Corsec Completes 200th FIPS 140 & Common Criteria Certification for IT Security Vendors
07/21/2010

Corsec Security, Inc., the leading provider of FIPS 140-2 and Common Criteria documentation and consulting services, today announced the completion of the 200th certificate they have achieved for IT Security vendors across the globe.

Online PR News – 21-July-2010 – – Corsec Security, Inc., the leading provider of FIPS 140-2 and Common Criteria documentation and consulting services, today announced the completion of the 200th certificate they have achieved for IT Security vendors across the globe. FIPS 140-2 and Common Criteria evaluations can be very difficult and lengthy for many vendors which makes it necessary for vendors to have dedicated support when aiming to achieve their validation goals.

“We have had some great experiences and worked with countless technologically advanced products leading up to our 200th certification. The value we have provided to our vendors is apparent in the fact that they return to us for help again and again,” said Matthew Appler, CEO, Corsec Security. “We owe our success to our valued customers and hope that we can continue to surpass their expectations in providing them with exceptional service.”

Corsec has been helping vendors achieve their validation goals for over twelve years. Over the course of these 200+ validations, Corsec has worked with over 20% of the vendors with FIPS 140 validation and almost 9% of vendors with Common Criteria certification; including EMC, Sandisk, Blue Coat, Harris, Citrix, and VMware. “Corsec plays an important role in assisting Blue Coat to achieve our validation goals,” said Tammy Green, Security Architect, Blue Coat Systems. “We are pleased to work with such a top-notch team at Corsec. Their project management skills and knowledge of the validation process is helping us to accomplish our goals on time and on budget in order to meet our needs. Not only have they been instrumental in the success of previous validations, they continue to make validations more cost effective and efficient for the company.”

The FIPS 140-2 standard headed by NIST in the United States, and CSEC in Canada, applies to Federal agencies using validated cryptographic modules to protect sensitive government data in computer and telecommunication systems. FIPS 140-2 validation provides stringent third-party assurance of security claims on any product containing cryptography that may be purchased by a government agency. It is mandated by law in the U.S. and very strictly enforced in Canada.

Common Criteria is an internationally recognized standard (ISO 15408) which define a common framework for evaluating security features and capabilities of Information Technology security products. The standard consists of several predetermined evaluation assurance levels, each one more stringent than the last. Common Criteria allows vendors to have their products tested against a chosen level by an independent third-party testing laboratory. As a part of the Common Criteria Mutual Recognition Agreement (CCRA) the U.S., along with 25 other countries adhere to this stringent standard and require government agencies as well as other industries to purchase only those commercial security products which have met specified third-party assurance requirements and have been tested by an accredited national laboratory.

About Corsec Security, Inc.
Corsec Security, Inc. specializes in helping companies navigate through the complex process of receiving FIPS 140 and Common Criteria (CC) certifications. Corsec’s consulting, document creation, and project management services deliver unmatched expertise in achieving government validation efforts at a firm, fixed price. Corsec partners with companies around the world to achieve local and international certification and to add security functionality to a wide range of products. Corsec minimizes the time, effort and money a vendor needs to invest in validation while ultimately maximizing the return on that investment. For further information, please visit www.corsec.com.