Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec

Federal compliance and threat detection system.

Guidance Software : 26 February, 2008  (New Product)
EnCase from Guidance Software rolls threat detection and compliance assurance into one to enable Federal Departments to meet the challenges faced through increased IT risks.
With intrusion attempts from terrorists, spies and hackers at an all-time high worldwide and the White House proposing more than $6 billion in funding to protect government networks, Guidance Software has announced new capabilities that allow federal agencies to identify, assess and remediate policy violations and vulnerabilities across the network. These capabilities are part of Guidance Software's EnCase Information Assurance solution which is designed for government agencies to protect networks, detect and successfully react to information attacks, and remediate sensitive data leakage. Guidance Software also unveiled the EnCase Bit9 Analyzer, a new product that allows federal agencies to determine the threat level of files and running processes on their networks.

Guidance Software's EnCase Information Assurance solution automates crucial Information Assurance processes, such as classified spillage auditing, auditing of system processes, incident response and even remediation. It enables government agencies to scan thousands of nodes at unprecedented speeds, understand at the deepest level what is stored or occurring on machines, and if necessary, remediate improper activity without disrupting operations. With EnCase Information Assurance, government agencies can experience significant cost and time savings and enable compliance with critical mandates, such as FISMA and DCID 6/3.

New capabilities for EnCase Information Assurance include:.

• System Audit and Compliance: This solution employs powerful forensic search and volatile data analysis capabilities to find potential threats on a system so that agencies are confident of the contents of their information assets and can identify deviations from known baselines. If unknown processes or malicious binaries are identified, users can—from a central location and without disruption to the end-system—remove the unknown or malicious programs from those computers.

• Vulnerability and Threat Assessment: This solution allows agencies to, from a central location without business disruption, assess and prove systems meet security standards as dictated by the DISA Security Technical Implementation Guides. It allows agencies to automatically and repeatedly assess their entire network to compare each machine to IAVA vulnerabilities and generate reports that detail if machines are in compliance and identify vulnerabilities if they are not.

These new capabilities, combined with the functionality already present in EnCase Information Assurance, offer a powerful solution for government agencies to support their defense-in-depth strategies. They complement:

• Data Audit and Compliance: This solution allows government agencies to conduct powerful network-enabled, targeted audits for data, such as classified spillage, without further contaminating the network. It allows users to proactively or reactively search for, identify and remediate classified data spills and confidential data leakage of any kind, including personal identifiable information and other sensitive types of data. Search criteria can include file type, file signature, keywords, metadata, hash values, and custodians.

• Automated Incident Response: This solution automates computer-related incident response and analysis across the entire network and integrates with security information management systems. When an alert meets predefined response criteria, the solution automatically takes a snapshot of the volatile data contained on target nodes, collecting and analyzing relevant incident response data. Each response is automatically triaged to confirm the event is real. If malicious or unknown activity is identified, the results are displayed in a user-friendly web portal or emailed out to provide the information needed to confirm or deny an event took place. Furthermore, the solution has the ability to reach across the network and thoroughly remediate the issue.

Guidance Software is also proud to announce the availability of the EnCase Bit9 Analyzer, a product that can be added to enhance EnCase Information Assurance to extend the latest in software identification and authentication by leveraging Bit9—the world's largest database of "hash values," which identifies files as good, bad, or unknown—to determine the trust level of files and processes on the agencies systems in support of investigations, compliance checks and audits. The EnCase Bit9 Analyzer also integrates with Guidance Software's EnCase Enterprise platform to support its ability to search, collect, preserve, analyze, and report on large amounts of data in an organisation.

"Federal CIOs are faced with the constant challenge of responding to sensitive information leaks, as well as a broad range of threats, including hacking attacks and foreign intelligence activities," said Victor Limongelli, President and CEO of Guidance Software. "CIOs also need to ensure adherence with standards, regulations and best practices as defined by FISMA, NIST and IAVA. Guidance Software's EnCase Information Assurance product helps organizations address these threats and regulations, while reducing operational costs and improving response time."

Guidance Software's launch of EnCase Information Assurance in 2007 followed a decade of leadership in digital investigation solutions for law enforcement and government agencies, as well as a successful expansion into the enterprise. Its EnCase Enterprise product is used by more than 100 of the Fortune 500 and over half of the Fortune 50. Guidance Software has also built an impressive list of government agency clients for its EnCase solutions, including the FBI, SEC, State Department, Department of Justice, Department of Defence, and others.
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo