Trusted Computer Solutions Unveils New Features for Security Blanket Lock Down Tool

Security Blanket(TM) Now Offers Greater Compliancy Guidelines to
  Address PCI, Industrial Control Systems and Government Regulations
SAN FRANCISCO--(Business Wire)--
Trusted Computer Solutions, Inc. (TCS), a developer of security
applications that run on the Linux Operating System, today announced
new compliance features for both the standalone and enterprise
versions of Security Blanket(TM). Security Blanket is the industry's
most comprehensive system lock-down and security management solution
that enables system administrators to automatically configure and
enhance the security levels of Linux systems.

   The new features of Security Blanket provide compliance guidelines
for organizations with industrial control systems (ICS), companies
that process credit card transactions, and government agencies
accessing classified data. Security Blanket's new compliancy lock-down
profiles include:

-0-
*T

 -- Payment Card Industry Data Security Standard (PCI DSS) profile
    This profile helps organizations prevent credit card fraud and
     other security threats. A company processing, storing, or
     transmitting payment card data must be PCI DSS compliant or risk
     losing the ability to process credit card payments and being
     audited and/or fined. As merchants and payment card service
     providers must validate their compliance periodically, Security
     Blanket offers an automated tool for helping to maintain this
     compliancy.

 -- Critical Infrastructure Protection (CIP) profiles
    The North American Electric Reliability Corporation (NERC), formed
     by the Federal Energy Regulatory Commission (FERC), has
     established a set of CIP security standards that are mandated
     requirements for United States electricity distributors. The
     Department of Homeland Security has mandated that utility and
     energy companies comply with CIP guidelines by 2010. Security
     Blanket can now automatically lock down the operating system,
     disabling all unused ports and services; restricting ICS user
     privileges and access; establishing audit trails; providing
     baseline comparisons to identify system configuration changes;
     and ensuring system compliancy even when the application of
     patches changes the system configuration resulting in compromised
     security.

    Supervisory Control and Data Acquisition (SCADA) systems are among
     the ICSs that need a high degree of security. SCADA systems
     collect data from various sensors at a factory, plant or other
     remote location and transfer this data to a central computer
     where it is managed and controlled. SCADA systems are an integral
     part of industrial enterprises such as mining plants, water and
     electrical utility installations, oil and gas plants, mass
     transit systems, and environmental control systems. Open source
     solutions, and connections to internal networks and the Internet,
     have made them highly vulnerable to cyberwarfare/cyberterrorism
     attacks. Security Blanket's new CIP profile enhances security
     levels within organizations that have SCADA systems.

 -- Government Profiles - Joint Air Force Army Navy (JAFAN) and the
     Director of Central Intelligence Directive (DCID) 6/3
    JAFAN is responsible for establishing the security policies and
     procedures for storing, processing and communicating classified
     Department of Defense (DoD) Special Access Program (SAP) data.
     DCID 6/3 is the certification and accreditation process used by
     federal agencies working on intelligence projects. Specifically,
     information technology projects that require that anyone working
     on them has a top secret, sensitive compartmentalized information
     (SCI) clearance use the DCID 6/3 process. The latest version of
     Security Blanket has all of the lock down requirements associated
     with JAFAN and DCID 6/3 built in as lock down profiles.
*T

   "Social security numbers, credit card numbers, and PIN's are
examples of data that should never be compromised. Today, there is an
abundance of sensitive and 'eyes only' information that needs to be
contained within a secure IT environment. Now more than ever, Linux
system security should be at the top of every business and government
agency IT checklist," said Ed Hammersla, COO for Trusted Computer
Solutions. "Security Blanket is the most comprehensive lock down tool
available to help organizations throughout different vertical
industries increase their security posture, and become compliant and
maintain compliancy."

   In addition to introducing new features to Security Blanket, TCS's
Chief Operating Officer, Ed Hammersla, will speak on Wednesday, August
6 from 11:30-12:30 p.m. in room 304, Moscone South Hall. His session
titled "The System Administration Security Challenge" will address
lock down and operating system security.

   About Security Blanket

   Security Blanket Enterprise Edition was developed for
organizations with a medium-to-large number of Linux servers. It is
comprised of an Administration Console where all Linux servers can be
centrally managed. The standalone version of Security Blanket is
installed on each individual server. The Enterprise Edition's console
communicates with each standalone server, allowing centralized
management. Organizations with a smaller number of Linux servers may
elect to simply run the standalone version on each server and manage
them independently.

   Security Blanket also supports the security guidelines recommended
by the Center for Internet Security (CIS), the Defense Information
Security Agency (DISA) Security Technical Implementation Guides
(STIGs), and selected guidelines from the SANS Institute's defined
risks associated with Apache, MySQL and PHP (LAMP). The product
supports Red Hat Enterprise Linux versions 4 and 5, CentOS versions 4
and 5 and Oracle Enterprise Linux versions 4 and 5.

   Find out how easy system lock down can be using Security Blanket.
The Try Me option will scan your Linux OS for vulnerabilities against
a limited security profile. The trial will enable visitors to the site
to see all of the lock down functions available in the full product. A
free trial is good for 30 days from date of download.
http://www.tcs-sec.com/SecurityBlanket/SecurityBlanket-Try-Out.html

   About Trusted Computer Solutions, Inc.

   Founded in 1994, Trusted Computer Solutions (TCS) provides
commercial and government organizations with solutions for securely
sharing and protecting critical information assets. TCS has deep
experience in developing solutions to support the Linux community. The
company's flagship commercial product, Security Blanket provides Linux
users with an automated software tool that allows users to easily lock
down an installed Linux operating system and periodically check the
security state of an installed system. TCS has over fourteen years of
experience in building security solutions that meet the most stringent
security conformance requirements as mandated by the Federal
government. TCS is headquartered in Herndon, Va., with offices in
Champaign Urbana, Ill. and San Antonio, Tx. For more information on
Trusted Computer Solutions, visit www.TrustedCS.com

Trusted Computer Solutions
Sherryl Dorch, 703-537-4364
sdorch@Trustedcs.com
or
Welz & Weisel Communications
Evan Weisel, 703-218-3555
Cell: 703-628-5754
evan@w2comm.com

Copyright Business Wire 2008