Top Links You Must Click On
From the Wires
Verdasys Digital Guardian Meets Stringent Government Standards for Common Criteria Security Certification
By: Business Wire
Dec. 13, 2012 09:04 AM
Verdasys, provider of Enterprise Information Protection (EIP) solutions for Global 2000 and mid-sized companies, today announced its Digital Guardian v6.0.1 data loss prevention (DLP) platform has completed EAL2+ evaluation under the Communications Security Establishment Canada’s (CSEC) Common Criteria Evaluation and Certification Scheme. Active participation in IT government security validations such as Common Criteria signifies Verdasys' commitment to providing customers with security products and services that meet the strict criteria for evaluation standards within the international community.
Verdasys' approach to EIP combines protection against insider threat and cyber attacks with regulatory compliance in a unified and integrated third-generation (DLP 3.0) solution based on its Digital Guardian platform, recognized as a Leader in Gartner's 2011 Magic Quadrant for Content-Aware DLP. This scalable platform provides multiple, independent layers of protection to enable secure data sharing across physical, virtual, mobile and cloud environments. Now launching in the U.S. and Europe as the first Managed Service for Information Protection (MSIP), the Verdasys integrated technology framework incorporates network, desktop and server agents to identify, audit and control data risks throughout the business process.
To facilitate prompt completion of the Common Criteria certification, Verdasys partnered with Corsec Security, Inc., a consulting, documentation and project management services firm with over fourteen years of experience in security certifications. “Verdasys’ pursuit and achievement of an EAL2+ Common Criteria certification demonstrates their focus and determination to provide their customers with a high-level of security,” said Matthew Appler, CEO of Corsec Security. “It was apparent from the start this was their prime objective and we’re glad to have been able to help them achieve it and reach their certification goals.”
Common Criteria is an internationally recognized set of guidelines (ISO 15408), which define a common framework for evaluating security features and capabilities of Information Technology security products. The standard consists of several predetermined evaluation assurance levels, each one more stringent than the last. Common Criteria allows vendors to have their products tested against a chosen level by an independent third-party testing laboratory. The Common Criteria Mutual Recognition Agreement (CCRA) is a pact which was designed to allow all evaluations up to an evaluation assurance level (EAL) 4, to be recognized by all participating countries, regardless of where the evaluation was completed. There are currently 26 countries involved in the CCRA, including the United States and Canadian governments, with others that follow unofficially such as the EU.
According to Verdasys CEO Jim Ricotta, "With the growing number and complexity of data threats from all directions, Common Criteria certification is an important part in ensuring the highest standards for security software. The worldwide community understands Common Criteria as a benchmark for customer confidence, and certification is an important validation of the business value that our Digital Guardian platform brings to mid-sized companies and large enterprises."
About Corsec Security, Inc.
Corsec Security, Inc. specializes in helping companies navigate through the complex process of receiving FIPS 140-2, Common Criteria and UC APL certifications. Corsec’s consulting, document creation, and project management services deliver unmatched expertise in achieving government validation efforts at a firm, fixed price. Corsec partners with companies around the world to achieve local and international certification and to add security functionality to a wide range of products. Corsec minimizes the time, effort and money a vendor needs to invest in validation while ultimately maximizing the return on that investment. For further information, please visit www.corsec.com. Follow us @CorsecSecurity.
Verdasys (www.verdasys.com) provides Enterprise Information Protection solutions and managed services to secure sensitive data and assure the integrity of business processes, enabling midsize and global businesses to successfully compete in collaborative and mobile environments. Digital Guardian, a Leader in Gartner’s 2011 Magic Quadrant for Content-Aware Data Loss Prevention, is a proven technology platform that provides complete, policy-based data lifecycle monitoring, classification, forensics and control on endpoints and servers, virtual machines and enterprise applications, networks, mobile devices and cloud environments. Digital Guardian protects IP and regulated data from compromise by insiders, contractors, partners and targeted cyber attacks. Since 2003, millions of Digital Guardian agents have been deployed to protect critical data for global leaders in financial services, insurance, technology, manufacturing and healthcare industries.
Enterprise Open Source Magazine Latest Stories . . .
Subscribe to the World's Most Powerful Newsletters
Subscribe to Our Rss Feeds & Get Your SYS-CON News Live!
SYS-CON Featured Whitepapers
Most Read This Week