CA Security Solutions Earn Common Criteria Level 3 Certification.Independent Testing Validates Fulfillment of International Standards ISLANDIA, N.Y. -- CA (NYSE NYSE See: New York Stock Exchange : CA) today announced that three of its security management solutions - CA Integrated Threat Management A computer security approach in an organization that deals with all forms of unwanted intrusions, including attacks on computer systems, malware of all kinds and even spam. See computer security, malware, threat management and blended threat. r8, CA Access Control for Windows r8, and CA Directory r8.1 - have achieved Common Criteria (Common Criteria for Information Technology Security) An international standard process for defining security objectives and for evaluating compliance with those objectives. The Common Criteria have largely replaced the Trusted Computer Security Evaluation Criteria (TCSEC), the Canadian Evaluation Assurance Level The Evaluation Assurance Level (EAL1 through EAL7) of an IT product or system is a numerical grade assigned following the completion of a Common Criteria security evaluation, an international standard in effect since 1999. 3 certification from the National Information Assurance Partnership (NIAP See Common Criteria. ) Common Criteria Evaluation and Validation Scheme (CCEVS See Common Criteria. ). This level of security certification A certification issued by competent authority to indicate that a person has been investigated and is eligible for access to classified matter to the extent stated in the certification. independently validates the quality and efficacy of these three CA solutions. Common Criteria is an internationally recognized security certification required by the U.S. and other governments worldwide for departments and agencies seeking to procure commercial products. Common Criteria certification also assures businesses that a product meets a standard measure of security, whether it is used internally or in solutions for customers. CA's security management products are certified for the EAL EAL English as an Additional Language EAL Evaluation Assurance Level EAL Eastern Airlines EAL Emergency Action Level EAL Environmental Analysis Laboratory EAL Evidence Analysis Library (American Dietetic Association) 3 level of the Common Criteria scheme, as defined by ISO/IEC ISO/IEC International Organization for Standardization/International Electrotechnical Commission (ITU-T M 3000) 15408-2 and ISO/IEC 15408-3 - which address product functionality, development environment, documentation, and product testing measures. "These certifications independently confirm CA's ability to deliver the strong protection customers need to safeguard their complex enterprise computing environments from today's extremely insidious and diverse range of cyber-threats - while also facilitating the fast, highly automated enablement of business services wherever they're needed," said Bilhar Mann, senior vice president of security management at CA. "CA continues to deliver technologies that uniquely enable IT organizations to cost-effectively address the full range of challenges they face in today's highly dynamic and inter-connected business environment." CA completed its Common Criteria evaluation and certification through Cygnacom Solutions' Common Criteria Testing Laboratory A Common Criteria Testing Laboratory (CCTL) is an information technology (IT) computer security testing laboratory that is accredited to conduct IT security evaluations for conformance to the Common Criteria international standard. , which is accredited accredited recognition by an appropriate authority that the performance of a particular institution has satisfied a prestated set of criteria. accredited herds cattle herds which have achieved a low level of reactors to, e.g. by the National Voluntary Laboratory Assessment Program and approved by the National Information Assurance Partnership (NIAP). CygnaCom performed the evaluations in accordance with the NIAP's Common Criteria Evaluation and Validation Scheme. "Common Criteria provides assurance that product testing, evaluation, and assessment has been conducted in a sufficiently rigorous and standardized manner," said Nithya Rachamadugu, director of CygnaCom Solutions' Security Evaluation Laboratory. "We congratulate CA for its commitment to information security as evidenced by the recent successful certifications of its security management software." CA Integrated Threat Management r8 provides comprehensive, scalable protection against malware, spyware, blended threats, and other forms of malicious code across the enterprise -- enabling customers to effectively minimize risk and downtime while reducing security workloads. CA Access Control r8 helps organizations protect their critical server resources across platforms and operating systems. It also helps ensure compliance by enforcing policy-based control of who can access specific systems, what they do with that access, and under what circumstances that access is allowed. CA eTrust Security Command Center r8 significantly reduces business risk and helps ensure regulatory compliance while improving the productivity of IT security teams. It presents security data in a visually intuitive manner, so IT security teams can quickly identify and respond to events and vulnerabilities based on their urgency and potential business impact. Other CA products already certified under Common Criteria include CA Single Sign-On v7, CA Audit r8, CA Admin v8 and CA Security Command Center r8. About Common Criteria The National Institute of Standards and Technology National Institute of Standards and Technology, governmental agency within the U.S. Dept. of Commerce with the mission of "working with industry to develop and apply technology, measurements, and standards" in the national interest. (NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. ) and the National Security Agency (NSA NSA abbr. National Security Agency Noun 1. NSA - the United States cryptologic organization that coordinates and directs highly specialized activities to protect United States information systems and to produce foreign ) established the National Information Assurance Partnership (NIAP) to evaluate IT product conformance to the Common Criteria for Information Technology Security Evaluation, an international standard. The program, officially known as the NIAP Common Criteria Evaluation and Validation Scheme (CCEVS) is a partnership between the public and private sectors to help organizations select commercial off-the-shelf information technology (IT) products that meet their security requirements and to help manufacturers of those products gain acceptance in the global marketplace. Twenty-two countries now recognize the Common Criteria as the official third-party evaluation criteria for IT security procedures. About CygnaCom Solutions CygnaCom Solutions, a subsidiary of Entrust, Inc., has provided professional information security services and cryptographic solutions to government and business clients since 1994. CygnaCom, with headquarters in McLean, Va., provides a wide range of consulting services and customized solutions to help clients develop, implement and maintain information security programs, policies and strategy. Through its accredited laboratories, CygnaCom is also a one-stop provider of comprehensive U.S. standards-based security testing and evaluation services for IT and cryptographic products. About CA CA (NYSE: CA), one of the world's largest information technology (IT) management software companies, unifies and simplifies the management of enterprise-wide IT. Founded in 1976, CA is headquartered in Islandia, N.Y., and serves customers in more than 140 countries. For more information, please visit http://ca.com. Copyright (c) 2007 CA. All Rights Reserved. One CA Plaza, Islandia, N.Y. 11749. All trademarks, trade names, service marks, and logos referenced herein belong to their respective companies. |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion