and USB security devices, Hydra Privacy Card® Series II encryption and mass storage, Talisman/DS® Data Security Suite, and identity management products (Signal Identity Manager™ and SPYRUS PKI) meet customer needs for high-assurance security. Our mission is to set the standard for the new era of multinational information sharing and long-term data protection. SPYRUS, Inc. is headquartered in San Jose, CA. See www.spyrus.com for further information.McAfee, Inc., the leading dedicated security technology company, headquartered in Santa Clara, California, delivers proactive and proven solutions and services that secure systems and networks around the world. With its unmatched security expertise and commitment to innovation, McAfee(R) empowers home users, businesses, the public sector, and service providers with the ability to block attacks, prevent disruptions, and continuously track and improve their security. http://www.mcafee.com.
McAfee, ePolicy Orchestrator, ePO, Security Innovation Alliance and/or additional marks herein are registered trademarks or trademarks of McAfee, Inc. and/or its affiliates in the US and/or other countries. McAfee Red in connection with security is distinctive of McAfee brand products. All other registered and unregistered trademarks herein are the sole property of their respective owners. © 2008 McAfee, Inc. All rights reserved.
QUOTE SHEET
Partners Demonstrate Proven Commitment to Compatibility Testing:
ArcSight
The integration of the ArcSight SIEM Platform with McAfee ePolicy Orchestrator software combines the monitoring, event correlation, and archival capabilities of the ArcSight SIEM Platform with McAfee's security and compliance management capabilities, enabling security and IT professionals to quickly detect and respond to a broad range of security threats and compliance violations.
“We are proud of the powerful security event detection, compliance monitoring and remediation workflow that this compelling integration of the ArcSight SIEM Platform and the McAfee ePolicy Orchestrator software delivers,” said Jeff Scheel, senior vice president of business development at ArcSight. “The joint solution dramatically improves incident response time to a wide variety of security threats and addresses compliance for PCI, SOX, HIPAA and other regulatory requirements.”
Application Security, Inc.
The integration between McAfee ePolicy Orchestrator software and DbProtect from Application Security, Inc. allows McAfee ePO software administrators to view and report on database vulnerabilities, threats and events, thereby extending the reach of McAfee Total Protection for Endpoint Solution (ToPS) suite.
“Monitoring and compliance requirements in today's enterprise IT environments involve large quantities of sensitive data, and it’s critical for organizations to harden their security posture at the core, where the bulk of that data lives,” said Eric T. Gonzales, co-founder and director, business development and strategic partnerships, Application Security, Inc. “Our partnership with McAfee will dramatically reduce risk for IT organizations facing the mounting pressure of compliance initiatives, new attack methodologies and the economics associated with data breaches.”
SenSage
SenSage provides in-depth reporting on log data from virtually any McAfee product and can now publish reports directly into McAfee ePolicy Orchestrator dashboards. The SenSage integration allows McAfee ePO software customers to access compliance, security and summary reports without leaving ePO database.
“The SenSage data integration with ePolicy Orchestrator software opens up a whole new level of reporting capabilities,” said Dan Barahona, vice president of business development for SenSage. “The McAfee Compatible integration allows customers to access SenSage's broad log data reporting capabilities, making ePolicy Orchestrator software a single source for managing and reporting on key McAfee systems, as well as third-party products for a complete 360-degree view of user and other network activity required for compliance, security and forensic investigations.”
New Partners to the Program:
Alcatel-Lucent
Alcatel-Lucent’s OmniAccess 3500 NLG enables enterprises to oversee the security on their mobile laptops and the data they contain 24x7, regardless of the power state of the laptop. The joint solution integrates the Alcatel-Lucent OmniAccess 3500 Nonstop Laptop Guardian (NLG) with McAfee Endpoint Encryption, delivering a powerful mobile security solution for lost and stolen laptops.
“With tens of thousands of laptops lost or stolen each year, it is important that customers have the most advanced solution available to protect their data,” said Tom Burns, head of Alcatel-Lucent enterprise activities for Alcatel-Lucent Enterprise activities. “The combination of the Alcatel-Lucent always on OmniAccess 3500 Nonstop Laptop Guardian with McAfee’s Endpoint Encryption software at enterprise endpoints will deliver the ultimate solution to protect lost and stolen laptops: strong encryption with remote wipe capabilities and GPS location for laptop recovery.”
Centrify
Centrify's auditing, access control and identity management solutions centrally secure cross-platform systems, Web applications, databases and enterprise applications using Microsoft Active Directory. Working with McAfee ePolicy Orchestrator software, the Centrify Suite—comprising DirectControl, DirectAuthorize and DirectAudit—helps organizations improve IT efficiency, better comply with regulatory requirements and centrally audit and control access to heterogeneous computing environments. “By integrating access control for UNIX, Linux and Mac into Active Directory, Centrify can extend the capabilities of ePolicy Orchestrator software to simplify compliance management,” said Jim Chappell, vice president of business development for Centrify. “We are delighted at the opportunity to bring Centrify's Active Directory integration of non-Microsoft environments to ePolicy Orchestrator software customers.”
netForensics
netForensics security compliance management solutions help stop the security attacks-increasing in number and sophistication-that threaten organizations today. The netForensics' suite of nFX One products provides solutions to address external and internal threats, mitigation, event and log management and reporting. Integration with McAfee ePolicy Orchestrator software will enable customers to gain unparalleled information security management visibility, prevent costly downtime and maintain compliant operations.
“netForensics is pleased to be a part of McAfee's Security Innovation Alliance program,” said Dale Cline, president and chief executive officer of netForensics. “By leveraging the netForensics nFX One solutions to continuously monitor, correlate, filter and send critical security events to ePolicy Orchestrator software,customers gain the additional visibility needed to respond quickly to security threats with appropriate countermeasures.”
Prevari
Prevari provides information security risk management solutions. Prevari's Technology Risk Manager (TRM) measures inherent and residual risk of complex systems and environments and simulates the impact of additional compensating controls and policies.
“The ability for Prevari to calculate quantitative risk and compliance metrics via McAfee’s world class suite of risk and compliance tools enables superior risk modeling and analysis,” said Frank McLallen, vice president of sales and marketing, Prevari. “By applying TRM to measure system strength and model recommended enhancements, clients can easily determine where they should best apply their limited resources to achieve the highest level of impact.”
Secure Elements
Secure Elements, a division of Fortinet, delivers NIST SCAP Validated solutions for desktops and servers and provides enterprise visibility into security and configuration postures. Integration with McAfee ePolicy Orchestrator software will enable mutual customers to achieve rapid ROI and gain immediate insight into their enterprise security posture while enabling compliance with several regulatory standards such as FISMA, FDCC and DCID.
“Secure Elements is excited to partner with McAfee to address our mutual customers' need for our complementary compliance assessment and management functionality,” said Scott Armstrong, senior director of federal marketing at Fortinet. “This combined offering provides stronger, yet less complex, assessment and enforcement—enabling the solution to be deployed without any changes to the customer network.”
<< Top >>
--------------------------------------------------------------------------
SPYRUS Elevated to Microsoft Managed ISV Partner
Security pioneer of full disk encryption/file encryption technologies and PC Card/USB security devices extends its Microsoft Gold Certified Partner status
San Jose, California – June 23, 2008 - SPYRUS, Inc., a Microsoft Gold Certified Partner specializing in encryption-based security products, today announced that it has been elevated by Microsoft (NSDQ:MSFT) to its Managed ISV Partner program for US Public Sector business. For this program, Microsoft selects partners developing key emerging technologies, to gain mutual benefits in product direction and sales and marketing. Less than 5% of Microsoft ISV partners are included in the Managed ISV Partner program.
SPYRUS adds value to the Microsoft security framework with its hardware security devices and associated management software, addressing applications for identity management, data security and digital rights management.
SPYRUS hardware and device management software have been key to its unique selection as a Full Disk Encryption and File-Based Encryption provider to the US Department of Defense (DoD) Enterprise Software Initiative (ESI) and US General Services Administration (GSA) SmartBUY co-branded Data At Rest (DAR) program. The SPYRUS security devices include the SPYRUS Hydra PC, a unique portable, personal encryption device for user identity, secure mass storage, secure data sharing and data transport.
“SPYRUS has always had a focus on hardware-based security for Windows,” said Tom Dickens, Chief Operating Officer for SPYRUS. “The market is now recognizing the value of hardware devices as a proper basis for security applications. As a Managed ISV Partner, we will work closely with Microsoft to bring innovative solutions to customers and respond rapidly to emerging public sector data security requirements.”
<< Top >>
--------------------------------------------------------------------------
SPYRUS® Demonstrates Pocketsize PKI System at Red Hat Summit 2008
PocketCA revolutionizes enterprise digital identity lifecycle management and administration for Linux
San Jose, California – June 19, 2008 - SPYRUS, Inc. today announced that it will demonstrate its PocketCA™ complete Public Key Infrastructure (PKI) certificate system for Linux operating systems at the Red Hat Summit 2008. PocketCA is an implementation of the “Dogtag” open source project, a collection of technologies from Red Hat that enable enterprises to deploy PKI on a large scale. PocketCA puts the entire PKI system in a pocketsize trusted hardware-based security device from SPYRUS that boots on any computer, significantly reducing the complexity of deployment.
“The SPYRUS PocketCA marks a change in direction for certificate and identity management systems with an improvement over previous server-based systems that require an access-controlled computer room, large numbers of computers and a broad IT staff,” said Katrinka McCallum, vice president of Red Hat's Management and Security business. “We believe that the Dogtag project contributed to the ability of this type of innovation to be possible for the Linux market.”
SPYRUS used its Hydra PC Digital Attaché hardware-based USB encryption device to rapidly develop the new PocketCA. The PocketCA will be used to boot from an unencrypted read-only compartment on its 8GB microSD memory card to begin the start-up process of the PKI system. The Linux operating system, directory services, certificate services, critical applications and sensitive data components are always protected on a sector-based encrypted compartment located on the same 8GB microSD memory card. The CA administrator must log on to the encrypted compartment before any PKI services can run. No connectivity to a network or the Internet is required to use PocketCA, but when a connection is available, PocketCA can synchronize the pertinent data with the appropriate directories and databases.
Before PocketCA, many complex technologies and product components had to be integrated to deploy enterprise-class PKI systems for certificate issuance, revocation, directory integration, and smart card or USB token support. For over a decade, SPYRUS customers with critical infrastructure in law enforcement, government and enterprise markets have relied on its Microsoft Windows-based PKI products. To develop the PocketCA, SPYRUS used the Linux open source community, and specifically the Dogtag Certificate System project, to continue its record of innovation in the area of identity management and hardware-based security solutions. The PocketCA implementation of Dogtag is one of a suite of SPYRUS products targeted to meet an increasing demand for Linux-based solutions in the government and private sectors.
“SPYRUS has always had a focus on trusted hardware-based security and PKI technologies,” said Tom Dickens, Chief Operating Officer of SPYRUS, Inc. “We developed the PocketCA to address the limitations and inflexibility designed into most traditional PKI systems in order to support bandwidth-limited environments such as the tactical battlefield, remote critical infrastructure sites and outlying Enterprise sites. The Dogtag project proved to be invaluable to enabling SPYRUS to reach this objective in a timely and cost-effective manner.”
<< Top >>
--------------------------------------------------------------------------
SPYRUS Granted Patent for Full Disk Encryption With Pre-Boot Authentication and Configurable Access and Encryption Controls
Embodiments of the patented technology introduce new security facilities to protect data over the complete range of storage media, from enterprise systems to PCs, mobile handsets and media players.
San Jose, California – June 9, 2008 - SPYRUS, Inc. today announced that the United States Patent and Trademark Office has granted it U.S. Patent No. 7,380,140, “Providing a Protected Volume on a Data Storage Device.” The patent’s innovative pre-boot authentication methods automate full disk encryption over an entire storage device. User access rights and volume protection rules in direct access, downloading and subscriber-based applications can be configured either through central enterprise administration or by individual users.
In an embodiment of the patented technology that is activated at each start-up to validate pre-boot software integrity, cryptographic hashes are applied over the pre-boot operating system and compared to a reference hash previously stored in an encryption-protected volume. Failure of this integrity validation causes termination of system boot-up and disrupts tampering attempts. Upon validation of pre-boot integrity, user authentication and cryptographic token support can proceed and computing operation converts to a secure mode in which the data can be accessed from the protected volume.
Other embodiments of the patented technology enable either full disk encryption or the ability to divide storage media into full disk encrypted and plaintext (unencrypted) volumes. The technology can be used with most data memory products for secure storage of data and system files, swap files, temp files, streams and applications, such as disks or disk arrays, SD memory cards, flash memory, and SSD drives.
Separate data encryption/decryption rules can be set for each protected volume, and user access rights can be individually assigned. This provides enterprises with the flexibility to implement selective policies to control data security and access.
Embodiments of the patented technology provide multiple advantages for enterprise data storage protection. All data can be encrypted automatically as it is written to designated volumes, without user intervention. Data can be moved in encrypted form to secondary mass storage devices for back-up or disaster-recovery. This prevents the vulnerability of most encrypting hard drives, where data must be decrypted to plaintext, moved to a back-up storage device, and then re-encrypted. The new technology saves both time and costly equipment resources for enterprise data security management.
In cell phones and media players, individual protected memory regions can be set and reset as needed to permit secure downloading of content such as music, video and movies. To offer additional powerful protection for content distribution, multiple layers of encryption can be independently provided, one at the volume level, where the encryption key can be based on the host device or memory identification parameters, one associated with the specific content and the content provider’s user access rights policies, and one associated with user identification and authentication.
“We’ve been addressing the needs for data security to protect sensitive business data and content distribution of consumer entertainment media since 1993,” said Tom Dickens, Chief Operating Officer of SPYRUS, Inc. Pointing out the advantages of its early innovation security technology, Mr. Dickens added, “Our mobile data security, secure data storage, and digital rights management products and solutions incorporate patents from an extensive security patent portfolio that we began building 15 years ago. Today, in collaboration with strategic partners, our IP licensing program creates opportunities for media content providers and data storage product suppliers to offer superior security performance and expanded operational features in their solutions.”
<< Top >>
--------------------------------------------------------------------------
SPYRUS Announces Additional Patent For Enforcing Access to a Computing Resource Using a Licensing Attribute Certificate
San Jose, California, May 1, 2008 - SPYRUS, Inc., an innovator in identity management and high-security hardware and software cryptography, today announced that the United States Patent and Trademark Office has granted U.S. Patent No. 7,356,692 for technology that enforces access to a computing resource using a Licensing Attribute Certificate. Today’s patent is a continuation of SPYRUS Pat. No. 6,904,523. This technology is also patented by SPYRUS in Australia (Australian Patent No. 776027, issued December 9, 2004). This new patent adds to the broad patent portfolio that SPYRUS holds in the United States and abroad, and enables the unique security features of SPYRUS product solutions for secure authentication, conditional access, data protection, and rights management of digital content.
Many of these patents were filed prior to 2000 and are at the core of SPYRUS product solutions.
The invention covered by today’s patent provides a method for enforcing access by a computer application to a computing resource controlled by a trusted computing base, using standards-based public key techniques. The invention uses strong authentication to enforce that access control, thus overcoming the complexities in the data exchanges involved in previous systems. The invention also provides strong authentication in the use of a computing resource by a computer application, and eliminates most security risks associated with systems which implement secret key approaches.
This invention is the basis for certain unique proprietary features of the SPYRUS Signal Identity Manager™ and PKI System that enable control of the operation and expansion upgradability of field installed PKI systems and for customizing operation of the system and the use of the generated digital certificates to be optimized to reflect the business processes of each customer.
|
