nCircle Announces the Inclusion of New Vulnerability Scoring Standard

Addition of CVSS v2 in nCircle IP360(TM) helps drive adoption of emerging
    vulnerability management standards for efficient security risk managementSAN FRANCISCO, Aug. 15 /CNW/ -- nCircle, the leading provider of
agentless security risk and compliance management solutions, today announced
the inclusion of the Common Vulnerability Scoring System version 2 (CVSS v2)
in its flagship product nCircle IP360.  CVSS is an industry standard that
promotes a common method for assessing the severity of IT vulnerabilities. The
inclusion of CVSS v2 scores provides unique flexibility to enterprise
customers, who can continue using nCircle's scoring system as their primary
source but now also have the ability to use CVSS v2 where required for
interoperability.(Logo: http://www.newscom.com/cgi-bin/prnh/20051214/SFW028LOGO)nCircle IP360, the market-leading security risk and compliance management
system, now includes CVSS v2 scores derived from industry scoring authorities
such as the National Vulnerability Database (NVD).  nCircle also provides its
own CVSS v2 scores for vulnerabilities, augmenting vendor and NVD scores with
nCircle's extensive security research expertise.  nCircle was also among the
first to add CVSS v2 scoring to the nCircle Certified PCI Scan Service(TM) in
July, meeting the more stringent certification requirements under the enhanced
standard,  PCI Data Security Standard version 1.1.
    "The primary value of CVSS is the fact that it delivers common scores
among all vendors," said Tim Keanini, Chief Technology Officer at nCircle. "By
spearheading support for CVSS v2, market leaders like nCircle continue to pave
the way for the standardization and simplification of security risk
management."
    CVSS v2, developed by the CVSS-Special Interest Group (CVSS-SIG) of which
Keanini is a member, is the latest version of CVSS.  It aims to improve upon
the inaugural CVSS v1 and deliver a vendor-agnostic composite scoring system
to help IT administrators efficiently identify which vulnerabilities pose the
greatest risk to their specific network environment.
    nCircle's composite scoring system continues to provide the industry's
most relevant and proven vulnerability scoring system for enterprise
environments since its introduction in 2001.  It delivers the most granular
context needed by organizations to understand their vulnerability risk as
opposed to single parameter scoring offered by other solutions.  Incorporating
CVSS v2 into nCircle solutions provides access to two composite vulnerability
scoring systems, enabling customers to benchmark the effectiveness of their
internal vulnerability scores against scores common across all CVSS-supported
platforms.
    "nCircle has always believed that the customer should choose the scoring
system, not the vendor," said Sheldon Malm, Director of Security Research and
Development at nCircle.  "As CVSS adoption expands, customers can depend on
nCircle's advanced scoring and leverage both systems to effectively protect
their networks."About nCirclenCircle is the leading provider of agentless security risk and compliance
management solutions.  More than 3,500 enterprises, government agencies and
service providers around the world rely on nCircle's proactive security
solutions to identify, measure, manage and reduce security risk and automate
compliance on their networks.  nCircle has won numerous awards for growth,
innovation and technology leadership and has been ranked among the top 100
best places to work in the San Francisco Bay Area.  nCircle is headquartered
in San Francisco, CA, with regional offices throughout the USA and in London,
Toronto and Tokyo.  Additional information about nCircle is available at
www.ncircle.com.
    nCircle is a registered trademark of nCircle Network Security, Inc. All
other registered or unregistered trademarks are the sole property of their
respective owners.



For further information: Shelley Boose of Shev Rush PR, +1-408-398-6987,
 for nCircle Web Site: http://www.ncircle.com