Forescout CounterACT – First NAC Solution to be Added to U.S. Army’s Approved Products List
CounterACT Helps Federal and Enterprise Customers Thwart Cyber Attacks by Detecting & Blocking Non-compliant Laptops, Printers, USB and other IP Devices
Cupertino, Calif. – December 16, 2008 – Forescout Technologies, a market leader in network access control (NAC) and policy management solutions for large enterprises, today announced that its CounterACT® network access control (NAC) solution has been added to the United States Army Information Assurance Approved Products List (AIAAPL). It is the first NAC solution to be added to the AIAAPL.
“The addition of our CounterACT CT-1000 solution to the AIAAPL demonstrates our product has been rigorously tested and proven to meet the Army’s high standards for security, ease of use and deployment, low end-user impact, and interoperability with existing remediation solutions and infrastructure requirements," said Gord Boyce, president of Forescout Technologies. “Forescout continues to partner with customers across all verticals to deliver products that meet and exceed their network security requirements. This is another milestone in CounterACT’s three-year history of achievements with the Department of Defense (DoD), such as successful testing at the Army Technology Integration Center (TIC), FIPS-140-2 Level 2 compliance, receipt of Common Criteria certification (Evaluation Assurance Level 2, with EAL4 pending), and more."
Much of CounterACT’s success in the DoD and other Federal accounts has to do with its ability to see every IP device connected to the network, control all connections down to the switch port, and provide complex policies to enable and enforce security processes and standards. Access control is performed without the need to first deploy 802.1x, and enforcements can include actions such as post-connection monitoring for threat prevention, detection/blocking of banned devices (such as USBs in the DoD).
For instance, with the CounterACT Scan-to-Connect™ IAVA-Compliance integration module, any device or user connecting to IT resources can be detected, scanned for groups of vulnerabilities, and granted access in accordance with organizational standards. “Our mutual DoD customers use the Forescout CounterACT Scan-to-Connect IAVA-Compliance plug-in with the eEye Retina Network Security Scanner to complete real-time IAVA (Information Assurance Vulnerability Alerts) compliance scans of connecting devices," said Morey Haber, vice president of business development, eEye Digital Security. “With our joint solution, any DoD network user attempting to connect using an out-of-compliance device can be automatically detected and blocked, or placed in a quarantine VLAN for remediation before it is allowed to fully connect to the production network. Remediation steps can include OS updates, security patches or anti-virus software installation/updates. This eliminates laptop vulnerabilities in real-time and preserves the vital uptime of DoD networks."
The CounterACT platform also includes USB detection and blocking capabilities in use by DoD customers today, which will be demonstrated in a public webinar this Thursday, December 18, 2008 at 10:30AM EST. To join this webinar, please register today at: www.forescout.com/USBwebinar.
About Forescout Technologies, Inc.
Forescout is the leading provider of access control and compliance solutions. With top-tier customers from every vertical, Forescout has perfected the art of providing strong access control without disrupting network operations or needlessly punishing end users. Forescout’s flagship product, CounterACT, protects over 500 of the world’s most secure enterprises and military installations with global deployments spanning 37 countries. The CounterACT family of products provides a path to complete security policy enforcement and is fast and easy for administrators to deploy, manage and maintain. For more about the company and its products, visit www.forescout.com.