|By Business Wire||
|April 29, 2014 09:05 AM EDT||
Red Hat Inc. (NYSE: RHT), the world’s leading provider of open source solutions, today announced that OpenSCAP 1.0.8 has been certified by the National Institute of Standards and Technology’s (NIST) Security Content Automation Protocol (SCAP) 1.2 in the Authenticated Configuration Scanner category with the Common Vulnerabilities and Exposure (CVE) option. The new certification adds Red Hat to a short list of vendors qualified for the large, complex SCAP standard, making OpenSCAP and Red Hat driving forces in the security space.
A synthesis of interoperable specifications based on in-depth community collaboration, SCAP provides an overarching security checklist that all security vendors supporting the standard can utilize. The standard defines common operations for security scanners, providing for security content that can be written once and run correctly on another certified scanner, allowing repeatable security assessments to be done quickly and continuously for policy compliance. Created more than five years ago, OpenSCAP is Red Hat’s open source community project to address these standards.
Delivered as part of the Red Hat Enterprise Linux platform, OpenSCAP provides a library that can parse and evaluate each component of the SCAP standard. The library approach allows for the swift creation of new SCAP tools rather than spending extensive time learning existing file structure and content. OpenSCAP offers a multi-purpose tool designed to format content into documents or scan the system based on this content. DISA STIG, NIST's USGCB, and Red Hat's Security Response Team's content (as well as anything authored to SCAP standards) are all supported by OpenSCAP, and the project has also been integrated with Red Hat Satellite and a content tailoring program called scap-workbench.
Gunnar Hellekson, chief strategist, U.S. Public Sector, Red Hat
“SCAP is a valuable tool for maintaining a secure, consistent computing environment, and it would be a shame if you could only take advantage of this open standard with expensive, proprietary tools.” We believe in open standards, and we believe in the continuous, repeatable security process SCAP makes possible. That's why we're proud to offer this certified, open source SCAP tool. OpenSCAP will make it much easier for agencies to add verifiable, repeatable scanning to their security process.”
Stephan Mueller, atsec, Team Lead
“Red Hat's development team did a great job implementing the sizable and challenging requirements from the SCAP standard for 32 bit and 64 bit Linux systems.”
- Learn more about OpenSCAP
- Learn more about SCAP Validation
- Learn more about the NIST Security Content Automation Protocol
Connect with Red Hat
- Learn more about Red Hat
- Get more Red Hat news or subscribe to the Red Hat news RSS feed
- Follow Red Hat on Twitter
- Join Red Hat on Facebook
- Watch Red Hat videos on YouTube
- Join Red Hat on Google+
About Red Hat, Inc.
Red Hat is the world's leading provider of open source software solutions, using a community-powered approach to reliable and high-performing cloud, Linux, middleware, storage and virtualization technologies. Red Hat also offers award-winning support, training, and consulting services. As the connective hub in a global network of enterprises, partners, and open source communities, Red Hat helps create relevant, innovative technologies that liberate resources for growth and prepare customers for the future of IT. Learn more at http://www.redhat.com.
Certain statements contained in this press release may constitute "forward-looking statements" within the meaning of the Private Securities Litigation Reform Act of 1995. Forward-looking statements provide current expectations of future events based on certain assumptions and include any statement that does not directly relate to any historical or current fact. Actual results may differ materially from those indicated by such forward-looking statements as a result of various important factors, including: risks related to delays or reductions in information technology spending; the effects of industry consolidation; the ability of the Company to compete effectively; the integration of acquisitions and the ability to market successfully acquired technologies and products; uncertainty and adverse results in litigation and related settlements; the inability to adequately protect Company intellectual property and the potential for infringement or breach of license claims of or relating to third party intellectual property; the ability to deliver and stimulate demand for new products and technological innovations on a timely basis; risks related to data and information security vulnerabilities; ineffective management of, and control over, the Company's growth and international operations; fluctuations in exchange rates; and changes in and a dependence on key personnel, as well as other factors contained in our most recent Annual Report on Form 10-K (copies of which may be accessed through the Securities and Exchange Commission's website at http://www.sec.gov), including those found therein under the captions "Risk Factors" and "Management's Discussion and Analysis of Financial Condition and Results of Operations". In addition to these factors, actual future performance, outcomes, and results may differ materially because of more general factors including (without limitation) general industry and market conditions and growth rates, economic and political conditions, governmental and public policy changes and the impact of natural disasters such as earthquakes and floods. The forward-looking statements included in this press release represent the Company's views as of the date of this press release and these views could change. However, while the Company may elect to update these forward-looking statements at some point in the future, the Company specifically disclaims any obligation to do so. These forward-looking statements should not be relied upon as representing the Company's views as of any date subsequent to the date of this press release.
Red Hat and Red Hat Enterprise Linux are trademarks of Red Hat, Inc., registered in the U.S. and other countries. Linux® is the registered trademark of Linus Torvalds in the U.S. and other countries.
WebRTC services have already permeated corporate communications in the form of videoconferencing solutions. However, WebRTC has the potential of going beyond and catalyzing a new class of services providing more than calls with capabilities such as mass-scale real-time media broadcasting, enriched and augmented video, person-to-machine and machine-to-machine communications. In his session at @ThingsExpo, Luis Lopez, CEO of Kurento, will introduce the technologies required for implementing thes...
Sep. 2, 2015 02:15 PM EDT
Sep. 2, 2015 02:00 PM EDT Reads: 816
Sep. 2, 2015 02:00 PM EDT Reads: 1,570
Consumer IoT applications provide data about the user that just doesn’t exist in traditional PC or mobile web applications. This rich data, or “context,” enables the highly personalized consumer experiences that characterize many consumer IoT apps. This same data is also providing brands with unprecedented insight into how their connected products are being used, while, at the same time, powering highly targeted engagement and marketing opportunities. In his session at @ThingsExpo, Nathan Trel...
Sep. 2, 2015 02:00 PM EDT Reads: 261
Whether you like it or not, DevOps is on track for a remarkable alliance with security. The SEC didn’t approve the merger. And your boss hasn’t heard anything about it. Yet, this unruly triumvirate will soon dominate and deliver DevSecOps faster, cheaper, better, and on an unprecedented scale. In his session at DevOps Summit, Frank Bunger, VP of Customer Success at ScriptRock, will discuss how this cathartic moment will propel the DevOps movement from such stuff as dreams are made on to a prac...
Sep. 2, 2015 02:00 PM EDT Reads: 249
Sep. 2, 2015 01:45 PM EDT Reads: 1,551
SYS-CON Events announced today that HPM Networks will exhibit at the 17th International Cloud Expo®, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. For 20 years, HPM Networks has been integrating technology solutions that solve complex business challenges. HPM Networks has designed solutions for both SMB and enterprise customers throughout the San Francisco Bay Area.
Sep. 2, 2015 01:30 PM EDT Reads: 937
The 17th International Cloud Expo has announced that its Call for Papers is open. 17th International Cloud Expo, to be held November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA, brings together Cloud Computing, APM, APIs, Microservices, Security, Big Data, Internet of Things, DevOps and WebRTC to one location. With cloud computing driving a higher percentage of enterprise IT budgets every year, it becomes increasingly important to plant your flag in this fast-expanding bu...
Sep. 2, 2015 01:30 PM EDT Reads: 1,634
SYS-CON Events announced today that the "Second Containers & Microservices Expo" will take place November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. Containers and microservices have become topics of intense interest throughout the cloud developer and enterprise IT communities.
Sep. 2, 2015 01:30 PM EDT Reads: 620
Sep. 2, 2015 01:15 PM EDT Reads: 1,617
Sep. 2, 2015 12:45 PM EDT Reads: 201
Sep. 2, 2015 12:45 PM EDT Reads: 1,556
Sep. 2, 2015 12:45 PM EDT Reads: 191
Sep. 2, 2015 12:21 PM EDT
Sep. 2, 2015 12:15 PM EDT Reads: 410