OPSWAT Endpoint Security Integration Tools to support Trusted Network Connect (TNC) specifications to enforce Endpoint Integrity

San Francisco, CA May 2, 2006 – OPSWAT, a provider of endpoint security integration technologies and data services today announced its support of the Trusted Network Connect (TNC) open industry specifications. TNC is an architecture that specifies endpoint security compliance verification; OPSWAT will enhance its Endpoint Security Integration SDK (OESIS Local) to include support for TNC specifications that will ease implementation of the TNC standard by providers of policy enforcement products using OESIS Local.
The TNC specification mandates proactive LAN security, requiring clients attempting access to a LAN be evaluated against a set of policies and pre-determined platform configurations established by an organization’s IT department. Endpoints not in compliance with corporate security policies, such as OS patch levels, antivirus updates, or anti-spyware updates, can be blocked from accessing the network or quarantined for remediation.
The TNC subgroup of the Trusted Computing Group is comprised of leading network industry vendors and is chartered with defining and releasing an open architecture and set of standards for endpoint integrity verification. The TNC architecture enables network operators to enforce endpoint integrity policies before granting network access, across endpoints, regardless of the operating system they may be running.
“OPSWAT recognizes and supports TNC as an open, standards-based architecture for communicating integrity measurements and results between TNC clients and TNC servers,” said Benny Czarny, CEO of OPSWAT. “Several companies that have announced their intent to support TNC already embed OPSWAT OESIS Local into their products. These products use OESIS Local to collect application integrity information such as product name, version, time-stamp of last file-scan, time-stamp of last security update, and also to invoke features of the endpoint security application such as activate file system real-time protection, activate file or memory-scan and initiate application security update. Enhancement of OESIS Local with support for TNC specifications will ease integration of these policy enforcement point products with TNC servers.”
OESIS Local covers more than 400 endpoint security applications from over 35 antivirus, anti-spyware and personal firewall vendors including both well-known leading global vendors such as Microsoft, Symantec, McAfee, Trend Micro, CheckPoint, ISS as well as important regional vendors such as Beijing Rising, AhnLabs, Jiangmin, Dr. Webb and Kingsoft.
Policy point enforcement vendors who integrate OESIS Local together with OPSWAT’s OESIS Monitor and/or OESIS Integrity Data Service are provided with the means to deploy products that grant/deny access based on fine-grained challenging technology methods based on comparing application information detected on the endpoint and what is known to be current and clean with respect to that application.
When OESIS Local is combined with OESIS Monitor, policy enforcement point products can compare the currency of antivirus or anti-spyware detected on endpoints against the ten most recent security updates released by the vendor when network access.
When OESIS Local is combined with OESIS Integrity, policy enforcement point products can compare the binary integrity antivirus, anti-spyware and personal firewall applications detected on endpoints against a reference database of “clean” endpoint security application binaries.
“The growing adoption of the TNC standards simplifies the deployment of proactive security measures that minimize risk of threats gaining access to enterprise networks,” said Brian Berger, chair of the TCG marketing work group. “The TNC specifications provide a common path forward that enables these important security measures to be deployed across a wide range infrastructure. TCG welcomes the contributions OPSWAT and other companies will be making to this standards-based architecture.”
About OPSWAT
OPSWAT, Inc. (www.opswat.com) is a leading provider of endpoint security integration technologies and data services. OPSWAT customers include networking and security technology companies, system integrators and corporations seeking to detect, assess, manage and remediate security features of antivirus, anti-spyware, antiphishing anti-spam, personal firewall, browser, instant messaging and VPN client applications.
Founded in 2002, the company is headquartered in San Francisco, California, with an additional office in Herzliya, Israel.
About TCG
TCG is a not-for-profit organization formed to develop, define, and promote open standards for hardware-enabled trusted computing and security technologies, including hardware building blocks and software interfaces, across multiple platforms, peripherals, and devices. TCG specifications will enable more secure computing environments without compromising functional integrity, privacy, or individual rights. The primary goal is to help users protect their information assets (data, passwords, keys, etc.) from compromise due to external software attack and physical theft.
More information and the organization’s specifications are available at the Trusted Computing Group’s website, www.trustedcomputinggroup.org