SENSAGE ACHIEVES IN PROCESS STATUS FOR
STRINGENT
FIPS 140-2 GOVERNMENT STANDARD
NIST Cryptographic Security Kernel Approval Required
for Use in U.S. Government Agency Networks
SAN FRANCISCO, September 16, 2009 - SenSage, Inc. today announced that the SenSage Private Encryption File System has been placed on the Modules In Process List for the Federal Information Processing Standards Publications (FIPS) 140-2 Validation: Security Requirements for Cryptographic Modules. FIPS 140-2 validation is a requirement for any cryptographic product which will be used in a U.S. government agency network, and provides strong validation for SenSage SIEM, log management and event data warehouse applications. SenSage encryption capabilities provide government agencies with a tamper-resistant, immutable data warehouse for storage and analysis of sensitive security information.
“Cyber security is a critical issue for government agencies as they need to protect sensitive data from both external and internal threats,” said Bruno Kurtic, vice president of product management for SenSage. “SenSage compliance reporting and forensics solutions are directly mapped to government agency and contractor auditing requirements, and FIPS 140-2 validation is a significant milestone in validating our capabilities.”
The FIPS 140-2 standard is a joint effort by the National Institute of Standards and Technology (NIST) in the United States and the Communications Security Establishment (CSEC) under the Canadian government. The Cryptographic Module Validation Program (CMVP), headed by NIST, provides module and algorithm testing for FIPS 140-2 which applies to federal agencies using validated cryptographic modules to protect sensitive government data in computer and telecommunication systems. FIPS 140-2 provides stringent third-party assurance of security claims on any product containing cryptography that may be purchased by a government agency. The In Process listing can be viewed at http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140InProcess.pdf.
“The FIPS 140-2 validation process standard is stringent and complex, and only products that are well designed and thoroughly proven are able to pass,” said Matthew Appler, CEO and co-founder of Corsec Security, Inc., a consulting firm with over 11 years of validation experience. “SenSage solutions meet all the criteria necessary to achieve government certification.”
The FIPS standard, which is mandated by law in the United States and
very strictly enforced in Canada, is also currently being reviewed
by ISO to become an international standard. FIPS 140-2 is gaining worldwide
recognition as an important benchmark for third party validations of
encryption products of all kinds. FIPS 140-2 validation of the SenSage
Private Encryption File System will provide users with a high degree
of security, assurance and dependability.
About SenSage
SenSage, Inc. offers patented event data warehouse solutions that provide actionable results from massive amounts of log and event data. More than 400 customers have deployed SenSage solutions to reduce security, fraud and compliance risks at a fraction of the cost of traditional data warehouses and log management solutions. Based in San Francisco, the company markets its solutions directly and through partners, including Cerner, EMC, HP, Hitachi Data Systems, McAfee, Tokyo Electron Device and many others. Visit www.SenSage.com for more information.
About Corsec Security, Inc.
Corsec Security, Inc. specializes in helping companies navigate through the complex process of receiving FIPS 140-2 and Common Criteria (CC) certifications. Corsec’s consulting, document creation, and project management services deliver unmatched expertise in achieving government validation efforts at a firm, fixed price. Corsec partners with companies around the world to achieve local and international certification and to add security functionality to a wide range of products. Corsec minimizes the time, effort and money a vendor needs to invest in validation while ultimately maximizing the return on that investment. For further information, please visit www.corsec.com.
PR Contacts
|
Julia Sinykin |
Bob Schoettle |