SPYRUS Rosetta Smart Card Expected First to Meet Government Requirements For FIPS 140-1 Level 2 Compliance.Business Editors/High Tech Writers RSA Conference The RSA Conference is a Cryptography-related conference held annually in the San Francisco Bay Area. The RSA Conference started in 1991 as a forum for cryptographers to gather and share the latest knowledge and advancements in the area of Internet security. 2000 SAN JOSE, Calif.--(BUSINESS WIRE)--Jan. 18, 2000 Rosetta Smart Card Moves Into Final Stages of Compliance Testing; Compliance Will Certify Smart Card for Use in Government and Commercial Security Implementations SPYRUS, the Internet ID company for secure e-business, today announced the expected FIPS (Federal Information Processing Standards) A series of publications issed by the U.S. National Institute of Standards and Technology (NIST) that specifies information security guidelines for federal government departments and agencies. 140-1 Level 2 certification of its Rosetta Smart Card, enabling the highly secure hardware token to be used in government and commercial implementations. Smart cards, which include an embedded microprocessor to store data, are quickly being adopted by U.S. government agencies to provide highly secure identification services. The General Services Administration The General Services Administration (GSA) was established by section 101 of the Federal Property and Administrative Services Act of 1949 (40 U.S.C.A. § 751). The GSA sets policy for and manages government property and records. (GSA (1) (Global mobile Suppliers Association, Sawbridgeworth, U.K., www.gsacom.com) A membership organization of suppliers of GSM products and services. Its goal is to promote GSM as the worldwide mobile communications standard. See GSM Association and GSM. ) has embraced the technology, recently releasing its Smart Access Common ID Card procurement to implement a solution that provides access to both physical buildings and computer systems. The Department of Defense has also mandated use of a common smart card as the standard identification card for both active duty and civilian personal. In addition to access services, the department is planning to integrate the smart cards into its public-key infrastructure (PKI (Public Key Infrastructure) A framework for creating a secure method for exchanging information based on public key cryptography. The foundation of a PKI is the certificate authority (CA), which issues digital certificates that authenticate the identity of ) as the primary platform for authentication tokens. To ensure the highest levels of security, the federal government has outlined in the Federal Information Processing Standard Federal Information Processing Standards (FIPS) are publicly announced standards developed by the United States Federal government for use by all non-military government agencies and by government contractors. (FIPS) Pub 140-1 the security requirements that tokens, such as smart cards, must meet for use in government implementations, defining four levels of security. The Department of Defense has stated that all its tokens must meet Level 2 security requirements, improving physical security through the addition of tamper-evident coatings or seals. Although no smart card has yet to receive any FIPS 140-1 certification, SPYRUS is confident it will receive Level 2 certification for its Rosetta Smart Card in the first quarter of this year. "The U.S. government clearly values the powerful protection smart cards offer versus a software-only solution," noted Sue Pontius, SPYRUS President and CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. . "We are confident that the SPYRUS Rosetta Smart Card complies with FIPS 140-1 Level 2 requirements, enabling our product to provide government systems with the highest level of security available in the industry. We also believe commercial vertical markets with requirements for auditable risk management and legal liability mitigation will require smart cards to meet the same certification standards." "CygnaCom Solutions is in the final stages of testing the SPYRUS Rosetta Smart Card. The product is being tested for FIPS 140-1 Level 2 compliance. We anticipate that CygnaCom will be submitting the conformance report to the National Institute of Standards and Technology National Institute of Standards and Technology, governmental agency within the U.S. Dept. of Commerce with the mission of "working with industry to develop and apply technology, measurements, and standards" in the national interest. (NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. ) and to the Canadian Communications Security Establishment Noun 1. Communications Security Establishment - Canadian agency that gathers communications intelligence and assist law enforcement and security agencies CSE international intelligence agency - an intelligence agency outside the United States (CSE (Certified Systems Engineer) See Microsoft certification. ) by the end of January," said Miles Smid, Vice President of CygnaCom Solutions, the government accredited accredited recognition by an appropriate authority that the performance of a particular institution has satisfied a prestated set of criteria. accredited herds cattle herds which have achieved a low level of reactors to, e.g. company conducting the FIPS 140-1 evaluation of the Rosetta Smart Card. "Formal validation of the module will not be complete until NIST and CSE perform their review and confirm the analysis." NIST and CSE oversee the Cryptographic Module Validation Program The Cryptographic Module Validation Program (CMVP) is a joint American and Canadian security accreditation program for cryptographic modules. The program is available to any vendors who seek to have their products certified for use by the U.S. (CMVP CMVP Cryptographic Module Validation Program (NIST/CSE) CMVP Certified Measurement and Verification Professional ), created to validate commercial products for conformance to FIPS 140-1 based on independent, third party testing by accredited laboratories. FIPS 140-1 Level 2 accreditation of the Rosetta Smart Card will enable SPYRUS to tap into the more than $1 billion estimated government demand for smart cards. The U.S. government is expected to purchase between 10 million and 15 million cards over the next few years. SPYRUS is a leading supplier of public key-based solutions that provide the critical foundation for secure Internet commerce. The company's flagship product, SPYRUS Internet Enabling Security (IES), is a comprehensive solution that gives companies the high-assurance security infrastructure required for e-business. SPYRUS IES enables companies to implement a single-vendor solution, integrating a wide range of security products -- including the SPYRUS PKI, Rosetta Smart Cards, SPYRUS Personal Access Readers, and policies and procedures Policies and Procedures are a set of documents that describe an organization's policies for operation and the procedures necessary to fulfill the policies. They are often initiated because of some external requirement, such as environmental compliance or other governmental --to meet customer needs in a timely and cost-effective manner. The SPYRUS Rosetta Smart Card offers the highest level of personal and portable security for individual users. In addition to its tamper-evident physical design, the Rosetta Smart Card is resistant to Differential Power Analysis, protecting the private keys from external exploitation. The device is also available with proximity chips that allow users to gain physical access to buildings. Priced at less than $10 in high volumes, the Rosetta Smart Card provides a cost-effective, high-security solution. "As a worldwide supplier of high-end security controllers for the smart card industry, Infineon Technologies is very pleased to provide SPYRUS with our advanced SLE SLE systemic lupus erythematosus. SLE abbr. systemic lupus erythematosus Systemic lupus erythematosus (SLE) 66CX160S cryptocontroller IC," said Joerg Borchert, Infineon Technologies North America Corp. vice president for Security and Chip Card ICs. "Because SPYRUS has such a strong technology base for providing end-to-end security solutions, Infineon is excited to be working closely with them as they develop secure smart card solutions for potential deployment in the government sector." "With our Rosetta Smart Card, we can offer a cost effective, high-value security solution that meets the government's stringent standards," Pontius added. "We look forward to receiving the FIPS 140-1 Level 2 certification in the very near future." About SPYRUS SPYRUS, the Internet ID Company, is the leader in securing the Internet as a medium of exchange for valued data and transactions for businesses and their customers, and for federal and local governments. SPYRUS' public key system solutions are designed for organizations that have unique business policy management requirements, valued digital information content and transactions to protect and operations that require auditable risk/liability management. SPYRUS Public Key Infrastructure (PKI) solutions have been deployed in health care, utilities, government, financial and law enforcement markets, with operational systems scalable to millions of users world-wide. The company's flagship product line is the SYRUS Internet Enabling Security (IES) solution. SPYRUS IES is an integrated public key product suite comprised of its SPYRUS PKI, Rosetta smart cards, PAR smart card readers, cryptographic tool kits and professional services. The SPYRUS IES provides timely and cost-effective deployments with customizable public key solutions to meet unique customer and industry requirements. SPYRUS, Inc. is headquartered in Santa Clara, California Santa Clara, California (IPA: /ˌsæntəˈklærə/) , founded in 1777 and incorporated in 1852, is a city in Santa Clara County, in the U.S. state of California. , with offices across the United States, Canada, Europe and Australia. SPYRUS has recently been named in the latest Deloitte & Touche "Technology Fast 500" technology growth company list. For more about SPYRUS and its public key system solutions, please visit the Web site at www.spyrus.com. Note to Editors: All trademarks are the property of their respective owners. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion