CygnaCom Laboratory Awarded Accreditation for Important Government Validation: NVLAP Common Criteria Accreditation Increases Cygnacom's Lead in Security Evaluations.

Business Editors

WASHINGTON, D.C.--(BUSINESS WIRE)--Aug. 14, 2000

CygnaCom Solutions, Inc., an Entrust Technologies Company (Nasdaq:ENTU), has been granted accreditation by the US Department of Commerce, National Institute of Standards and Technology National Institute of Standards and Technology, governmental agency within the U.S. Dept. of Commerce with the mission of "working with industry to develop and apply technology, measurements, and standards" in the national interest. (NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. ), National Voluntary Laboratory Accreditation Program National Voluntary Laboratory Accreditation Program (NVLAP) is a National Institute of Standards and Technology (NIST) program which provides an unbiased third-party test and evaluation program to accredit laboratories in their respective fields to the ISO 17025 standard. (NVLAP NVLAP National Voluntary Laboratory Accreditation Program (US NIST) ) for information technology security testing against the Common Criteria (ISO/IEC ISO/IEC International Organization for Standardization/International Electrotechnical Commission (ITU-T M 3000) 15408).

This accreditation, effective immediately, makes CygnaCom one of the first laboratories eligible to be named a Common Criteria Testing Laboratory A Common Criteria Testing Laboratory (CCTL) is an information technology (IT) computer security testing laboratory that is accredited to conduct IT security evaluations for conformance to the Common Criteria international standard. (CCTL CCTL Common Criteria Testing Laboratory (private laboratory, certified to conduct IT product Security Assessments for Information Assurance)
CCTL Coordinator Control Subsystem ) by the National Information Assurance Partnership (NIAP). This NIAP designation will promote recognition of CygnaCom laboratory test results in 13 countries around the world. NIAP intends to publish its first list of recognized CCTLs during the week of August 14, 2000.

CygnaCom's Security Evaluation Laboratory (SEL) evaluates the security features of information technology products such as operating systems and databases. CygnaCom's SEL has achieved accreditation from NVLAP for Evaluation Assurance Levels 1 through 4 (EAL1, EAL2, EAL3, and EAL4) and includes both Protection Profile (PP) and Security Target (ST) evaluation. The SEL was previously certified to perform both Common Criteria and Trusted Computer System Evaluation Criteria Trusted Computer System Evaluation Criteria (TCSEC) is a United States Government Department of Defense (DoD) standard that sets basic requirements for assessing the effectiveness of computer security controls built into a computer system. (TCSEC See NCSC. , also known as Orange Book) evaluations under the Trust Technology Assessment Program (TTAP), which is being replaced by the NIAP evaluation scheme.

"CygnaCom continues to be in a unique position having two NVLAP-accredited testing laboratories, one more than other testing facilities," said Hans Downer, senior vice president, global professional services, Entrust Technologies. "We offer one-stop security testing for both cryptomodules under the FIPS 140-1 program and for information technology products under the TTAP scheme, soon to be under the NIAP scheme."

CygnaCom provides complete information security solutions for businesses. With recognized expertise in public-key infrastructure (PKI) and Information Security (INFOSEC) consulting, CygnaCom also provides cost-effective security evaluation and testing laboratories accredited accredited

recognition by an appropriate authority that the performance of a particular institution has satisfied a prestated set of criteria.

accredited herds
cattle herds which have achieved a low level of reactors to, e.g. for both FIPS 140-1 and Common Criteria. Founded in 1994, CygnaCom Solutions, Inc. is an internationally recognized leader in Public Key Infrastructure (PKI), cryptography, evaluation of security products and computer security.

For additional information on NVLAP visit http://ts.nist.gov/nvlap, for NIAP, go to http://niap.nist.gov/cc-scheme.

About PKI

A public-key infrastructure (PKI) provides a highly trusted infrastructure for issuing and managing digital certificates. Entrust/PKI(tm) certificates enable transactions to be conducted with trust. An Entrust digital certificate is a digital 'passport' that strongly binds transacting parties to a transaction: before, during and after it occurs. Entrust certificates are a mechanism for organizations to establish and maintain their brand and affinity with their constituents, through the issuance of Entrust digital certificates.

About Entrust Technologies

Entrust Technologies, Inc. (Nasdaq: ENTU) is a global leader in solutions that bring trust to e-business relationships by securing and managing the transactions that constitute e-business. Through the industry's most comprehensive portfolio of trusted e-business infrastructure solutions, Entrust Technologies enables customers to secure their B2B (Business to Business) Refers to one business communicating with or selling to another. See B2B e-commerce, B2C and B2G.

B2B - business to business , B2C and internal enterprise transactions and communications, as well as to manage the e-business portals through which these transactions take place. Today Entrust serves more than 1,500 customers worldwide. Entrust Technologies pioneered the public-key infrastructure (PKI) and digital certificate solutions that provide security for business transactions and communications over the Internet. Entrust Technologies is based in Silicon Valley, Ottawa, Canada and Plano, Texas and has offices around the world. For additional company information please visit www.entrust.com.

Entrust is a registered trademark of Entrust Technologies Inc. in the United States and other countries. In Canada, Entrust is a registered trademark of Entrust Technologies Limited. All Entrust product names are trademarks of Entrust Technologies. All other company and product names are trademarks or registered trademarks of their respective owners.

COPYRIGHT 2000 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Publication:	Business Wire
Geographic Code:	1USA
Date:	Aug 14, 2000
Words:	596
Previous Article:	Point West Capital Corporation Announces Second Quarter Results and Financial Condition.
Next Article:	Perle First to Offer Dial-Out Modem Pooling Client for Linux Users.
Topics:	Computer software industry Software Software industry

Related Articles
NIST ANNOUNCES ACCREDITATION OF FOUR NIAP COMMON CRITERIA TESTING LABORATORIES (CCTLs) FOR IT SECURITY TESTING.
NIST'S CRYPTOGRAPHIC MODULE VALIDATION PROGRAM ADDS FIFTH TESTING LABORATORY.
NEW "RECOGNITION ARRANGEMENT" COULD LOWER EXPORT BARRIERS.
NIST CO-HOSTS INTERNATIONAL LABORATORY ACCREDITATION COOPERATION (ILAC) 2000.
NIST-ASME workshop on uncertainty in dimensional measurements. (Conference Report).
SGI TRUSTED IRIX OFFERS SECURE OS FOR GOV AND COM SECTORS.
Seventh NIAP Common Criteria Testing Laboratory approved for it security testing. (News Briefs).
Logica awarded first approved crypto IT security testing lab outside North America.
Quality registrations.
An overview of laboratory accreditation.