Trusted Computer Solutions, a developer of security applications that run on the Linux OS, announced new compliance features for both the standalone and enterprise versions of Security Blanket. Security Blanket is a system lock-down and security management solution that enables system administrators to automatically configure and enhance the security levels of Linux systems.
The new features of Security Blanket provide compliance guidelines for organizations with industrial control systems (ICS), companies that process credit card transactions, and government agencies accessing classified data. Security Blanket’s new compliancy lock-down profiles include:
Payment Card Industry Data Security Standard (PCI DSS) profile
This profile helps organizations prevent credit card fraud and other security threats. A company processing, storing, or transmitting payment card data must be PCI DSS compliant or risk losing the ability to process credit card payments and being audited and/or fined. As merchants and payment card service providers must validate their compliance periodically, Security Blanket offers an automated tool for helping to maintain this compliancy.
Critical Infrastructure Protection (CIP) profiles
The North American Electric Reliability Corporation (NERC), formed by the Federal Energy Regulatory Commission (FERC), has established a set of CIP security standards that are mandated requirements for United States electricity distributors. The Department of Homeland Security has mandated that utility and energy companies comply with CIP guidelines by 2010. Security Blanket can now automatically lock down the operating system, disabling all unused ports and services; restricting ICS user privileges and access; establishing audit trails; providing baseline comparisons to identify system configuration changes; and ensuring system compliancy even when the application of patches changes the system configuration resulting in compromised security.
Government Profiles – Joint Air Force Army Navy (JAFAN) and the Director of Central Intelligence Directive (DCID) 6/3
JAFAN is responsible for establishing the security policies and procedures for storing, processing and communicating classified Department of Defense (DoD) Special Access Program (SAP) data. DCID 6/3 is the certification and accreditation process used by federal agencies working on intelligence projects. Specifically, information technology projects that require that anyone working on them has a top secret, sensitive compartmentalized information (SCI) clearance use the DCID 6/3 process. The latest version of Security Blanket has all of the lock down requirements associated with JAFAN and DCID 6/3 built in as lock down profiles.