SafeNet Luna cryptographic platform enters Common Criteria and SigG evaluation process.SafeNet, Inc. (NASDAQ NASDAQ in full National Association of Securities Dealers Automated Quotations U.S. market for over-the-counter securities. Established in 1971 by the National Association of Securities Dealers (NASD), NASDAQ is an automated quotation system that reports on :SFNT), setting the standard for information security, has announced that the cryptographic platform on which the Luna SA and SP hardware security modules are based, has entered Common Criteria (Common Criteria for Information Technology Security) An international standard process for defining security objectives and for evaluating compliance with those objectives. The Common Criteria have largely replaced the Trusted Computer Security Evaluation Criteria (TCSEC), the Canadian (CC) and German Digital Signature Law (SigG) evaluation process. Already FIPS (Federal Information Processing Standards) A series of publications issed by the U.S. National Institute of Standards and Technology (NIST) that specifies information security guidelines for federal government departments and agencies. 140-2 Level 2 and 3 certified, SafeNet's Luna HSM (1) (Hierarchical Storage Management) The automatic movement of files from hard disk to slower, less-expensive storage media. The typical hierarchy is from magnetic disk to optical disc to tape. line are the first HSM devices to enter the testing phase for CC and SigG certification. Common Criteria was developed through collaboration among national security and standards organizations within Canada, France, Germany, the Netherlands, the Netherlands, The officially Kingdom of The Netherlands byname Holland Country, northwestern Europe. Area: 16,034 sq mi (41,528 sq km). Population (2005 est.): 16,300,000. Capital: Amsterdam. Seat of government: The Hague. Most of the people are Dutch. United Kingdom and the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. , as a common standard to replace their existing security evaluation criteria. As such, it is strongly supported by each of the organizations involved. The national organizations have worked with ISO (1) See ISO speed. (2) (International Organization for Standardization, Geneva, Switzerland, www.iso.ch) An organization that sets international standards, founded in 1946. The U.S. member body is ANSI. to ensure that the CC was suitable to become a formal standard, and it is rapidly becoming the world standard and preferred method for security specifications and evaluations. "SafeNet is serving a critical high assurance security need in the public and private sector for applications like e-billing, qualified certificate-based systems, and time stamping time stamping The stamping of order tickets with the time of entry and execution. For example, options exchanges require stamping of order tickets with the times of execution to the nearest minute. . Having our Luna HSM platform certified for both Common Criteria and SigG, as well as FIPS certification, allows us to serve a global, high-performance identity management market," said Chris Fedde, Senior Vice President and General Manager for SafeNet's Enterprise Security Division. "We feel we are establishing a gold standard for security in server-based applications and management of digital identities, as well as leading the charge to develop high assurance security for sensitive applications." In the hardware security market Common Criteria certification is becoming a regulatory requirement Regulatory requirements are part of the process of drug discovery and drug development. Regulatory requirements describe what is necessary for a new drug to be approved for marketing in any particular country. in a number of areas, especially in the government and military arena, as well as the market for the provision of qualified certificates. In addition, financial and insurance constituencies are starting to evaluate products and solutions with these certifications. In the absence of certified HSM products, users are forced to rely on Common Criteria certified smart cards. Having SafeNet's Luna cryptographic platform certified solves the problem of cryptographic performance, storage, and scalability. In addition, the German hardware security market for qualified digital signatures is only accessible to vendors who are compliant with the SigG legislation. Currently the only devices that are SigG compliant are smartcards, and therefore all security projects in Germany are legally bound to use only smartcard-based hardware. Now with the development of SafeNet's digital identities products being evaluated, organizations that seek a need for high assurance security and performance can use secure appliances rather than smart cards. TUViT, an independent technical testing and evaluation standards body, is evaluating the cryptographic platform on which the SafeNet's Luna Identity Management line is based. The evaluation/certification is going to be performed in accordance with Common Criteria for Information Security Evaluation (CC), V2.1, August 1999, and based on accepted EU Protection Profiles for Secure Signature-Creation Devices and Cryptographic Modules for Certificate Signing Operations. |
|
||||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion