Gartner IT Security Summit 2008 - WASHINGTON, DC - June 2, 2008 –ArcSight, Inc. (Nasdaq: ARST), a leading provider of compliance and security management solutions that protect enterprises and government agencies, and VeriSign Enterprise Security Services today announced that they have signed a global partnership agreement.  The agreement enables VeriSign to provide customers worldwide with an enhanced service for managed log collection, storage, and analysis that meets the growing need of organizations to efficiently manage enterprise log data for compliance and security purposes.

The enhanced VeriSign managed service is powered by ArcSight Logger, an appliance-based solution that can capture and analyze all enterprise log data while providing a compressed, cost-effective and self-managing log repository.  VeriSign has provided hosted log management services for over five years and recently expanded the engineering and professional services teams that support clients of the services. 

ArcSight and VeriSign are positioned in their respective Leaders Quadrants of the most recent Gartner Magic Quadrant reports covering managed security services (Magic Quadrant for MSSPs, North America, 1H07) and security information and event management (Magic Quadrant for Security Information and Event Management). 

Regulatory mandates and industry standards such as Sarbanes Oxley (S-OX) and the Payment Card Industry Data Security Standard (PCI DSS) are driving the need for cost-effective, comprehensive and audit-quality log collection, storage and analysis. These regulations also necessitate automated retention policies and intelligent analysis for reporting and alerting against all log data. Increasingly, organizations are using log management to enhance security posture, assist in network and system management and improve service-level agreements.

“ArcSight is excited to work with VeriSign, a leading provider of hosted log management services, to enhance their hosted log management service,” said Chris Peterson, vice president of worldwide channel sales, ArcSight. “We believe that the combination of ArcSight log collection and management products and VeriSign’s expertise is significant for businesses looking to improve their security and compliance in a cost-effective manner.”

“Through our agreement with ArcSight, VeriSign Managed Security Services can offer customers a compelling new option in enterprise log management services,” said Scott Magrath, vice president and general manager of VeriSign Managed Security Services (MSS). “The service extends visibility beyond the network perimeter to the application layer to help our customers achieve broader compliance and more effective identification and mitigation of security threats. We are excited to add ArcSight’s unique log management capabilities and connector ecosystem to our proprietary technology and existing service support.”

Under the terms of the agreement, VeriSign will manage and support hardware products from ArcSight, including ArcSight Logger and ArcSight Connector Appliances. These solutions will be deployed at VeriSign security operation centers around the world and on-site at VeriSign client locations.

The log management managed service offering from VeriSign and powered by ArcSight enables organizations of all sizes to manage growing volumes of log data and meet their compliance mandates more efficiently. Some of the key capabilities of the managed service, delivered via ArcSight products, include the following:

• Broad Event Collection:  Broad collection of raw and normalized logs from more than 275 event sources
• Audit-quality Collection and Storage:  Multiple controls to ensure secure and reliable log collection, transport and archiving
• Powerful Analytics Portal:  Role-based dashboard views with device-independent drilldown, real-time alerting and anomaly detection
• Comprehensive Pre-packaged Content:  Best practices embodied in rules, alerts, reports and dashboards mapped to regulatory requirements

ArcSight log collection and management products are available in a variety of configurations designed to fit customer needs. Based on a flexible, distributed architecture, the products support remote collection and central management of customer logs, making the solution extremely well suited to the VeriSign managed service model.

Key products in this offering include:

• ArcSight Logger, a hardened, self-tuning appliance for storing and managing log data. It is available in multiple sizes targeted at centralized, mid-size and regional data centers.

• ArcSight Connectors, which collect and normalize events from more than 275 types of devices. They are available as data-center appliances, remote-office/in-store appliances or installable software.

For more information on ArcSight and its log collection and management products, please see www.arcsight.com.

For more information on about VeriSign Log Management Services, visit www.verisign.com/mss.

About ArcSight
ArcSight (NASDAQ: ARST) is a leading global provider of compliance and security management solutions that protect enterprises and government agencies. ArcSight helps customers comply with corporate and regulatory policy, safeguard their assets and processes, and control risk. The ArcSight platform collects and correlates user activity and event data across the enterprise so that businesses can rapidly identify, prioritize and respond to compliance violations, policy breaches, cybersecurity attacks and insider threats. For more information, visit www.arcsight.com. 

Forward Looking Statements
This press release contains forward-looking statements within the meaning of Section 27A of the Securities Act of 1933 and Section 21E of the Securities Exchange Act of 1934, including statements relating to VeriSign’s rights under our agreement with them; regulatory mandates and industry standards driving the need for log collection, storage and analysis; and our belief regarding the benefits of combining ArcSight log collection and management products with VeriSign’s expertise. These forward-looking statements involve risks and uncertainties, as well as assumptions that, if they do not fully materialize or prove incorrect, could cause our results to differ materially from those expressed or implied by such forward-looking statements. The risks and uncertainties that could cause our results to differ materially from those expressed or implied by such forward-looking statements include a change or cessation of this partnership, the benefits of this partnership are not realized or are not realized at a level contemplated by ArcSight, the failure of regulatory mandates and industry standards to drive the need for managed security services, the failure of customers to achieve the anticipated benefits from this partnership and other risks and uncertainties described more fully in our documents filed with or furnished to the Securities and Exchange Commission. More information about these and other risks that may impact the business of ArcSight are set forth in the "Risk Factors" section of the Form 10-Q for the fiscal quarter ended January 31, 2008 filed with the Securities and Exchange Commission on March 17, 2008. All forward-looking statements in this press release are based on information available to us as of the date hereof, and we assume no obligation to update these forward-looking statements.

ArcSight, the ArcSight logo and ArcSight Logger are trademarks of ArcSight, Inc.

About VeriSign  
VeriSign, Inc. (NASDAQ: VRSN) is the trusted provider of Internet infrastructure services for the networked world. Billions of times each day, VeriSign helps companies and consumers all over the world engage in communications and commerce with confidence. Additional news and information about the company is available at www.verisign.com.

Statements in this announcement other than historical data and information constitute forward-looking statements within the meaning of Section 27A of the Securities Act of 1933 and Section 21E of the Securities Exchange Act of 1934. These statements involve risks and uncertainties that could cause VeriSign's actual results to differ materially from those stated or implied by such forward-looking statements. The potential risks and uncertainties include, among others, the uncertainty of future revenue and profitability and potential fluctuations in quarterly operating results due to such factors as the inability of VeriSign to successfully develop and market new products and services and customer acceptance of any new products or services, including the VeriSign® Log Management Service; the possibility that VeriSign’s announced new services may not result in additional customers, profits or revenues; and increased competition and pricing pressures. More information about potential factors that could affect the company's business and financial results is included in VeriSign's filings with the Securities and Exchange Commission, including in the company's Annual Report on Form 10-K for the year ended December 31, 2007 and quarterly reports on Form 10-Q. VeriSign undertakes no obligation to update any of the forward-looking statements after the date of this press release.

©2008 VeriSign, Inc.  All rights reserved. VeriSign, the VeriSign logo, the checkmark circle, and other trademarks, service marks, and designs are registered or unregistered trademarks of VeriSign, Inc., and its subsidiaries in the United States and in foreign countries. All other trademarks are property of their respective owners.