 |
|
What does McAfee Secure Certification do?
|
 |
|
McAfee Secure is the most comprehensive web security certification service available. This service combines remote vulnerability scanning, protection from hackers & protecting your visitors from adware, spyware, browser exploits, spammers, phishing attacks and online scams.
The McAfee Secure standard is an aggregate of industry best practices, designed to provide a level of security that an online merchant can reasonably achieve to help provide consumers with better protection when interacting with websites and shopping online.
|
| |
|
|
For how long is the certification valid?
|
|
|
For one year from the day you sign up. In addition, McAfee's security auditing technology allows the McAfee Secure Certification to appear only when a web site's current security status meets the McAfee Secure Standard. |
| |
|
|
How often will my site be scanned by Mcafee?
|
|
|
Daily. McAfee Secure certification is achieved by passing rigorous daily network security audits. The certification process is completed in six steps. The first three steps are the vulnerability audit itself; comprising Dynamic Port Scanning, Port-level Network Services Vulnerability Testing and Web Application Vulnerability Testing. The fourth and fifth steps are alerts whenever vulnerabilities are detected and remediation management using our extensive vulnerability management portal. The result is highly effective, pro-active security. |
| |
|
|
Is it Renewed every year or one time?
|
|
|
The Certificate is valid only for one year. Therefore, you have to renew the certificate every year. We will send you the renewal reminder notice 3-4 weeks in advance. |
| |
|
|
If I have a SSL, why do I need McAfee Secure Certification?
|
|
|
SSL (Secure Sockets Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral.
McAfee Secure Certification certifies your web application or portal to be secure from all known vulnerabilities.
For complete security, both SSL & McAfee Secure Certification are recommended. |
| |
|
|
My web hosting provider handles my security, why do I need McAfee Secure?
|
|
|
Web hosting provider will not scan your web application or portal for vulnerabilities. McAfee Secure scans your portal as well as your network on a daily basis for all known vulnerabilities and alerts you accordingly. These tests are based on an extensive knowledge base of over 10,000 vulnerabilities, which is updated every 15 minutes. |
| |
|
|
Is Network Security Audit covered in McAfee Secure Certification?
|
|
|
Yes. The first phase is a thorough, interactive port scan of the target. This accurately determines which ports on an IP address are open and is the crucial first step to a comprehensive security audit. McAfee's proprietary firewall and IDS/IPS aware network discovery technology is designed to accurately map out any size or complexity of network topology.
In the second phase of the audit process, we thoroughly interrogate each service running on every available port to determine exactly what software is running and how it is configured. Once this information is acquired it is matched to our Knowledge Base of vulnerabilities in order to launch additional application specific and generic tests of each available service. |
| |
|
|
How will SiteAdvisor helps to promote my website?
|
|
|
In addition to vulnerability scanning, the McAfee SECURE service also includes technology that helps protect web sites (and consumers) against "social engineering" tricks like spyware infections, identity theft scams, and sites which send excessive e-mail. The SiteAdvisor technology is based on a system of automated testers which continually patrol the Web to browse sites, download files, and enter information on sign-up forms. The SiteAdvisor rating technology, which users can download in the form of a toolbar, summarizes the safety results into intuitive red, yellow and green ratings to help Web users stay safe as they search, browse and transact online. |
| |
|
|
The McAfee Secure Certificate is not visible on my site. Why?
|
|
|
McAfee's patent pending security auditing technology allows the McAfee Secure mark to appear only when a web site's current security status meets the highest published government standards. A maximum of 72 hours is allowed to patch vulnerabilities before the certification mark is replaced by a single-dot "clear" gif image. The certification mark will reappear as soon as a new audit is passed. McAfee Secure certification is fully accredited to meet the scanning requirements for the Payment Card Industry (PCI) standard. |
| |
|
|
Back to Previous |
