Common Criteria Certification is a set of internationally recognized criteria for evaluating the security of IT products. All IT security products purchased by the U.S. Government for National Security Systems and handling classified and some non-classified information were required to be Common Criteria certified by July 2002. Tripwire for Servers is Common Criteria Certified (Level 1), adhering to required standards for federal government security products. Tripwire Enterprise and Tripwire for Servers certification (Level 3 Augmented) is in process.

An Ironclad Defense: Detective Control

Tripwire provides what auditors call a detective control. It delivers the hard evidence of IT configuration audit and control that auditors want. Tripwire gives you:

• Automated configuration control that isn't susceptible to human error or lapses in judgment
• Broad infrastructure coverage of changes on servers, workstations and network devices, including changes made both manually or by automated tools
• Independent evidence of change through perfect segregation of duties - the person or tool that made the change is not used to validate the change