Clareity Security provides hands-on proactive support along with the leading world class daily computer vulnerability scanning and HACKER SAFE® certification to help the real estate industry provide the kind of confidence that members and consumers are starting to demand of those to whom they provide their personal or financial information. The HACKER SAFE certification mark is displayed on over 75,000 web sites worldwide. HACKER SAFE certified sites include some of the largest brands in retail ecommerce; as well as banks, universities, Fortune 500 corporations, state, county and city governments, and non-profit institutions. Clareity is providing the same scanning service used by VISA and PayPal, and the HACKER SAFE certification is seen on sites such as the American Red Cross, GMC, Toshiba, Yahoo! and SONY.
The seal at right includes several components:
The HACKER SAFE icon indicates that that the site is being scanned for network, computer and
web application vulnerabilities on a daily basis. It includes the date the site was last tested. If a
security issue is found and not fixed within a short grace period, this icon will disappear from the
site where it is being displayed until issues are resolved.
The Clareity Security logo indicates that the site is being serviced by Clareity Security's proactive notification and support in the event an issue is found. One of three levels of security may be indicated:
L1 (level one) - if this indicator is green, it means the site is being scanned daily for the HACKER SAFE certification, and if the HACKER SAFE icon is also visible, it means it has passed that level of testing.
L2 (level two) - if this indicator is green, it means the organization owning the site has undergone Clareity's information security assessment and addressed any issues directly pertaining to the web site on which the HACKER SAFE icon is displayed.
L3 (level three) - if this indicator is green, it means that all organizational significant risks identified
through Clareity's information security assessment have been mitigated and that the organization has an ongoing information security risk management program in place designed to minimize security risk. This goes far beyond computer-oriented testing, including physical security, staff, and management practices.
