Electrosoft Services Electrosoft Services

ELECTROSOFT SECURITY WEB AUDIT TOOL (ESWAT) - PIV

Overview
The Electrosoft Security Web Audit Tool (ESWAT) for Personal Identity Verification (PIV) is a web-based automated assessment tool that facilitates the formal certification and accreditation of PIV Card Issuing (PCI) facilities as per FIPS 201, NIST SP 800-79, and related guidance.

ESWAT-PIV supports the :
  • Collection, Management, and Reporting of implementation of security controls
  • Efficient development of PIV C&A documentation
  • Cost-effective monitoring of security control implementation

Benefits
The benefits of using the ESWAT-PIV include :
  • Online tool allows Agencies to conduct a formal assessment of PCI facilities to determine compliance with PIV requirements
  • Easy to use, intuitive, graphical user interface that simplifies the PIV assessment process and provides detailed guidance on how to conduct the assessment
  • Allows a systematic collection and compilation of information related to PIV issuance requirements
  • Allows the automated generation of the PIV Assessment Report in MS Word format in a customizable document template
  • Allows consolidation of all PIV assessment results into a centralized database which can be secured at an organizational level

Salient Characteristics
The key features of the ESWAT-PIV include :
  • Three-tier Java-based (J2EE) Application: Runs on most popular server operating systems such as Windows and Linux
  • Support for simultaneous Users: Maximizes productivity and minimizes time required to complete assessments
  • Centralized Data Repository: Enables organizations to consolidate assessment data to a common store
  • Logging Capabilities: Allows easy auditing of user activities on the system
  • Attachment of Associated Documents: Allows related documents to be saved with an assessment, thus minimizing paperwork
  • Browser-based Client (View a screen shot): Allows access to ESWAT-PIV over network.
  • Standalone Client (View a screen shot): Allows assessors to collect information without requiring connectivity to Server
  • Built-in Assessment Scoring Mechanism (View a screen shot): Provides numerical score for an assessment based on customizable weights assigned to various control categories
  • Report generation in Microsoft Word: Provides customizable MS Word templates for assessment reports
  • Assessment Comparison: Allows easy comparison of results of two separate assessments

Security Features
The security features available within the ESWAT-PIV include :
  • Authentication using username and password
  • Support for multiple roles with different privileges
  • Assessment data is compartmentalized to allow access only to designated users
  • Web Sessions between Client (browser) and Server are secured using Secure Sockets Layer (TLS/SSL)


Please click the links below for further details on the ESWAT-PIV Assessment Tool:

ESWAT-PIV Features

ESWAT-PIV Brochure

Copyright © 2008 Electrosoft Services Inc | All Rights Reserved | Last updated: Mar 2008