BMC Earns NIAP Common Criteria EAL3 Security Certification
Certification Validates Security and Reliability of BMC Software Solutions
Nov. 7, 2005 08:30 PM
Enterprise management solutions provider BMC Software has announced that its most current release of BMC Marimba Desktop/Mobile Management and BMC Marimba Server Change Management product suites have been awarded Common Criteria Evaluation Assurance Level 3 (EAL3) certification.
Additionally, the company’s BMC Remedy Action Request System (AR System) solution has entered the National Information Assurance Partnership (NIAP) evaluation for Common Criteria EAL3 certification. Managing change across desktop, server and mobile devices can cause increased risks for government agencies, and this certification helps mitigate that risk through validated security capabilities.
Common Criteria EAL3 certification, sanctioned by NIAP Common Criteria Evaluation and Validation Scheme (CCEVS), assures government agencies that Marimba Client Management from BMC and Marimba Server Management from BMC — the BMC Marimba Desktop/Mobile Management and Server Change Management products — have gone through stringent testing/analysis and conform to current federal security standards. The BMC Remedy Action Request System solution is currently being evaluated to ensure it also meets NIAP and CCEVS requirements.
“NIAP and its CCEVS testing process is an essential component to the protection of public and private Information Technology (IT) infrastructures,” said Chris Aherne, Federal area director at BMC Software. “BMC Software is completely committed to NIAP’s goal of increasing government trust levels through the use of security testing, evaluation, and validation programs. It is our goal to ensure that all appropriate BMC Software products are certified through the Common Criteria EAL3 verification system.”
In demonstrating its continued commitment to EAL3 verification, BMC Software also announced that the company’s BMC Remedy Action Request System solution has entered the NIAP evaluation for Common Criteria EAL3 certification. AR System is a rapid application development environment for automating and maintaining business processes and the application platform for BMC Remedy Enterprise Solutions, BMC Remedy Customer Service and Support solutions, and custom-built applications. AR System is currently being evaluated to ensure it meets NIAP CCEVS requirements, enabling government agencies to expedite their implementation of these BMC service management solutions.
“Current landscapes are forcing agencies to require that their software solution providers adhere to strict regulatory standards that guard against threats to their IT systems,” said Aherne. “BMC Software applauds NIST and NSA for its continued focus on IT security, as well as its dedication to ensuring that the private sector supplies its agency counterparts with solid, secure software solutions.”
NIAP, a collaboration between the National Institute of Standards and Technology (NIST) and the National Security Agency (NSA), is an initiative designed to meet the security testing needs of both IT consumers and producers. Tasked with defining and developing national and international standards for IT security, the partnership combines the extensive IT security experience of both agencies to promote technically sound security requirements for IT products and systems. Additionally, 21 countries around the world mutually recognize the Common Criteria certificate