OVAL -
Open Vulnerability Assessment LanguageAssuria's OVAL compatibility
declaration
Assuria Auditor, assesses host
security, detecting and reporting system security weaknesses. Assuria
Auditor measures, manages, and enforces security policies across a wide
range of operating systems using a host-to-network view of critical
systems and servers. Assuria Auditor's methodology simplifies the creation
of system security baselines for users, groups, shares, services, and
critical system files, and easily fits in with existing business
processes. Fully scalable for enterprise installations, Assuria Auditor
manages large sensor populations and comes with a Web interface for
distributed security management. Assuria Auditor issues reports designed
for both technical and managerial audiences that identify areas of
concern, the consequences of a security breach, and the remedy for each
out-of-policy, mis-configuration, or vulnerability.
Assuria Auditor is CVE-compliant and
Assuria Limited is committed to provide support for OVAL as an OVAL
Results Producer, which will allow customers to integrate Assuria Auditor
output with other OVAL-compatible "consumer" products.
Status - Planned
For more information about OVAL go to
http://oval.mitre.org/
