Retina is able to support 16 of 16 direct PCI DSS Requirements in NSS Labs PCI Suitability Testing
(Irvine, CA) September 15, 2008 — eEye Digital Security (www.eeye.com), an expert in integrated security and threat management solutions, today announced that its Retina Network Security Scanner v. 5.10 is the first vulnerability assessment scanner to be validated under the stringent PCI Suitability program by NSS Labs, a world leader in independent security product testing and certification.
“eEye Retina Network Security Scanner is an outstanding choice for several PCI environments,” said Vik Phatak, CEO, NSS Labs. “It works particularly well within e-commerce, hosting and internal data centers as well as retail storefront environments. Moreover, our testing validated that Retina is suitable for scanning internal networks, which are more complex and require a more sophisticated approach than scanners that simply test the perimeter externally.”
The NSS Labs real-world test environment includes 250 hosts with more than 25 operating systems, 200 applications and 100 patch levels. This architecture allows the PCI-suitability validation process to comprehensively test for several attributes:
NSS Labs also tested Retina’s ability to accurately identify and classify a much broader range of application vulnerabilities than normally would be required for an external vulnerability scanner. Retina successfully passed 16 of 16 DSS requirements and detected a total of 99 percent of the vulnerabilities in the extensive enterprise network at NSS Labs. The complete report can be downloaded here: http://nsslabs.com/pci-suitability/eEye-Retina-v5.10.html
“This is the most comprehensive and challenging environment of any test lab in the world, and represents extreme enterprise conditions,” said Phatak. “In our opinion, the eEye Retina Network Security Scanner is a robust vulnerability assessment scanner that should be on any short list for e-commerce and corporate data centers as well as corporate perimeters and retail storefront environments.”
eEye Digital Security VP of Product Management Morey Haber added, ”We are proud to receive the NSS Labs validation, especially where Retina is one of the first products to be tested for PCI DSS requirements support by NSS Labs. The PCI Suitability reports from NSS Labs provide empirically-validated evidence about Retina’s suitability for use in payment card networks.”
About Retina Network Security Scanner
Retina Network Security Scanner, the industry and government standard for multi-platform vulnerability management, identifies known and zero-day vulnerabilities while providing security risk assessment. These features enable security best practices, policy enforcement, remediation prioritization and regulatory audits. Retina is available as both a network security software solution and as a vulnerability management ‘shoe box’ size appliance. eEye plans to begin offering a SaaS-based offering for Retina in the near future. Details will be announced soon.
About eEye Digital Security
eEye Digital Security is the global leader in a new class of security solutions: comprehensive vulnerability management and zero-day endpoint security protection. eEye enables secure computing through world-renowned research and innovative technology, supplying the world's largest businesses with an integrated and research-driven vulnerability assessment, intrusion prevention, and client security solution. eEye's research team is consistently the first to identify new threats in the wild and our products leverage that research to deliver the insights and tools necessary to protect our customer's operating environments. For more information, please visit http://www.eeye.com
Primary Press Contact
Victor Cruz
MediaPR
(401) 349-3369 vcruz@mediapr.net
EMEA Press Contact
Ralph Klöwer
INTERFACE Relations
+49 (0) 89-552 688-66 r.kloewer@interface.pr.de
