Tumbleweed Valicert Validation Authority to Complete National Information Assurance Partnership --NIAP-- Common Criteria Evaluation.Business Editors/High-Tech Writers REDWOOD CITY, Calif.--(BUSINESS WIRE)--June 14, 2004 VA 4.8 Server and Clients to Be Evaluated for Conformance to the Common Criteria Tumbleweed(R) Communications Corp. (Nasdaq:TMWD), a leading provider of secure Internet messaging software and hardware to enterprises and government agencies, today announced that the Tumbleweed Valicert Validation Authority(TM) (VA) has been accepted by the National Information Assurance Partnership (NIAP See Common Criteria. ) for International Common Criteria for Information Technology Security Evaluation. Common Criteria evaluation is an activity managed by the National Institute of Science and Technology The National Institute of Science and Technology (abbrv NIST) is an engineering college in Pallur Hills Orissa, 12 km from the city of Berhampur. It was started in 1996 by a few NRIs, some of whom belonged to Orissa. (NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. ) and the National Security Agency (NSA). Completing the evaluation process is an important milestone for customers who want independent validation regarding the security capability of mission-critical products, like the VA. "Common Criteria evaluation will make the Validation Authority the first complete Public Key Infrastructure (PKI) digital certificate validation solution that has passed FIPS (Federal Information Processing Standards) A series of publications issed by the U.S. National Institute of Standards and Technology (NIST) that specifies information security guidelines for federal government departments and agencies. 140-1, DOD (1) (Dial On Demand) A feature that allows a device to automatically dial a telephone number. For example, an ISDN router with dial on demand will automatically dial up the ISP when it senses IP traffic destined for the Internet. DISA 1. (body) DISA - Defense Information Systems Agency. 2. (standard) DISA - Data Interchange Standards Association. JITC JITC Joint Interoperability Test Command (formerly Joint Interoperability Test Center) JITC Joint Interoperability Test Center (obsolete; now Joint Interoperability Test Command) and the Common Criteria evaluation," said John Hines, Director of Validation Authority Product Development. "The Common Criteria evaluation will be completed later this year, and will provide customers an even greater level of confidence in our solution. The VA is the most widely deployed PKI digital certificate validation solution by the US Department of Defense as well as international banks and financial institutions. Common Criteria certification is recognized by 19 participating countries in the Common Criteria Mutual Recognition Agreement, which will open up new markets for the VA product line." Tumbleweed has chosen Science Applications International Corporation (SAIC SAIC - http://saic.com. ), accredited accredited recognition by an appropriate authority that the performance of a particular institution has satisfied a prestated set of criteria. accredited herds cattle herds which have achieved a low level of reactors to, e.g. by NIST's National Voluntary Laboratory Accreditation Program National Voluntary Laboratory Accreditation Program (NVLAP) is a National Institute of Standards and Technology (NIST) program which provides an unbiased third-party test and evaluation program to accredit laboratories in their respective fields to the ISO 17025 standard. (NVLAP NVLAP National Voluntary Laboratory Accreditation Program (US NIST) ), as the Common Criteria Testing Laboratory A Common Criteria Testing Laboratory (CCTL) is an information technology (IT) computer security testing laboratory that is accredited to conduct IT security evaluations for conformance to the Common Criteria international standard. for the evaluation. Tumbleweed's validation solution has been targeted for Evaluation Assurance Level The Evaluation Assurance Level (EAL1 through EAL7) of an IT product or system is a numerical grade assigned following the completion of a Common Criteria security evaluation, an international standard in effect since 1999. (EAL) 3, and will be tested for conformance to the Certificate Issuing and Management Components Security Level 1 Protection Profile (CIMC CIMC Certified Investment Management Consultant (Institute for Investment Management Consultants) CIMC California Indian Manpower Consortium CIMC Club Internaute Montreal Cafe (Montreal, Quebec, Canada) SL 1PP). Tumbleweed has already successfully completed Common Criteria evaluation of its secure email firewall solution, Messaging Management System (MMS). The inclusion of VA into the 'In Process' list for Common Criteria can be found on http://niap.nist.gov/cc-scheme/in_evaluation.html#t. About the Tumbleweed Valicert Validation Authority Validation Authority (VA) ensures the validity and integrity of highly valued and trusted transactions. Validation Authority is a Certificate Authority (CA) neutral, extensible server that utilizes multiple validation protocols for checking the validity of X.509 certificates within Public Key (PKI) environments. Validation Authority delivers a comprehensive, scalable, and reliable framework for validating digital certificates in real time. Validation Authority can validate a certificate issued by any CA. The Validation Authority is the: -- Only validation solution that supports both stand-alone and distributed OCSP solutions -- Most widely deployed OCSP responder in the US Department of Defense PKI. -- Recognized leader in the field and is deployed at the majority of Identrus member banks In addition to the Valicert Validation Authority, Tumbleweed also offers a suite of plug-in applications to simplify certificate validation processing at the application level. Server Validator (SV) is a plug-in for the most widely used Secure Web Servers on multiple OS platforms. Desktop Validator (DV) is a Microsoft OS based plug-in that provides highly flexible validation options for Microsoft Windows based applications. About Tumbleweed Communications Corp. Tumbleweed is a leading provider of secure Internet messaging software and appliances for enterprises and government agencies. By making Internet communications secure, reliable and automated, Tumbleweed's email firewall, secure file transfer, secure email, and identity validation solutions help customers significantly reduce the cost of doing business. Tumbleweed products are used by millions of end-users and tens of thousands of corporations. Tumbleweed customers include ABN Amro, Bank of America
Bank of America (NYSE: BAC TYO: 8648 ) is the largest commercial bank in the United States in terms of deposits, and the largest company of its kind in the world. Securities, Catholic Healthcare West Catholic Healthcare West (CHW) is a California not-for-profit public benefit corporation that operates hospitals in California, Arizona, and Nevada[1]. As such, it is exempt from federal and state income taxes. , JP Morgan Chase & Co., The Regence Group (Blue Cross/Blue Shield), St. Luke's Episcopal Healthcare System, the US Food and Drug Administration, and the US Navy and Marine Corps. Tumbleweed Communications was founded in 1993 and is headquartered in Redwood City, Calif. For additional information about Tumbleweed, go to www.tumbleweed.com or call 650-216-2000. SAFE HARBOR STATEMENT Tumbleweed cautions that forward-looking statements contained in this press release are based on current plans and expectations, and that a number of factors could cause the actual results to differ materially from the guidance given at this time. These factors are described in the Safe Harbor statement below. Except for the historical information contained herein, the matters discussed in this press release may constitute forward-looking statements that involve risks and uncertainties that could cause actual results to differ materially from those projected, particularly with respect to the usage, features, and performance of Tumbleweed's Valicert Validation Authority products. In some cases, forward-looking statements can be identified by terminology such as "may," "will," "should," "potential," "continue," "expects," "anticipates," "intends," "plans," "believes," "estimates," and similar expressions. For further cautions about the risks of investing in Tumbleweed, we refer you to the documents Tumbleweed files from time to time with the Securities and Exchange Commission, particularly Tumbleweed's Form 10-K filed March 15, 2004 and Form 10-Q filed May 10, 2004. Tumbleweed assumes no obligation to update information contained in this press release, which represents the company's expectations only as of the date of this release and should not be viewed as a statement about the company's expectations after such date. Although this release may remain available on either company's website or elsewhere, its continued availability does not indicate that either company is reaffirming or confirming any of the information contained herein. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion