471 0 Kommentare HP Granted FedRAMP Authorization for Government Agencies to Use HP Fortify on Demand

WASHINGTON, DC--(Marketwired - Mar 11, 2015) - HP (NYSE: HPQ) today announced the authorization of HP Fortify on Demand by the Joint Authorization Board (JAB) of the Federal Risk and Authorization Management Program (FedRAMP), a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. As the first Security Software-as-a-Service (SaaS) offering to achieve a FedRAMP authorization, HP Fortify on Demand allows government agencies to perform security assessments of application code and web site/web services testing without requiring any additional software to install or manage.

More than 70 percent of agency breaches are due to software vulnerabilities.⁽¹⁾ When vulnerabilities are found in software, hackers and other malicious actors have the ability to infiltrate an agency's network and access sensitive information regardless of where it resides. HP Fortify on Demand addresses this by enabling agencies to continuously monitor deployed software to mitigate risk and identify critical vulnerabilities undermining their security posture.

Short

435,14€

Basispreis

2,28

Ask

× 14,78

Hebel

Zum Produkt

Long

390,07€

Basispreis

2,33

Ask

× 14,55

Hebel

Zum Produkt

Präsentiert von

Den Basisprospekt sowie die Endgültigen Bedingungen und die Basisinformationsblätter erhalten Sie bei Klick auf das Disclaimer Dokument. Beachten Sie auch die weiteren Hinweise zu dieser Werbung.

"As the soft underbelly of an agency's network, software can impose serious threats to an agency's security if vulnerabilities are not proactively identified and addressed," said Rob Roy, chief technology officer, U.S. Public Sector, Enterprise Security Products, HP. "Organizations can no longer afford to simply respond to breaches as they arise, and as the only solution of its kind available with FedRAMP certification, HP Fortify on Demand quickly addresses the root cause of vulnerabilities by securing software from conception through the entire development lifecycle."

HP Fortify on Demand is now provisionally authorized for government agency use to perform security assessments of application code and web site/web services testing, and end-to-end mobile application security testing. Static code scanning such as Java, .NET, and other major programming languages for security defects is performed in the system at the code layer followed by an audit review by an HP static auditor. Dynamic web site and web services testing combines HP WebInspect software with manual penetration testing, followed by a review from an HP dynamic tester. In total, HP Fortify on Demand offers accurate and affordable security assessments of more than 600 vulnerability categories and services, regardless of where the application resides and without any software to install or manage.

Seite 1 von 3

Seite 2 ►