|
Compatibility Questionnaire: ThreatGuard (Secutor Prime)
General Capability Questions |
Accuracy Questions |
Documentation Questions |
Capability Specific Questions |
Statements
Organizational InformationName of Your Organization:ThreatGuard
Web Site:Product InformationProduct/Service Name:Secutor Prime
Compatible Categories:OVAL Systems Characteristics Producer (Planned)
OVAL Systems Characteristics Consumer (Planned) OVAL Definition Consumer OVAL Results Producer OVAL Results Consumer (Planned) Product/Service Home Page:Product AccessibilityProvide a short description of how and
where your capability is made available to your customers and the public:
Secutor Prime is a desktop application that provides compliance, patch, inventory, and vulnerability scanning, as well as compliance remediation. Secutor Prime Free Edition is free for non-commercial use, and can be
downloaded from http://threatguard.com/products.htm. Secutor Prime can
be purchased through ThreatGuard's dynamic network of Value-Added
Resellers (VARs) or directly from ThreatGuard
(http://www.threatguard.com/contact.htm).
Language Version IndicationDescribe how and where the capability indicates
the version of the OVAL Language used to validate, create, or update
its content:
The Secutor Prime application will show the OVAL Schema version used in the "About" screen. This is accessed Help drop-down menu off the Secutor Prime menu bar. Approach for Correction of ErrorsIndicate how a user who discovers an error in the capability's use of OVAL can report the error:
We accept email notification of such errors. In response, we work with the reporter (where necessary) to recreate the target environment and thus recreate the error. Describe the approach to responding to the above error reports and how applicable fixes will be applied:
We apply the fix, perform regression testing across our test lab, then distribute the fix (new software or revised definition) via our centralized live-update system. All Internet-connected installations will download and install the update the next time it is instatiated. Clients with installations on closed networks can receive an update CD. Other arrangements can be made as necessary. Compatibility DocumentationProvide a copy, or directions to the location, of where the documentation describes OVAL and OVAL Compatibility for any customers:
From the Secutor Prime User's Guide About OVAL Open Vulnerability and Assessment Language (OVAL) is an international, information security community baseline standard for how to check for the presence of vulnerabilities and configuration issues on computer systems. OVAL standardizes the three main steps of the process: collecting system characteristics and configuration information from systems for testing; testing the systems for the presence of specific vulnerabilities, configuration issues, and/or patches; and presenting the results of the tests. For more information on the OVAL project, please reference "http://oval.mitre.org/about/". Details about OVAL-Compatibility can be found at "http://oval.mitre.org/compatible/index.html". Language SupportIndicate the component schemas and/or individual OVAL Tests that the capability does not support for each category of OVAL Compatibility being applied for:
ThreatGuard supports all schemas. Finding Elements Using OVALProvide details regarding how users can identify and find individual OVAL content (through OVAL-IDs) that is being consumed by the capability. For example, how can a user determine which definitions have been consumed and what the result of each definition is:
From the Secutor Prime User's Guide Finding Tests by OVAL ID The Secutor Prime find feature allows you to search for test definitions by OVAL ID. The Tools menu has a Find menu option that displays the Find dialog. To search for an OVAL ID, use the Tools --> Settings --> Assessment dialog to load vulnerabilities and set them to "Display as OVAL ID". Then in the Find dialog, enter the OVAL ID in the "Search For:" field, ensure the "Title" box is checked, and click the "Next" or "Previous" button. This will find any loaded vulnerability definition that matches your search string. OVAL Content Importation Process ExplanationIf the capability does not support consuming OVAL content at runtime, explain the documented process by which users can submit OVAL content for interpretation by the capability, including how quickly submitted content is made available to the capability:
ThreatGuard's products will accept user-defined OVAL content at runtime.
Statement of CompatibilityHave an authorized individual sign and date the following Compatibility Statement (required): "As an authorized representative of my organization I agree that we will abide by all of the mandatory compatibility requirements as well as all of the additional mandatory compatibility requirements that are appropriate for our specific type of capability."
Statement of AccuracyHave an authorized individual sign and date the following accuracy Statement (recommended): "As an authorized representative of my organization and to the best of my knowledge, there are no errors in the correctness of our capability's use of the OVAL Language and the interpretation of the logic."
Statement on Follow-on Correctness Testing SupportHave an authorized individual sign and date the following statement about your organizations willingness to support correctness testing of other capabilities, which will be managed by the Reviewing Authority and kept to reasonable levels of effort for all involved. (required): "As an authorized representative of my organization, we agree to support the Review Authority in follow-on correctness testing activities, where appropriate types of OVAL documents might need to be exchanged with other organizations attempting to prove the correctness of their capabilities."
Page Last Updated: January 25, 2007 |
|
|||||||||||||||||||
 |
||
