atsec Achieves General Services Administration (GSA) FIPS 201 Evaluation Program (EP) Lab Accreditation.
AUSTIN, Texas -- atsec information security atsec information security is an independent, standards-based IT (information technology) security consulting and evaluation services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. has achieved General Services Administration The General Services Administration (GSA) was established by section 101 of the Federal Property and Administrative Services Act of 1949 (40 U.S.C.A. § 751). The GSA sets policy for and manages government property and records. (GSA (1) (Global mobile Suppliers Association, Sawbridgeworth, U.K., www.gsacom.com) A membership organization of suppliers of GSM products and services. Its goal is to promote GSM as the worldwide mobile communications standard. See GSM Association and GSM. ) FIPS 201 Evaluation Program (EP) Lab accreditation allowing them to perform testing determining conformance of products and services to FIPS 201 requirements on behalf of GSA. This service is aimed at customers that want to sell their respective FIPS 201 compliant IT products and services to Federal Agencies. atsec's "qualification without restriction" is effective from 2008-11-18.
In August 2004, the Homeland Security Presidential Directive (HSPD) 12 established requirements for identification and authentication of federal employees and contractors accessing federal facilities and information systems. FIPS 201: Personal Identity Verification of Federal Employees and Contractors was developed to satisfy the requirements of HSPD 12. atsec's experience in IT security will help hardware and software companies to validate FIPS 201 product or service compliance, which is a requirement for federal agencies who implement compliant solutions as per HSPD-12.
Fiona Pattinson, atsec's Director of Business Development, commented, "As a leader in the business of standards-based IT security testing and evaluation, atsec is very pleased to have achieved this accreditation. We are looking forward to helping vendors achieve FIPS 201 compliance for their products and services."
atsec is already an accredited laboratory (Laboratory code 200658) under the National Voluntary Laboratory Accreditation Program National Voluntary Laboratory Accreditation Program (NVLAP) is a National Institute of Standards and Technology (NIST) program which provides an unbiased third-party test and evaluation program to accredit laboratories in their respective fields to the ISO 17025 standard. (NVLAP) for cryptographic module testing, and is accredited to conduct conformance testing of SCAP and Personal Identity Verification smart card applications and middleware under the National Institute of Standards and Technology National Institute of Standards and Technology, governmental agency within the U.S. Dept. of Commerce with the mission of "working with industry to develop and apply technology, measurements, and standards" in the national interest. (NIST) Personal Identity Verification Program (NPIVP). atsec also operates fully accredited laboratories for Common Criteria testing under the U.S., German, and Swedish national schemes.
About atsec information security
atsec information security is an independent, standards-based information technology security services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. atsec was founded in Munich (Germany) in 2000 and has extensive international operations with offices in the U.S., Germany, Sweden and China.
atsec offers evaluation and testing services leading to formal certification for IT security including evaluation under Common Criteria schemes in the U.S., Germany, and Sweden; cryptographic module and algorithm testing under the Cryptographic Module Validation Program The Cryptographic Module Validation Program (CMVP) is a joint American and Canadian security accreditation program for cryptographic modules. The program is available to any vendors who seek to have their products certified for use by the U.S. of the National Institute of Standards and Technology (NIST) in the U.S. and Communications Security Establishment Noun 1. Communications Security Establishment - Canadian agency that gathers communications intelligence and assist law enforcement and security agencies
international intelligence agency - an intelligence agency outside the United States Canada (CSEC) in Canada; and compliance validation to the Payment Card Industry (PCI (1) (Payment Card Industry) See PCI DSS.
(2) (Peripheral Component Interconnect) The most widely used I/O bus (peripheral bus). ) Data Security Standard.
atsec also offers secure code review, ISO/IEC ISO/IEC International Organization for Standardization/International Electrotechnical Commission (ITU-T M 3000) 27001 ISMS consulting, and penetration testing and scanning services.
atsec works with leading global companies such as IBM, Apple, Microsoft, Hewlett-Packard, Oracle, Cray, BMW, SGI, Vodafone, Swisscom, RWE, and Wincor-Nixdorf.