RedPenSoft, a subsidiary of SOFTCAMP, said on the 11th that its solution "Xscan Server Runtime V1.0" obtained Grade 1 in the Good Software (GS) certification from the Korea Testing & Research Institute (KTR).
Xscan Server Runtime V1.0 is a next-generation security solution that provides in-server asset detection, open-source vulnerability analysis, and dynamic security visibility at the level of actually running processes. It generates a runtime software bill of materials (runtime SBOM) that records the environment in execution and manages where threats occur.
It also offers an "intelligent vulnerability prioritization" feature that analyzes the ratio of actually running packages among those installed to reduce security staff workload fatigue. It secured system stability through a lightweight C-language–based agent and includes integrated support for commercial software such as Linux and Windows servers, Oracle, and Amazon.
RedPenSoft added a "server security configuration check" feature to the existing functions. It automatically inspects configuration vulnerabilities on servers and determines whether they are sound or vulnerable based on the "Security Check Guide for Major Information and Communications Infrastructure" from the Korea Internet & Security Agency (KISA).
RedPenSoft plans to officially register Xscan Server Runtime V1.0 on the Public Procurement Service's Nara Marketplace.
Bae Hwan-guk, CEO of RedPenSoft, said, "We will continue to contribute to raising supply chain security levels across sectors such as the public and finance through execution environment–centric security technologies."