Red Hat Continues Public Sector Security Leadership.Partnership with Tresys Technology and Additional Common Criteria (Common Criteria for Information Technology Security) An international standard process for defining security objectives and for evaluating compliance with those objectives. The Common Criteria have largely replaced the Trusted Computer Security Evaluation Criteria (TCSEC), the Canadian Evaluations Reinforce Red Hat's Commitment to IT Security for Public Sector Customers WASHINGTON -- Red Hat (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on : RHAT RHAT Red Hat (stock symbol) RHAT Rainwater Harvesting Association of Tanzania RHAT Register Hba Attributes ), the world's leading provider of open source, today announced at the 2nd Annual Red Hat Government User Conference that it has partnered with Tresys Technology to enhance the services backing Security-Enhanced Linux-based Red Hat Enterprise Linux Red Hat Enterprise Linux (often abbreviated to RHEL) is a Linux distribution produced by Red Hat and targeted toward the commercial market, including mainframes. Red Hat commits to supporting each version of RHEL for 7 years after its release. and has enhanced its security evaluation program, reinforcing its commitment to IT security for public sector customers. Red Hat's commitment to security evaluations and innovation have long positioned the company as a leader in delivering secure, independently evaluated software to organizations in the public and private sectors. Recent Common Criteria evaluations bring the total number of independent security certifications to five for Red Hat Enterprise Linux across eight major hardware platforms Each hardware platform, or CPU family, has a unique machine language. All software presented to the computer for execution must be in the binary coded machine language of that CPU. Following is a list of the major hardware platforms in existence today. See platform. . Red Hat has partnered with Tresys Technology, a principal open source contributor to Security Enhanced Linux See SELinux. (SELinux), to deliver services for SELinux. Building upon their extensive open source technology and unmatched experience using SELinux to build secure systems, Tresys is developing a series of products that make it easier to use the power of SELinux. The partnership with Tresys will give Red Hat public sector customers the services they need to integrate SELinux and enhanced security functionality required to protect platforms at their core, using approaches such as Mandatory Access Control A system of access control that assigns security labels or classifications to system resources and allows access only to entities (people, processes, devices) with distinct levels of authorization or clearance. These controls are enforced by the operating system or security kernel. (MAC). The ability to be able to contain security breaches, significantly impacts the development of technology systems that meet public sector security needs. "This is an important announcement which shows how both government and business can take security to the next level. As public sector agencies, along with the Department of Defense (DoD) and Intelligence Community, strive to deliver new solutions quickly and with enhanced functionality, compromised security is not an option," said Paul Smith, Red Hat's vice president of government operations. "SELinux is the best security technology available," said Frank Mayer, President/CTO Tresys Technology. "This partnership with Red Hat enables us to expand the application of SELinux flexible mandatory access controls to greatly enhance the security of even more business applications. With this technology, government and business organizations can contain hackers, protect their assets and applications, and minimize damage by malicious users and programs." Red Hat has also announced its continued commitment to security evaluation leadership through Common Criteria evaluations. Common Criteria is an internationally recognized set of guidelines (ISO/ISE 15408), which define a common infrastructure for IT security products. The standard consists of several predetermined pre·de·ter·mine v. pre·de·ter·mined, pre·de·ter·min·ing, pre·de·ter·mines v.tr. 1. To determine, decide, or establish in advance: assurance levels that the vendor can choose to be tested against, each one more stringent than the last. The evaluation process is rigorous and can take months or years to complete. Once achieved, Common Criteria certifications are mutually accepted by 21 countries, including the United States government, regardless of what country the product was validated in. To date, Red Hat has successfully completed Common Criteria Evaluations at EAL EAL English as an Additional Language EAL Evaluation Assurance Level EAL Eastern Airlines EAL Emergency Action Level EAL Environmental Analysis Laboratory EAL Evidence Analysis Library (American Dietetic Association) 3+/Controlled Access Protection Profile (CAPP) for the following products, in partnership with Hewlett Packard (HP): Red Hat Enterprise Linux v.4, Update 2 was evaluated on all Red Hat certified HP ProLiant Servers, HP Integrity Servers, HP Carrier Grade Servers, and HP Workstations. Also, Red Hat partnered with SGI (SGI, Sunnyvale, CA, www.sgi.com) A manufacturer of workstations and servers, founded in 1982 by Jim Clark. The company was founded as Silicon Graphics, Inc., but changed to its acronym in 1999. for evaluation of Red Hat Enterprise Linux 4 on the SGI[R] Altix[R] server platform at EAL 3+/CAPP. All the evaluations were completed by atsec information security atsec information security is an independent, standards-based IT (information technology) security consulting and evaluation services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. corporation and certified by the US National Information Assurance Partnership (NIAP See Common Criteria. ). In addition, Red Hat recently completed Common Criteria Evaluations, in partnership with IBM (International Business Machines Corporation, Armonk, NY, www.ibm.com) The world's largest computer company. IBM's product lines include the S/390 mainframes (zSeries), AS/400 midrange business systems (iSeries), RS/6000 workstations and servers (pSeries), Intel-based servers (xSeries) , at CAPP/EAL4 -- the highest level generally achieved by commercial software: Red Hat Enterprise Linux v.4 on six platforms including Red Hat Enterprise Linux WS on IBM xSeries, and Red Hat Enterprise Linux AS on IBM xSeries, iSeries, pSeries, zSeries, as well as Opteron-based systems. The evaluation was completed by atsec information security corporation and certified by NIAP. Continuing Red Hat's dedication to the company's security evaluation program, both HP and IBM have submitted the upcoming Red Hat Enterprise Linux 5 for EAL 4+/CAPP, Labeled Security Protection Profile (LSPP LSPP Labeled Security Protection Profile LSPP LS-PrePost LSPP Local Service Provider Portability LSPP Large Scale Printer Plotter LSPP Layered Security Protection Profile ) and Role-Based Access Controls (RBAC RBAC Role-Based Access Control (informatics) RBAC Rule-Based Access Control (informatics) RBAC Recreational Boating Advisory Council (Canada) RBAC Re-Use Business Assistance Center ) evaluation. "Government agencies are transforming the way they integrate, access and share information. As a recognized global standard, Common Criteria certification provides government agencies and commercial enterprises with proven third-party assurance that our solutions can meet the toughest demands of mission-critical security environments," said Smith. "As the federal government increases its use of solutions that are securely integrated, the importance of NIAP Common Criteria certification will continue to increase. With 5 certifications and 2 more evaluations underway, Red Hat has demonstrated commitment to delivering solutions that are supported and validated by rigorous international technology standards." To learn more about the Red Hat's security road map and public sector solutions, please visit http://www.redhat.com/solutions/industries/government/. About Red Hat, Inc. Red Hat, the world's leading open source solutions provider, is headquartered in Raleigh, NC with satellite offices spanning the globe. CIOs and other senior-level IT executives have ranked Red Hat as the industry's most valued vendor for two consecutive years in the CIO CIO: see American Federation of Labor and Congress of Industrial Organizations. (Chief Information Officer) The executive officer in charge of information processing in an organization. Insight Magazine Vendor Value study. Red Hat is leading Linux and open source solutions into the mainstream by making high-quality, low-cost technology accessible. Red Hat provides an operating system platform, Red Hat Enterprise Linux, along with applications, management, and middleware solutions, including JBoss Enterprise Middleware Suite. Red Hat is accelerating the shift to service-oriented architectures and enabling the next generation of web-enabled applications running on a low-cost, secure open source platform. Red Hat also offers support, training and consulting services to its customers worldwide and through top-tier partnerships. Red Hat's open source strategy offers customers a long term plan for building infrastructures that are based on and leverage open source technologies with a focus on security and ease of management. Learn more: http://www.redhat.com Forward-Looking Statements Certain statements contained in this press release may constitute "forward-looking statements" within the meaning of the Private Securities Litigation Reform Act The Private Securities Litigation Reform Act of 1995 (PSLRA) implemented several significant substantive changes affecting certain cases brought under the federal securities laws, including changes related to pleading, discovery, liability, class representation and awards fees and of 1995. Forward-looking statements provide current expectations of future events based on certain assumptions and include any statement that does not directly relate to any historical or current fact. Actual results may differ materially from those indicated by such forward-looking statements as a result of various important factors, including: risks related to the integration of acquisitions; the ability of the Company to effectively compete; the inability to adequately protect Company intellectual property and the potential for infringement or breach of license claims of or relating to third party intellectual property; risks related to data and information security vulnerabilities; ineffective management of, and control over, the Company's growth and international operations; adverse results in litigation An action brought in court to enforce a particular right. The act or process of bringing a lawsuit in and of itself; a judicial contest; any dispute. When a person begins a civil lawsuit, the person enters into a process called litigation. ; the dependence on key personnel as well as other factors contained in in our most recent Quarterly Report on Form 10-Q Form 10-Q See 10-Q. (copies of which may be accessed through the Securities and Exchange Commission's website at http://www.sec.gov), including those found therein under the captions "Risk Factors" and "Management's Discussion and Analysis Management's discussion and analysis (MD&A) A report from management to shareholders that accompanies the firm's financial statements in the annual report. It explains the period's financial results and enables management to discuss topics that may not be apparent in the financial of Financial Condition and Results of Operations". In addition, the forward-looking statements included in this press release represent the Company's views as of the date of this press release and these views could change. However, while the Company may elect to update these forward-looking statements at some point in the future, the Company specifically disclaims any obligation to do so. These forward-looking statements should not be relied upon as representing the Company's views as of any date subsequent to the date of the press release. LINUX is a trademark of Linus Torvalds. RED HAT and JBOSS are registered trademarks of Red Hat, Inc. and its subsidiaries in the US and other countries. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion