Top Links You Must Click On
From the Wires
ASACoE Appointed Security Assertion Certifier for Air Force Applications and Services Hosted in the DISA Secure Technology Application eXecution Environment
By: Business Wire
Nov. 27, 2012 10:43 AM
Acting in his role as Air Force Designated Accrediting Authority, Gen. William Shelton, commander of Air Force Space Command, has appointed the Application Software Assurance Center of Excellence to be security assertion certifier for Air Force applications and services hosted in the Secure Technology Application eXecution environment hosted by Defense Information Systems Agency.
ASACoE is the first and only organization given this appointment and will develop the processes to be used by future appointees. Using its suite of leading software assurance tools, provided by Telos Corporation and industry partners, to conduct static and dynamic analysis, the ASACoE will establish repeatable and reliable processes for validating the security posture of the Air Force applications hosted in STAX.
“As the security assertion certifier, ASACoE will apply their stringent software assurance assessment processes to the STAX environment,” said Charisse Stokes, vice president for cybersecurity and network management for Telos. “This appointment ensures that the organization tasked with developing and implementing software assurance best practices for the Air Force will be the guiding light for applications transitioning to or developed in STAX.”
STAX is a cloud capability for hosting Java and Microsoft .NET Web services to be used by the Department of Defense. DoD’s cloud computing strategy articulates a vision for acquiring and operating innovative, efficient, and agile IT in support of the DoD's mission anywhere, anytime, and on any authorized device. STAX is designed to aid the department’s effort to bring that vision to reality by providing development, test, and production environments for computing, storage, network infrastructure, and software from a secure facility and under a single pricing model.
In 2007 Telos was awarded an initial task order to help ASACoE ensure application security best practices are incorporated across the Air Force, identify critical vulnerabilities, and secure Air Force applications. Leveraging Xacta® IA Manager, Xacta Flux and other partner products, Telos is tasked with ensuring that applications address security hand-in-hand with performance and application availability throughout the system development lifecycle, significantly reducing the time and expense associated with remediation efforts. As the prime contractor, Telos assembled a powerful team, including application security industry leaders that specialize in source code analysis, web application penetration and security testing, application shielding, database monitoring, training and implementation services. The team includes Cigital, Inc., HP Enterprise Security (which includes the former Fortify Software, Inc.), IBM Rational and Application Security, Inc. As an option, products and services from Coverity, Aspect Security and Imperva are also available to the Air Force under this agreement.
About Telos Corporation
Telos Corporation has provided innovative IT solutions and services to the federal government for more than 30 years, focusing since 1997 on cybersecurity. Telos solutions ensure that the government's most security-conscious organizations comply with demanding federal and DoD information security mandates. Offerings include Xacta® IA Manager and other solutions for cybersecurity and information assurance, secure networks, network management and defense, mission applications and development, secure communications, and identity assurance and access. Solutions are represented to the federal government on Telos' GSA schedule. For more information, visit www.telos.com.
Enterprise Open Source Magazine Latest Stories . . .
Subscribe to the World's Most Powerful Newsletters
Subscribe to Our Rss Feeds & Get Your SYS-CON News Live!
SYS-CON Featured Whitepapers
Most Read This Week