SecurityFocus™ and Qualys Team To Provide Comprehensive Vulnerability Intelligence for Proactive Network Security

RSA Conference, San Jose — February 19, 2002 — Qualys, the leader in Managed Vulnerability Assessment, and SecurityFocus, a leading provider of enterprise security threat management systems, today announced a strategic partnership to provide comprehensive vulnerability intelligence for proactive network security. Signatures from the SecurityFocus Vulnerability Database will be incorporated into Qualys’ QualysGuard™ Managed Vulnerability Assessment platform to help proactively protect customers from network attacks on continuous basis. Qualys, a member of the SecurityFocus Technology Partner Program, has leveraged the partnership to enhance customer value of their market leading security services.

QualysGuard, which remotely audits and scans all perimeter devices to detect network vulnerabilities and determine the general security of networks, relies on a knowledge base of exploits that is continuously updated with the most current intelligence. With the QualysGuard knowledge base, network administrators can ensure that they are always testing against the latest vulnerabilities. Currently, QualysGuard scans and audits more than 300 different applications on 20 different platforms and operating systems.

Multiple sources are employed in updating the QualysGuard knowledge base, including the SecurityFocus Vulnerability Database, which is known as the world’s most comprehensive database of vulnerability and malicious code information available. Qualys also monitors all security resources and provides research from an in-house group of security engineers.

“The QualysGuard knowledge base is built on the powerful combination of security intelligence and security services,” said Arthur Wong, CEO and Co-founder of SecurityFocus. “This partnership gives any size business the latest intelligence on threats and the ability to quickly identify and eliminate vulnerabilities.”

The SecurityFocus Vulnerability Database is one of the world’s most comprehensive and up-to-date databases of vulnerabilities and malicious code available. The database is completely searchable by vendor, title (product name, technology, etc.), keyword, Bugtraq ID number, and CVE ID number - allowing users to easily find the information they need.

“SecurityFocus is one of the most trusted sources of security intelligence information in the industry today. With their integration into the QualysGuard knowledge base, we are able to offer our customers and partners the most complete and timely information on Internet security vulnerabilities available,” said Philippe Courtot, Chairman and CEO of Qualys. “The depth and accuracy of information gathered by SecurityFocus helps us better identify network vulnerabilities and provide corrective measures for our customers.”

Delivered over the Internet, the QualysGuard service uses advanced vulnerability detection techniques to assess a network’s security exposures and suggest remedies before intruders can take advantage of them. The online delivery solution removes the need for specialized customer-premise software and empowers users to detect and fix the latest network vulnerabilities as they emerge. The on-line QualysGuard service currently detects and evaluates more than 1,400 network vulnerabilities, delivers suggestions for corrective action and provides concise summaries of every security risk found in user-friendly reports that can be customized for Chief Security or Information Officers and data center administrator audiences.

About Qualys

With more than 2,000 subscribers ranging from small businesses to multinational corporations, Qualys has become the leader in on demand vulnerability management and policy compliance. The company allows security managers to strengthen the security of their networks effectively, conduct automated security audits and ensure compliance with internal policies and external regulations. Qualys’ on demand technology offers customers significant economic advantages, requiring no capital outlay or infrastructure to deploy and manage. Its distributed scanning capabilities and unprecedented scalability make it ideal for large, distributed organisations. Hundreds of large companies have deployed Qualys on a global scale, including AXA, DuPont, Hershey Foods, ICI Ltd, Novartis, Sodexho, Standard Chartered Bank and many others. Qualys is headquartered in Redwood City, California, with European offices in France, Germany and the U.K., and Asian representatives in Japan, Singapore, Australia, Korea and the Republic of China. For more information, please visit www.qualys.com.

Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.

Media Contact:
Tami Casey
Qualys
media@qualys.com