Computershare
| Company: | Computershare |
| Application Name: | Transcentive Web Platform | | Version: | 4.69.17 |
| Assessment Technique(s): | Static Binary Analysis, Dynamic Analysis | | Assurance Level: | AL4 (High) Exploitation causes serious brand damage and financial loss with long term business impact |
| Issue Date: | 08/25/2009 | | Application Description: | Transcentive Web Platform helps to automate the administrative process of managing equity awards of all types: stock options, restricted stock, performance awards and stock appreciation rights within a global business environment by leveraging Internet architecture. Allows for Comprehensive regulatory, tax and management reporting to support FAS 123R, FAS 128, CICA 3870, SEC and IRS compliance requirements.
View Details |
 | In its reviewed state, the Computershare Transcentive Web Platform application met or exceeded the security score outlined in the Veracode Risk Adjusted Verification Methodology for an application at the assurance level specified above. Veracode’s risk adjusted verification methodology is based on respected industry standards including MITRE’s Common Weakness Enumeration (CWE) for classification of software weaknesses and FIRST’s Common Vulnerability Scoring System (CVSS) for severity and ease of exploitability and NIST's definitions of assurance levels. |
| Company: | Computershare | | Application Name: | CFS Proxy Voting | | Version: | 1.0 | | Assessment Technique(s): | Static Binary Analysis, Dynamic Analysis | | Assurance Level: | AL3 (Medium) Applications connected to the internet that process financial or private customer information | | Issue Date: | 02/23/2009 | | Application Description: | Computershare Fund Services (CFS) Proxy Voting is the leading provider of proxy services to the mutual fund industry delivering a full service proxy solution including the TeleVote® proxy voting service.
View Details |
 | In its reviewed state, the Computershare CFS Proxy Voting application met or exceeded the security score outlined in the Veracode Risk Adjusted Verification Methodology for an application at the assurance level specified above. Veracode’s risk adjusted verification methodology is based on respected industry standards including MITRE’s Common Weakness Enumeration (CWE) for classification of software weaknesses and FIRST’s Common Vulnerability Scoring System (CVSS) for severity and ease of exploitability and NIST's definitions of assurance levels. |
| Company: | Computershare |
| Application Name: | North American ProxyVote |
| Assessment Technique(s): | Static Binary Analysis, Dynamic Analysis | | Assurance Level: | AL3 (Medium) Applications connected to the internet that process financial or private customer information. |
| Issue Date: | 04/05/2010 | | Application Description: | ProxyVote is the site where investors vote their individual proxy, view meeting information, resolutions, documents etc. It is also where meeting parameters and application text are set up; it controls the appearance and functionality of InvestorVote and the IVR Proxy application.
View Details |
| | In its reviewed state, the Computershare NA ProxyVote application met or exceeded the security score outlined in the Veracode Risk Adjusted Verification Methodology for an application at the assurance level specified above. Veracode’s risk adjusted verification methodology is based on respected industry standards including MITRE’s Common Weakness Enumeration (CWE) for classification of software weaknesses and FIRST’s Common Vulnerability Scoring System (CVSS) for severity and ease of exploitability and NIST's definitions of assurance levels. |
| Company: | Computershare |
| Application Name: | North American Employee | | Assessment Technique(s): | Static Binary Analysis, Dynamic Analysis | | Assurance Level: | AL4 (High) Exploitation causes serious brand damage and financial loss with long term business impact |
| Issue Date: | 05/02/2010 | | Application Description: | The North American Employee site supports the employee plans business and includes ESPP, options, GSP (enrollment) as well as display and limited transactions for the associated common shares. It is also used by Computershare personnel to assist callers.
View Details |
| | In its reviewed state, the Computershare NA Employee application met or exceeded the security score outlined in the Veracode Risk Adjusted Verification Methodology for an application at the assurance level specified above. Veracode’s risk adjusted verification methodology is based on respected industry standards including MITRE’s Common Weakness Enumeration (CWE) for classification of software weaknesses and FIRST’s Common Vulnerability Scoring System (CVSS) for severity and ease of exploitability and NIST's definitions of assurance levels. |
| Company: | Computershare |
| Application Name: | North American Issuer Online | | Version: | 4.6.137.0 |
| Assessment Technique(s): | Static Binary Analysis, Dynamic Analysis | | Assurance Level: | AL4 (High) Exploitation causes serious brand damage and financial loss with long term business impact |
| Issue Date: | 04/06/2010 | | Application Description: | North American Issuer Online is used by corporate secretaries, treasury personnel, investor relations, HR-payroll and other options benefits administrators to upload and record payroll purchase contributions via ACH Debit/wire transfer as well as make any demographic changes to their employees accounts.
View Details |
| | In its reviewed state, the Computershare NA Employee application met or exceeded the security score outlined in the Veracode Risk Adjusted Verification Methodology for an application at the assurance level specified above. Veracode’s risk adjusted verification methodology is based on respected industry standards including MITRE’s Common Weakness Enumeration (CWE) for classification of software weaknesses and FIRST’s Common Vulnerability Scoring System (CVSS) for severity and ease of exploitability and NIST's definitions of assurance levels. |
While every precaution has been taken in the preparation of this document, Veracode, Inc. assumes no responsibility for errors, omissions, or for damages resulting from the use of the information herein. Due to the nature of software security testing, the lack of discoverable flaws does not mean the software is 100% secure.
|