Adaptiva, a leading, global provider of IT systems management solutions for Microsoft System Center Configuration Manager (SCCM), today announced overarching new security features in the company's flagship OneSite content distribution and management product. OneSite protects SCCM-managed devices at security-conscious organizations including global banks and major government agencies such as the U.S. Department of Homeland Security. The new release, OneSite 5.6, extends Adaptiva's market leadership by further safeguarding the systems management environment itself, and instantly deploying remediations to all endpoints globally in the event of a breach. 

OneSite 5.6 delivers a number of enhancements to protect enterprises from attackers who attempt to compromise or disable SCCM itself, even if they have breached the perimeter through malware or other means. SCCM is used in the vast majority of large companies, and is part of the critical infrastructure during an attack because it is a key tool for remediating security breaches. OneSite 5.6 also extends SCCM's global response capability, with the power to deploy virus fixes, software updates, or custom workflows on hundreds of thousands of computers instantly- instead of waiting hours in a typical SCCM environment without OneSite.

OneSite 5.6 meets and exceeds the rigorous U.S. Government cryptographic standards specified in FIPS 140-2 and NSA Suite B by using the most advanced encryption and tamperproofing technology available. OneSite uses the Intel® Advanced Encryption Standard Instruction Set (AES-NI) to deliver stunning performance using on-chip encryption and decryption.

Highlights of the new release include:

• Instant Global Remediation: To remediate a security breach, OneSite can immediately deliver and execute software fixes, PowerShell scripts, or custom workflows on all endpoints globally. The custom workflows-easily built using Adaptiva's Visual Workflow Designer-can even repair endpoints where the SCCM client has already been compromised.
• Encryption Everywhere: OneSite encrypts all handshakes and key exchanges using cutting-edge Elliptic Curve Diffie-Hellman (ECDH) protocols. Messaging and content delivery are secured using the strongest modes of AES256. OneSite also enhances the world's only on-disk encryption for SCCM content using powerful 256-bit algorithms.
• Tamperproofing: OneSite's tamperproofing technologies exceed NSA Suite B recommendations and are built on the industry-leading SHA-512 secure hash.
• Centralized Security Management: OneSite's security settings for all global endpoints can be centrally managed, including setting up rules, setting ACL/NTFS permissions, defining encryption types, configuring security key expiration/renewal time period, and specifying timeout/lockout/inactivity thresholds for accounts.
  

"Our customers rely on Adaptiva to keep their endpoints secure, and they look to us to deal with unforeseen future threats as well," said Deepak Kumar, CTO and founder, Adaptiva. "With OneSite 5.6, we add new protections to keep their SCCM/OneSite environments safe. When a security breach happens in an enterprise network, moments count, so we have provided a right-away remediation capability that no other vendor delivers, with custom remediation workflows that execute instantly."

The new security-enhanced version of OneSite (OneSite 5.6) will be generally available to all current Adaptiva customers in March. Adaptiva is also educating IT professionals worldwide on the broader topic of SCCM security in a webinar on March 1^st: Top 20 SCCM Security Best Practices. Registration is open to the public here.