Rational Policy Tester Privacy Edition

Improve the speed, accuracy and reliability of online privacy assessments

IBM® Rational® Policy Tester Privacy Edition helps ensure website privacy by scanning web content and producing actionable reports to identify issues that might impact compliance. It can uncover and report oversights that may expose your organization to undue risk such as missing privacy statements, non-compliance pages collecting personally identifiable information, insecure data collection forms and cookie presence. Now you can automate and help improve the accuracy of your online privacy assessments.

Rational Policy Tester Privacy Edition provides:

  • Privacy module reports—assess the security settings of data collection forms and ensure that each form has a link to the appropriate privacy policy.
  • Support for compliance with privacy regulations—reports potential issues related to compliance with the Gramm-Leach-Bliley Act (GLBA), Health Insurance Portability and Accountability Act (HIPAA), Children's Online Privacy Protection Act (COPPA), US-EU Safe Harbor Framework, US Section 208, California SB 1386 and California AB 1950.
  • Additional online privacy assessment features—include privacy policy management and leak prevention.

Privacy module reports

  • Form Inventory identifies all web pages collecting user input, which can help you identify forms that might be inconsistent with privacy policies or that might lead to information leaks.
  • Control Inventory provides summary information about the type of form controls used on a website and the number of pages that contain each type of control.
  • Pages Collecting PII identifies pages collecting specific items of personally identifiable information (PII) to help ensure they meet specific requirements including links to a privacy statement, proper levels of encryption and opt-out options.
  • Pages Collecting PII with Forms Using GET identifies pages that use the GET method of form submission.

Support for compliance with privacy regulations

  • GLBA Privacy Rules include provisions to protect consumers' personal financial information held by financial institutions.
  • HIPAA Privacy Rules regulate the way certain healthcare organizations handle the use of individually identifiable health information.
  • COPPA requires web operators to adhere to specific collection, disclosure and protection practices regarding personally identifiable information of children.
  • US-EU Safe Harbor Framework offers a simple means of complying with adequacy requirements of the European Community's Directive on Data Protection.
  • Section 208 applies to US government agencies. It protects the online privacy of US citizens' information by facilitating privacy impact assessments and reporting.
  • California AB 1950 requires businesses that obtain, own or license personal information about California residents to implement and maintain reasonable procedures to protect personal information from unauthorized access, destruction, use, modification or disclosure.
  • California SB 1386 requires notification to California residents if there is a breach or suspected compromise of their unencrypted personal information or data.

Additional online privacy assessment features

  • Privacy policy management generates an inventory of privacy policies found on a website and determines if those policies are current and accurate.
  • Leak prevention verifies that security safeguards, such as secure pages and 128-bit encryption, are in place when collecting and transmitting customer data.

Rational Policy Tester Privacy Edition resources

IBM Software
See what smarter software can do for you

Rational Policy Tester Privacy Edition

Improve the speed, accuracy and reliability of online privacy assessments

IBM Software Subscription and Support is included in the product price for the first year.

Not available to buy online. Other ways to purchase or learn more.

Contact IBM

More Less


Operating SystemSoftwareHardware
  • Windows 2003 Server SP2 (Standard) x86-32, x64 (also install .NET Framework 4.0)
  • Windows 2003 Server SP2 (Enterprise) x86-32, x64 (also install .NET Framework 4.0)
  • Windows 2003 Server R2 SP2 (Standard) x86-32
  • Windows 2003 Server R2 SP2 (Enterprise) x86-32
  • Windows 2008 Server SP1 / SP2 (Standard) x86-32
  • Windows 2008 Server SP1 / SP2 (Enterprise) x86-32
  • Windows 2008 Server SP1 / SP2 (Standard) x64
  • Windows 2008 Server SP1 / SP2 (Enterprise) x64 
  • Windows 2008 Server R2 (Standard) IA64, x64 
  • Windows 2008 Server R2 (Enterprise) IA64, x64
  • Windows 2008 Server R2 SP1 (Standard, Enterprise) IA64, x64 
  • Red Hat Enterprise Linux Version 6.0 (through Update 2) (AppScan Enterprise Server, Jazz™ User Administration component only. Does not apply to the Dynamic Analysis Scanner)

Note:

1. For best results, install all critical Microsoft updates.
2. If the website being scanned uses technologies such as Flash, Windows Media, and additional character sets, these technologies must also be installed on the agent server machines.

Supported Integrations

  • Rational Quality Manager 2.0.1.x, 3.0.1, 4.0
  • AppScan Source 7.0 and higher
  • AppScan Standard 7.7 and higher
  • IBM Security SiteProtector 2.0 SP 8.1
  • IBM Security QRadar 7.0 SR5 and higher
  • WebSphere Portal V6.0.1.4, and higher

Database

  • SQL Server 2005 Standard Edition or SQL Server 2005 Enterprise Edition Service Pack 2
  • SQL Server 2008 Standard Edition Service Pack 1 or SQL Server 2008 Enterprise Edition Service Pack 1
  • SQL Server 2008 R2 (64-bit)
  • SQL Server system requirements available from Microsoft.

Web Server

  • IIS6 (Windows 2003 Server) Note: IIS6 must be enabled on the Windows 2003 Server so that the Server installs properly
  • IIS7 (Windows 2008 Server) Note: IIS7 must be enabled on the Windows 2008 Server so that the Server installs properly

Other prerequisites

Before installing the Enterprise Server, you must install the following IIS components (not required for servers running Scanning Agents only):

  • Common HTTP Features (all components except HTTP Redirection)
  • Application Development (ASP.NET, ISAPI Extensions, ISAPI Filters)
  • Health and Diagnostics (HTTP Logging, Request Monitor)
  • Security (Basic and Windows Authentication)
  • Performance (Static Content Compression)
  • Management Tools (IIS Management console)
  • IIS 6 Management Compatibility (All)
  • Before installing the Enterprise Server, you must download and install the .NET Framework 4.0 from the Microsoft website.
  • Ensure that ASP.Net is installed and enabled in IIS.

Supported Browsers

  • Microsoft Internet Explorer 7.0, 8.0, 9.0
  • Mozilla Firefox 10.x (ESR)

Rational License Key Server Version 8.1.1, 8.1.2


Jazz Team Server with Version 3.0.1 system requirements


Defect Tracking Systems

  • Rational® Team Concert 2.0.0.2, 3.0, 3.0.1, 4.0

Processor

  • 3.0 GHz Pentium IV-compatible processor; faster processor or multiple processors recommended . Dual-core CPU recommended for any load when running on x86-based hardware, whether using Linux or Windows operating systems.

Memory

  • 4 GB of RAM (minimum) or more recommended

Hard disk

  • Approximately 4 GB for the AppScan Enterprise Server and Jazz Team Server
  • Approximately 10 GB of available hard-disk space for scan logs on the Dynamic Analysis Scanner
  • Approximately 200 GB of available hard-disk space on the system hosting the database (equals approximately 400,000 pages)
  • Approximately 330 MB for the Web Services Explorer –(to test Web Services for compliance issues)


Considering a purchase?

Contact IBM

Considering a purchase?

Rational Policy Tester Privacy Edition

 

 

 

IBM Software