Web and application hosting service provider Digex, Inc. has successfully completed an assessment of its standard hardened firewall by TruSecure Corp. The review also included an external and on-site security assessment of the Laurel, Md.-based Digex facilities.
TruSecure assessed the overall security posture of Digex with regard to the Digex Managed Firewall Solution. Assessment procedures were carried out pursuant to TruSecure risk assessment and mitigation methodology, which addresses five categories of risk: privacy, electronic threats and vulnerabilities, malicious code, physical security and human factors.
The goal of the external security scan was to access implementation of effective security controls at every interface point within the Digex information management system. This included review and analysis of technical information and identification of potential weaknesses that could allow a malicious user to gain unauthorized access to authentication and encryption policies. Throughout the testing and analysis TruSecure concluded that Digex has taken appropriate action to prevent exploitable vulnerabilities in the Digex firewall build.
The on-site assessment of company facilities included a review of the Digex standard security posture in the areas of environment, connectivity, platform, services and human factors. TruSecure audited company security policies against industry standards and concluded that Digex meets or exceeds the guidelines for all these areas. The successful completion of the security audit includes ongoing testing and evaluation to ensure the integrity and confidentiality of the Digex managed firewall offering to clients.