Citadel Security Software Announces Support for Microsoft Network Access Protection Technology

Citadel Security Software Inc. (Nasdaq:CDSS), a leader in enterprise vulnerability management and policy enforcement through its automated vulnerability remediation (AVR) solution, Hercules(R), today announced plans to support Microsoft Network Access Protection (NAP) technology, policy enforcement technology which restricts clients from accessing a network until they can prove policy compliance. Citadel will work with Microsoft to provide an end-to-end solution that allows IT professionals to set and enforce security policies on clients seeking access to network resources, thereby reducing the risk of mobile and remote users from introducing viruses, worms and malware into the network.

Citadel's support for Network Access Protection will provide Microsoft customers with an advanced proactive security management solution for maintaining the clients' healthy security state. Hercules and Network Access Protection will monitor clients attempting to gain access to the network, check for security policy compliance, and apply vulnerability remedies to non-compliant or unhealthy machines.

"Our customers realize that patching software is only one step of a comprehensive vulnerability management solution needed to defend against costly disruptions to business from viruses, worms and malware," said Steve Anderson, a Director in the Windows Server Group at Microsoft. "Citadel's automated vulnerability remediation technology, which mitigates threats, enables our mutual customers to proactively protect their network infrastructure and prevent potential damage from fast-moving security threats."

Citadel plans to develop Hercules software components to integrate with Microsoft's Network Access Protection to ensure that clients connecting to a network are properly remediated and comply with the organizations' security policies before being allowed access to a corporate network.

Together, Hercules and Network Access Protection will provide:

-- Policy Validation -- Determine whether the computers are compliant with the company's security policy. Compliant computers are deemed "healthy" and are granted access to the network.

-- Network Restriction -- Restrict network access to computers based on their health.

-- Remediation -- Provide the necessary updates to allow the computer to "get healthy." Once healthy, the network restrictions are removed.

-- Ongoing Policy Compliance -- Monitor changes to the company's security policy or to the computer's health and dynamically determines if network restrictions are necessary.

"Most organizations face the challenge of an increasingly mobile workforce that demands 24/7 network access while ensuring all computers reconnecting to the network remain in compliance with corporate security policies and will not introduce threats into the organization's IT infrastructure," said Steve Solomon, CEO of Citadel Security Software. "Citadel's support for Network Access Protection enables us to offer an end-to-end solution interoperable with our customer's existing infrastructure that proactively controls network access and enforces policy compliance for all endpoint devices."

Citadel's Hercules is the first enterprise-class vulnerability remediation solution to automate the resolution of all classes of vulnerabilities. With the largest library of tested vulnerability remedies across Windows and UNIX platforms and interoperability with industry leading network scanners and vulnerability assessment tools, Hercules has been successfully deployed across large commercial and government enterprises.

About Citadel

Citadel Security Software Inc., a leader in enterprise vulnerability management solutions powered by AVR technology, helps enterprises effectively neutralize security vulnerabilities. Citadel's patent-pending, Common Criteria EAL 3 certified Hercules(R) technology provides users with full control over the automated remediation process, enabling efficient aggregation, prioritization and resolution of vulnerabilities detected by industry-standard vulnerability assessment tools. SecurePC(TM) and NetOFF(TM) products enable companies to enforce security policies from a single point of control. Citadel's solutions enable organizations to ensure the confidentiality of information, reduce the time and costs associated with the inefficient manual remediation process, and facilitate compliance with organizational security policies and government mandates such as FISMA, HIPAA and Gramm-Leach-Bliley legislation. For more information on Citadel, visit www.citadel.com, or contact the company at (214) 520-9292.

Safe Harbor/Forward-looking Statements:

This press release may contain forward-looking statements that are intended to be subject to the safe harbor protection provided by Section 27A of the Securities Act of 1933 and Section 21E of the Securities Exchange Act of 1934. These statements relate to future events or future financial performance and involve known and unknown risks and uncertainties that may cause actual results or performance to be materially different from those indicated by any forward-looking statements. In some cases, you can identify forward-looking statements by terminology such as "forecast," "may," "will," "could," "should," "anticipate," "expect," "plan," "believe," "potential" or other similar words indicating future events or contingencies. Some of the things that could cause actual results to differ from expectations are: the failure of Microsoft to deliver NAP or the failure of Citadel software to support NAP; the current economic and geopolitical environment; current information technology spending trends; the uncertainty of funding of government information technology security projects; a lack of Citadel operating history; uncertainty of product acceptance; uncertainty of ability to compete effectively in a new market; the uncertainty of profitability and cash flow of Citadel; intellectual property rights and dependence on key personnel; economic conditions; the continued impact of terrorist attacks, global instability and potential U.S. military involvement; the competitive environment and other trends in the company's industry; changes in laws and regulations; changes in the company's business plans; interest rates and the availability of financing; liability and other claims asserted against the company; labor disputes; the company's ability to attract and retain qualified personnel; and inflation. For a discussion of these and other risk factors, see the company's Annual Report on Form 10-KSB for the year ended December 31, 2003 and its Quarterly Report on Form 10-QSB for the quarter ended September 30, 2004. All of the forward-looking statements are qualified in their entirety by reference to the risk factors discussed therein. These risk factors may not be exhaustive. The company operates in a continually changing business environment, and new risk factors emerge from time to time. Management cannot predict such new risk factors, nor can it assess the impact, if any, of such new risk factors on the company's business or events described in any forward-looking statements. The company disclaims any obligation to publicly update or revise any forward-looking statements after the date of this report to conform them to actual results.

Editors Note: Citadel is a trademark and Hercules is a registered trademark of Citadel Security Software Inc. Product and company names herein may be trademarks of their registered owners.

Author:  

Email:    

Topic:    

Content:

Related Articles

• Citadel Security Software Appoints Bob Dix Vice President
  6 December 2004