Certification Programs - McAfee TSA00M005PAA - Total Protection Service Product Manual

Using the SaaS Vulnerability Scanning Service

Certification programs

• Complies with credit card issuers by meeting the vulnerability scanning requirements of the
Payment Card Industry (PCI) data security standard.
• Provides advanced web application scanning and finds BlindSQL and Server-side Include
vulnerabilities with 99% accuracy.
Types of vulnerabilities detected
The SaaS vulnerability scanning service tests for all vulnerabilities in the following
general categories:
• Backdoors, Remote Controls, and Trojan
Horse Programs
• CGI and Form Processing Vulnerabilities
(including SQL Injection)
• Default Passwords
• All Database Servers
• All Microsoft Versions
• UNIX and Linux
• Email Services
• News and Chat Services
• Remote Administration Access
• Remote Database Access
• Remote File Access
Certification programs
The SaaS vulnerability scanning service provides optional certification programs to ensure that
your website meets the highest standards for security.
PCI certification program
Ensures that your website always complies with the Payment Card Industry Data Security
Standard (PCI DSS ) by providing the tools needed to complete the PCI certification process,
remain in compliance, and create quarterly validation reports.
McAfee SECURE
®
Adds the McAfee SECURE trustmark to your website as proof that it meets the rigorous
certification requirements for compliance with the McAfee SECURE data security standard. This
program requires daily scanning of your McAfee SECURE devices.
McAfee Total Protection Service Product Guide
Trustmark certification program
™
• TCP Ports
• RPC
• SMB/NetBIOS
• ICMP
• HTTP XSS
• SNMP
• SNTP
• UDP
• FTP and Telnet
• XML Services
• Routers and Load Balancers
• Firewalls and Addressable Switches
120