Citadel Security's Hercules Sets the Standard for Multibillion Dollar Automated Vulnerability Remediation Market Category.Business Editors/High-Tech Writers DALLAS--(BUSINESS WIRE)--Dec. 9, 2002 Category Validated by Aberdeen Group Aberdeen Group is a provider of business-related research services. It has its headquarters in Boston, Massachusetts and belongs to the Harte-Hanks group. Founded in 1988, Aberdeen's research is used by over 2. Provides Solution to Problem Claiming in Excess of $2 Billion in IT Operational Expense Annually In the November 2002 white paper released today, Aberdeen names Citadel Security Software Inc. (OTCBB OTCBB See OTC Bulletin Board (OTCBB). :CDSS CDSS California Department of Social Services CDSS Clinical Decision Support Systems CDSS Country Dance and Song Society CDSS Canadian Down Syndrome Society CDSS Community Day Secondary Schools (Malawi) ) as the first and only supplier to deliver an open and extensible automated vulnerability remediation solution. "Automated Vulnerability Remediation--the Cure for Security's Common Cold" identifies a costly problem for IT organizations today: the inability to fix the overwhelming number of security vulnerabilities in a timely fashion. Worldwide, enterprises currently spend in excess of $2 billion annually just for the deployment of security patches A fix to a program that eliminates a vulnerability exploited by malicious hackers. See vulnerability and patch. , representing a fraction of the vulnerabilities facing the enterprise. The paper identifies products in the Automated Vulnerability Remediation (AVR (Automatic Voltage Regulation) See voltage regulator. ) category that are the first to enable IT managers to actually resolve the thousands of vulnerabilities identified by assessment tools, and provide an efficient and effective answer to a multibillion dollar problem. "Using manual approaches to deal with the growing number of IT security vulnerabilities is a recipe for disaster for all but the smallest organizations," said Eric Hemmendinger, research director for security and privacy at Aberdeen Group. "Automated vulnerability remediation is the only way to close the resulting windows of vulnerability quickly enough to protect the enterprise. Citadel's Hercules is a stellar example of a comprehensive, automated vulnerability remediation solution that provides flexibility for IT administrators through the use of flexible automation instead of brute force (programming) brute force - A primitive programming style in which the programmer relies on the computer's processing power instead of using his own intelligence to simplify the problem, often ignoring problems of scale and applying naive methods suited to small problems directly automation." Vulnerability remediation is not limited to installing patches, but rather encompasses the entire scope of IT vulnerabilities, including software defects, insecure user accounts, unnecessary services such as telnet, backdoors such as BackOrifice and SubSeven, as well as misconfigurations. Organizations have invested heavily in assessment tools that identify vulnerabilities across their networks. However, with the number of vulnerabilities growing exponentially each year, administrators do not have the time or resources to resolve the excess of vulnerabilities as soon as they are identified, let alone on a routine basis for ongoing security. In the paper, Aberdeen recommends the following best practices for achieving comprehensive security: -- Find the vulnerabilities, -- Assess the exposure caused by the vulnerabilities, -- Prioritize the response to the vulnerabilities, -- Remediate the vulnerabilities, and, -- Repeat regularly. Executed manually, this process is impractical. Citadel raises the bar on security best practices, providing users with the technology to assess and remediate re·me·di·a·tion n. The act or process of correcting a fault or deficiency: remediation of a learning disability. re·me vulnerabilities quickly and effectively. For the full Executive White Paper report, visit www.citadel.com/aberdeen. "This report validates our assessment of the market opportunity for Hercules as the only viable technology that meets all the needs of enterprise users, government agencies and healthcare organizations who have no choice but to automate their vulnerability remediation processes," said Steve Solomon, CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. of Citadel. "Hercules users will realize immediate time and cost savings as they integrate our automated vulnerability remediation technology into their best practices for taking action on security vulnerabilities. Citadel is well positioned to lead adoption of this new class of security products and spearhead the growth of this multibillion dollar market." Citadel's patent-pending Hercules technology provides users with full control over the automated remediation process, enabling efficient aggregation, prioritization and trusted resolution of vulnerabilities. Interoperable with industry-standard scanners such as eEye Digital Security eEye Digital Security is a company that specialises in analysis and prevention of security vulnerabilities in software. Founded by Firas Bushnaq and Marc Maiffret in 1997, the company has been credited by Microsoft with bringing a number of security vulnerabilities to their (Retina retina: see vision; eye. retina Layer of nerve tissue covering the back two-thirds of the eyeball. Light focused onto the retina by the lens of the eye stimulates two types of light-sensitive cells: rods, which are sensitive to low light levels, and Scanner), Harris Corporation Harris Corporation NYSE: HRS is an international communications equipment company that produces wireless equipment, electronic systems, and both terrestrial and spaceborne antennas for use in the government, defense, and commercial sectors. (STAT Scanner), Internet Security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. Systems (Internet and Systems Scanners), Microsoft, Nessus, Network Associates (CyberCop Scanner), and Qualys (QualysGuard), Hercules remediates all classes of security vulnerabilities, from internal policy breaches to software defects and external perimeter threats. About Citadel Citadel Security Software Inc. (OTCBB:CDSS) develops, markets and licenses computer security and privacy software for one of the fastest growing software industry segments today--security inside the firewall. Citadel's Winshield(R) SecurePC(TM) and NetOFF(TM) products enable companies to enforce security policies from a single point of control. Citadel's Hercules' product remediates vulnerabilities from the five classes of security vulnerabilities: insecure accounts, unnecessary services, mis-configurations, back doors and software defects. Hercules' open architecture design allows the import and aggregation of assessment data from many sources. Hercules is interoperable with industry leading vulnerability assessment A Department of Defense, command, or unit-level evaluation (assessment) to determine the vulnerability of a terrorist attack against an installation, unit, exercise, port, ship, residence, facility, or other site. tools, allowing customers to address the real world issues of vulnerability assessment and remediation. Citadel's products also address the initiatives of the President's National Strategy to Secure Cyberspace In the United States government, the National Strategy to Secure Cyberspace, is a component of the larger National Strategy for Homeland Security. The National Strategy to Secure Cyberspace was drafted by the Department of Homeland Security in reaction to the September 11, 2001 and the mandates of HIPAA (Health Insurance Portability & Accountability Act of 1996, Public Law 104-191) Also known as the "Kennedy-Kassebaum Act," this U.S. law protects employees' health insurance coverage when they change or lose their jobs (Title I) and provides standards for patient health, and Gramm-Leach-Bliley legislation for the healthcare and financial industries. Further information about Citadel Security Software and its products can be accessed at its website, www.citadel.com. Safe Harbor/Forward-looking Statements: Except for the historical information contained herein, this news release contains forward-looking statements forward-looking statement A projected financial statement based on management expectations. A forward-looking statement involves risks with regard to the accuracy of assumptions underlying the projections. that are subject to risks and uncertainties, including lack of Citadel operating history, uncertainty of product acceptance, uncertainty to compete effectively in a new market category and the uncertainty of profitability and cash flow of Citadel. These risks and uncertainties may cause actual outcomes and results to differ materially from expectations in this press release. The research performed by Aberdeen was underwritten by Citadel. These and other risks are detailed from time to time in CT Holdings' and Citadel's SEC reports, including CT's report on Form 1O-KSB for the year ended December 31, 2001 and most recent Form 10-QSBs, as well as Citadel's Registration Statement on Form 10-SB and amendments and most recent Form 10-QSBs. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion