IBM and atsec achieve independent certification of Red Hat Enterprise Linux 5
[author:Andreas Fabis Public time:Jun 25, 2007] |
|
FOR IMMEDIATE RELEASE
Media Contact:
Andreas Fabis, fabis@atsec.com
Marketing Director
atsec information security
(512) 615-7317
IBM and atsec achieve independent certification of Red Hat Enterprise Linux 5 at Common Criteria EAL4+ under NIAP scheme
atsec completes complex evaluation with CAPP, LSPP and RBAC compliance.
atsec information security is pleased to announce that the U.S. National Information Assurance Partnership (NIAP) Common Criteria Evaluation and Validation Scheme (CCEVS) has certified Red Hat Enterprise Linux 5 as conformant to EAL4+ and the following Protection Profiles: Controlled Access Protection Profile (CAPP), Role Based Access Control (RBAC) Protection Profile and Labeled Security Protection Profile (LSPP). The operating system is certified on several IBM server platforms. The evaluation work was performed by atsec information security corporation, and the effort was sponsored by IBM.
Steve Walker, President of Walker Ventures, founder and former President of Trusted Information Systems Inc., commented: “Since the origins of the Orange Book, it has always been our goal that trusted or multi-level secure systems would be implemented as part of mainstream operating systems. And so I am very pleased to see that Red Hat's Enterprise Linux has now been certified to the Common Criteria EAL4 and LSPP and that the evaluation was completed just a few months after the operating system's release. This shows that mainstream operating systems like Linux are capable of achieving higher levels of trust and our evaluation procedures have matured to the point that such evaluations can be done in a timely manner. This is a very positive development in the evolution of computing systems!“
The completion of this evaluation adds to atsec’s unparalleled reputation for timely completion of Linux evaluations. Since August 2003, atsec has initiated and completed fourteen Linux evaluations at EAL3+ and EAL4+ for five different Linux distributions on a large range of hardware platforms. atsec’s customers have valued atsec’s record of timely completion of projects in conjunction with development schedules in order to reach their markets effectively and take the maximum benefit from their evaluation investment.
Dan Frye, vice president of open systems with IBM, commented earlier in an infoworld.com article: "This is the highest level of security function that anybody has," Frye said. "We have delivered LSPP (Labeled Security Protection Profile) functionality in Red Hat Enterprise Linux 5, and we have certified that at the EAL4 level of assurance."
atsec has extensive experience with the Common Criteria. Applying the methodology to Open Source Software has presented the opportunity to demonstrate that although rigorous, the Common Criteria can be flexible and adaptable to a variety of software paradigms; for instance, it was possible to evaluate existing product and design documentation without the need to refactor this evidence specifical
Otherinfo:atsec information security corporation
9130 Jollyville Road, Suite 260
Austin, TX 78759
USA
Phone: +1-512-615-7300
Telefax:+1-512-615-7301
eMail: info@atsec.com
Printed From:http://www.free-press-release.com/news/200706/1182791356.html
Source:Free Press Release
Similar news >>
IBM and Cisco Team to Offer Crisis Management Services [Mar 20, 2007]
IBM and Business Partners Realize Significant Growth on the Mainframe and Linux [Dec 19, 2006]
IBM RS/6000 Managed Web Hosting by Silicon Networks [Jan 30, 2006]
|
|
