Audit Signing

Summary

Tenable is pleased to announce that it is releasing functionality for customers to sign and verify their custom audit files. Signing and verifying your audit files ensures additional integrity for your environment above and beyond scan policy and product access controls. Audit Signing is an optional feature and requires some configuration to enable.

Dependencies

The signing feature requires Nessus 10.2.0/Agent 10.1.4 or higher, current compliance plugins, and the use of our signing utility. A knowledge base article that describes setup and usage is available here.

Impact

Tenable published and customer signed audit content will have their signatures verified at run time. Invalid signatures will result in a scan error.

Target Release Date

June 13, 2022