Neoteris Instant Virtual Extranet Products Meet Stringent Application Security Evaluation By Trusecure Corporation

Neoteris’ Products Remain Only SSL VPN Solutions to Pass Independent Third-Party Security Audits Validating their Ability to Protect Enterprises’ Applications and Information

WASHINGTON, D.C. – June 3, 2003 – Neoteris, Inc., the leading instant secure application access vendor, today announced that its products meet the stringent application security evaluation standards established by TruSecure® Corporation, a global leader in security intelligence and services.

The Neoteris Access Series* product lines recently completed TruSecure’s Application Security Review (ASR). An ASR provides companies with an in-depth review of their application security controls, maps the controls against the TruSecure Essential Practices for Applications (EPA) – standards designed to analyze applications’ security risk – and makes recommendations for corrective actions. Today’s announcement is being made at the Gartner Enterprise IT Security Summit 2003 in Washington, D.C., where Neoteris is exhibiting this week in Booth No. 427.

“Enterprises are very security conscious these days, and certification of security products by independent security testing and certification houses is a competitive advantage and a driver for quality,” said John Girard, vice president and research director at Gartner. “The rapid growth of the SSL VPN market signals a need for product certification.”

According to TruSecure, “Based on this analysis, it is TruSecure’s opinion that the application’s current security posture is very effective. The Neoteris IVE products contain protective mechanisms and features that provide effective secure remote access, providing enterprises with a powerful solution to combat unauthorized access to their networks. The Neoteris IVE has an above average security architecture and security posture in securing remote access, and complies with TruSecure’s EPA. Neoteris appears committed to the IVE’s security posture and its continued improvement.”

More than a year ago, Neoteris was the first company to have its SSL VPN products audited and evaluated by independent world-class security authorities. In addition to TruSecure, Cryptography Research, Inc. (CRI), a renowned provider of technology and services for cryptography products, and Dan Farmer, a security expert and author or co-author of security software tools, including COPS, SATAN, Titan and TCT, performed extensive system security audits on the product lines. In each instance, Neoteris’ IVE products passed the stringent security audit evaluations.

“We are pleased to have continued validation of the secure position of Neoteris’ IVE secure access product lines by TruSecure, an independent world-class security authority,” said Sriram Ramachandran, Neoteris vice president of Engineering. “In this audit we have met the stringent standards of TruSecure’s broad Application Security Review. As a leading security vendor, we appreciate the credibility and integrity that certification from this respected, independent audit agency provides to our customers.

“In addition, we look forward to contributing to the development of and participating in the SSL/TLS Certification testing program being developed by TruSecure subsidiary ICSA Labs*, planned for release in the latter half of this year,” added Ramachandran.

Neoteris introduced a novel category of Secure Sockets Layer (SSL)-based secure access appliances in 2001 that changed the way organizations provision remote access to their private network resources. Through the Neoteris Access Series of IVE appliances, authorized users can gain secure remote access to network resources from any standard Web browser. As a result, users are no longer constrained to use specific machines or to work from designated locations; they can work from anywhere that they can access an Internet connection and a Web browser. This improves the end-user experience, as well as dramatically reduces the learning curve associated with implementing a new technology. Additionally, there is no need to install, configure, or maintain a client, minimizing complexity and hassle. Given the reduced support overhead implied, IT human and capital resources can be re-allocated to other areas.

The Gartner Enterprise IT Security Summit 2003 is a combination of two powerful conferences – Enterprise IT Security and SECTOR 5 – creating a single defining security event for IT professionals. The unique dual-conference focus allows attendees to choose the agenda that is most relevant to their needs. Participants can attend compelling keynote and panel sessions each morning, and spend the afternoons in Enterprise IT Security sessions or interactive SECTOR 5 best practice panelist sessions. The SECTOR 5 section includes presentations from key IT security professionals and experts from Fortune 2000 enterprises, the federal government and the nation’s critical-infrastructure entities, including Neoteris customers Merrill Lynch, Prudential Securities and Partners HealthCare. For more information, see www.gartner.com/us/itsecurity .

Neoteris IVE Secure Access Appliances

The Neoteris Access(tm) Series provides enterprise-class secure access to network resources for remote employees, customers, and partners. Contrary to traditional access technologies, there is no client software to install because Neoteris leverages SSL for secure, controlled access to resources via any Web browser. The Access appliances also eliminate the need to secure or harden servers, or make changes to existing infrastructure. The result is a more cost effective, secure access solution that is easy for customers to deploy and simple for end-users to operate.

Neoteris Access appliances provide application-layer access, stringent access controls, and granular auditing and reporting capabilities to further minimize IT headaches and security concerns. Additionally, the IVE platform offers enterprise-class high availability and performance scalability options, so secure access can be deployed on a wide scale without worrying about user downtime, lost productivity or network performance. Neoteris IVE appliances have passed rigorous security audits by TruSecure Corporation, Cryptography Research, Inc., and security and forensic computing expert Dan Farmer. The products have also won numerous awards as an innovative and compelling access solution, helping enterprises increase efficiency and productivity.

About TruSecure
TruSecure is the leading security intelligence and services provider, offering the only fully integrated enterprise risk management services on the market. TruSecure’s unique blend of proactive risk reduction with real-time security management, monitoring and response assures continuous security of critical business information assets. TruSecure Certification has become a globally recognized symbol of commitment to effective information security in an interconnected economy. Additionally, TruSecure owns the independently operated ICSA Labs® and Information Security® magazine. Headquartered in Herndon, VA, TruSecure protects more than 700 sites worldwide, with operations in North America, Central America, Europe and Asia Pacific. For more information about TruSecure Corporation, visit www.TruSecure.com http://www.TruSecure.com.

About Neoteris
Neoteris, Inc. is the leading instant secure application access vendor. With its Instant Virtual Extranet (IVE) platform, Neoteris delivers innovative, best-of-breed security products, including the award-winning Neoteris Access Series of security appliances. Founded in May 2000, Neoteris is a privately held company backed by Jim Clark, The Barksdale Group, New Enterprise Associates, Battery Ventures, and individual investors. The company is headquartered in Mountain View, Calif., and has international offices in London, Frankfurt, and Hyderabad, India. Go to http://www.neoteris.com/ for more information.




Share this