Security tool free to feds

Federal CIS download site

All federal agencies can now freely distribute and use the security configuration tools developed by the independent Center for Internet Security (CIS) and endorsed by federal security experts.

The General Services Administration's Federal Computer Incident Response Center last week announced an agreement signed with CIS for redistribution licenses, paid for by a group of federal organizations, including FedCIRC, the National Security Agency and the Defense Department.

The software can be downloaded through a site set up specifically for federal users at

The tools offer a high-level security benchmark for commonly used operating systems, applications and appliances, and organizations can use the tools to check configurations. The programs were developed in collaboration with the center's members, including experts from government, industry and academia, said CIS Chairman Franklin Reeder.

In July, the center and several federal agencies announced the release of the latest tool, a benchmark for Microsoft Corp.'s Windows 2000 operating system. Tools are also available for other operating systems, including Windows NT, Linux and Sun Microsystems Inc.'s Solaris, as well as Cisco Systems Inc.'s IOS routers.

The tools are available for free on the center's Web site, but agencies typically must sign up to be CIS members before they may redistribute the programs or use them on multiple systems. The FedCIRC agreement does not provide full membership privileges but does allow agency systems administrators to distribute the tools internally, according to a center official.


  • Defense
    The Pentagon (Photo by Ivan Cholakov / Shutterstock)

    DOD CIO hits pause on JEDI cloud acquisition

    Dana Deasy set cloud as his office's top priority. But when it comes to the JEDI request for proposal, he's directed staff to "pause" to compile a comprehensive review.

  • Cybersecurity
    By Gorodenkoff shutterstock ID 761940757

    Waging cyber war without a rulebook

    As the U.S. looks to go on the offense in the cyber domain, critical questions remain unanswered around who will take the lead and how clearly to draw the rules of engagement.

  • Government Innovation Awards
    Government Innovation Awards -

    Deadline extended for Rising Star nominations

    You now have until July 18 to help us identify the early-career innovators and change agents in government IT.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.