Clearswift Delivers World's Only EAL4 Certified Boundary Security Solution for Military Messaging.Clearswift's DeepSecure 2.1 completes common criteria (Common Criteria for Information Technology Security) An international standard process for defining security objectives and for evaluating compliance with those objectives. The Common Criteria have largely replaced the Trusted Computer Security Evaluation Criteria (TCSEC), the Canadian EAL EAL English as an Additional Language EAL Evaluation Assurance Level EAL Eastern Airlines EAL Emergency Action Level EAL Environmental Analysis Laboratory EAL Evidence Analysis Library (American Dietetic Association) 4 evaluation REDWOOD CITY Redwood City, city (1990 pop. 66,072), seat of San Mateo co., W Calif., on San Francisco Bay; inc. 1868. Manufactures include commmunications, electrical, electronic, and medical equipment. , Calif. -- Clearswift announced today that its DeepSecure 2.1 message security software has passed common criteria Evaluation Assurance Level The Evaluation Assurance Level (EAL1 through EAL7) of an IT product or system is a numerical grade assigned following the completion of a Common Criteria security evaluation, an international standard in effect since 1999. 4 (EAL4); making it the world's only EAL4 certified ACP (Associate Computing Professional) The award for successful completion of an examination in computers offered by the ICCP. It is geared to newcomers in the computing field. For more information, visit www.iccp.org. ACP - Algebra of Communicating Processes 145 compliant security solution. DeepSecure is specifically designed to meet the needs of organizations where security is paramount, such as in the military, government and defense industries. ACP 145 (Allied Communications Protocol Hardware and software standards that govern data transmission between computers. The term "protocol" is very generic and is used for hundreds of different communications methods. A protocol may define the packet structure of the data transmitted or the control commands that manage the 145) is a messaging interoperability standard designed to support communication between military messaging systems. Currently, most systems operate under their own standards, making interoperability between organizations difficult. ACP145 has been designed as an 'Esperanto' standard that will allow nations to interoperate both syntactically and semantically. "Clearswift's DeepSecure, which counts NATO NATO: see North Atlantic Treaty Organization. NATO in full North Atlantic Treaty Organization International military alliance created to defend western Europe against a possible Soviet invasion. among its customers, is the only boundary security solution for military messaging on the planet that has been evaluated to EAL4. It is vital that military organizations are able to communicate securely with each other and we are delighted that DeepSecure 2.1 has been certified to fulfill such a critical role in enabling that communication," VP Sales EMEA (Europe, Middle East, Africa) Refers to that region of the world. For example, one might see products packaged differently for the UK, EMEA and Asia Pacific markets. , Michael Paterson, said. "The EAL4 Certificate was formally presented to Clearswift on Wednesday 20th of Sep at the 7th International Common Criteria Conference in Lanzarote, Spain. Achieving the common criteria EAL4 certification demonstrates that DeepSecure has complied to a stringent set of quality assurance requirements, which customers working with sensitive information demand," Mr. Paterson said. The previous version of DeepSecure provided exceptional standards of security and was also compliant with ACP 145. However, with DeepSecure 2.1 there is no longer a requirement for messages to be converted from the X.400 messaging standard into a MIME (Multi-Purpose Internet Mail See Internet e-mail service. Extensions) format before the content can be examined and policies applied. "When selecting security products, it is critical that the security product not become an avenue for exploitation itself," said Charles Kolodgy, Research Director, Security Products at IDC. "To validate that level of trust, many more companies are turning to the international Common Criteria evaluation program. By gaining Common Criteria certification, especially at EAL 4, Clearswift is demonstrating a commitment to building secure products." "We are also pleased to announce other improvements to DeepSecure including simplified policy capabilities which can be easily enforced and altered by email administrators through the highly intuitive GUI (Graphical User Interface) A graphics-based user interface that incorporates movable windows, icons and a mouse. The ability to resize application windows and change style and size of fonts are the significant advantages of a GUI vs. a character-based interface. ," Mr. Paterson said. DeepSecure 2.1 continues to deliver an enhanced security solution that enables secure and encrypted messages, as well as standard emails, to be audited at the gateway, whilst preventing eaves-dropping attacks. Key Feature Updates: * Security Label support with X.841 SPIFs making DeepSecure 2.1 the only EAL4 evaluated ACP 145 compliant product, and providing the only EAL4 evaluated X.841 SPIF SPIF Sales Promotion Incentive Fund (sometimes written SPIFF) SPIF Security Policy Information File SPIF Single Point Incremental Forming SPIF Shuttle Payload Integration Facility SPIF Shoreline Park Improvement Fund Editor. * Inclusion of both SMTP/MIME and X.400 message protocol conformance validation within the EAL4 evaluation - again making DeepSecure the only mail guard product to include this protocol conformance validation within EAL4 evaluation. * Inclusion of the intuitive ClearPoint Management Interface within the scope of EAL4 evaluation, providing easily understood yet EAL4 assured visual representation of complex policies, and monitoring and control of gateway operation * Conditional policies allow any policy option to be made dependent on the outcome of any other policy check, nested to any depth, to allow creation of policies to meet any requirement, however complex. * EAL4 evaluated plug-in APIs provide clear separation between evaluated and other functions, allowing the functions beyond evaluation (such as virus scanners) to be updated without affecting the evaluated state of the core product. About DeepSecure 2.1 DeepSecure is a messaging security solution that enables organizations to safely transmit highly sensitive Adj. 1. highly sensitive - readily affected by various agents; "a highly sensitive explosive is easily exploded by a shock"; "a sensitive colloid is readily coagulated" information via electronic communications whilst maintaining network integrity. As well as providing virus scanning, DeepSecure also enables file type fingerprinting and word search on messages that may be signed or encrypted. DeepSecure provides assured network separation: messages are stored, and then forwarded through an intermediary rather than through a data stream. This prevents messaging protocols being subverted and being used for external network attacks or unauthorized transfer of confidential data. DeepSecure maintains separate channels for message flow between networks, thus allowing different security policies to be applied in each direction. About Clearswift Clearswift simplifies content security. Our products help organizations enforce best-practice email and web use, ensuring all traffic complies with internal policy and external regulations. Our range of content filtering See Web filtering and parental control software. solutions makes it easy to deploy, manage and maintain no-compromise email and web security for both inbound and outbound traffic Traffic originating in the continental United States destined for overseas or overseas traffic moving in a general direction away from the continental United States. . Clearswift is the only vendor to offer comprehensive, policy-based content security in all three deployment methods: as software, as an appliance and as a managed service. All three platforms are designed to take the hassle out of securing internet traffic, with a clear, intuitive management interface; automatic, 'zero-touch' updates; powerful reporting and common-sense policy management. Twenty years TWENTY YEARS. The lapse of twenty years raises a presumption of certain facts, and after such a time, the party against whom the presumption has been raised, will be required to prove a negative to establish his rights. 2. of experience across 15,000 organizations has helped us raise security standards while simplifying security management at the same time. We've helped many of the world's most successful organizations use the internet with confidence and are committed to staying ahead of the market and helping our customers defend against all emerging threats. www.clearswift.com |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion