Configuration audit and control solutions radically simplify the task of demonstrating compliance to the ever-growing number of compliance initiatives and requirements. By providing an audit trail of change across the IT infrastructure, Tripwire solutions significantly reduce the time and costs associated with achieving regulatory compliance. Government agencies use Tripwire solutions across a wide range of compliance initiatives, FISMA, National Strategy to Secure Cyberspace (NSSC), and OMB and NIST standards (such as the National Information Assurance Partnership (NIAP).

The Gold Standard

Tripwire solutions have been implemented in almost every Federal Cabinet-level agency. Click here to view the list.

Tripwire technology is currently Common Criteria compliant and EAL 1 certified under Sensitive Data Protection as of March 2003. EAL 3 certification is anticipated in 2006 (see certification process). Tripwire is featured on page 30 of the NSA's 60-Minute Security Guide, which you can download here or read this excerpt. Tripwire is also an important tool in executing Visible Ops, a recommended methodology on the DHS "Build Security In" website for implementing ITIL for Security and Operations issues (see Deploying and Operating Secure Systems).

Improve Availability

Tripwire provides 24/7 detection of the unauthorized changes (internal or external) that can threaten everything from availability to security. Using Tripwire, you can trace changes to their source. You can enforce change and configuration management processes and ensure infrastructure integrity continuously.

Tripwire is easy to use. It provides a single point of control for detecting change across IT infrastructure, including heterogeneous servers, desktops, routers, switches, firewalls and load balancers. Instead of having to spend hours unraveling the damage from each unauthorized change, you're able to react to change instantly and fix it before it becomes an issue. Case closed.