Corsec helps companies complete security certifications and validations like FIPS 140-3, Common Criteria, CSfC, & the DoDIN APL / UC APL.
Corsec would like to congratulate our partner, HP Enterprise on successfully completing the Common Criteria certification process at an EAL 2+ for their product, HP Server Automation Ultimate v10.10.002. The certification underscores HPE’s commitment to providing secure and …
NIAP, the governing body over Common Criteria in the U.S., announced last week that it would be removing products from their Product Compliant List (PCL) that do not meet new Random Number Generator (RNG) requirements. This …
The Information Technology Laboratory (ITL) at the National Institute of Standards and Technology (NIST) has released the fourth revision of their Internal Report covering SCAP Version 1.2 Validation Program Test Requirements. SCAP or the “Security Content Automation Protocol” is …
Corsec would like to congratulate our partner, Cisco, on successfully completing all the necessary requirements to achieve listing on the DoD’s Information Network Approved Product List (DoDIN APL). Cisco’s Information Assurance Tool (IAT), StealthWatch Rel. …
Corsec would like to congratulate our partner, SolidFire (A NetApp Company) on successfully completing the Common Criteria certification process for the Element OS 8 running on SF2405, SF4805, and SF9605 Storage Nodes and FC0025 Fibre …
In addition to the new vulnerabilities identified in January of this year, OpenSSL has once again had to release a slew of patches to correct problematic areas, which could ultimately affect your FIPS validation, Common Criteria …
Corsec would like to congratulate our partner, HP Enterprise on successfully completing the Common Criteria certification process for the HPE BladeSystem c7000 and c3000 Enclosure with OA v4.40, VC v4.41, and iLO 4 v2.11. The certification underscores …
Last month NIST released a draft publication on sources of Entropy and randomness in protecting sensitive data. The draft Special Publication “SP 800-90B, Recommendation for the Entropy Sources Used for Random Bit Generation”, is intended to …
RSA is on the horizon and everyone is getting excited. Each year product vendors convene to discuss security and how we will protect our digital world. But, with so much going on, it becomes difficult …
As cyber security risks continue to grow, a number of industries are starting to take steps to ensure secured protection of products. Health Care has always been an area of concern given the sensitive nature of …
With the military’s love of acronyms and the many and varied requirement definitions, understanding how to break into Department of Defense (DoD) sales can be a daunting proposition. How do these DoD and international requirements …
In December of 2015, we heard about the NSA’s proposed reorganization (its biggest in 20 years) and a few of the potential impacts it could have on the agency and industry as a whole. One critical …
President Obama created two new executive orders on Tuesday: The first, a Commission on Enhancing National Cybersecurity, dedicated to “enhance cybersecurity awareness and protections at all levels of Government, business, and society, to protect privacy, to ensure public safety …
Corsec congratulates CyberArk, for achieving listing on the DoDIN APL. CyberArk’s active participation in security certifications and listing on the DoDIN APL signifies the companies’ commitment to providing users with solid product security and CybeArk becomes the first …
Corsec will be in San Diego, CA for the annual AFCEA WEST conference. “The premier naval conference and exposition on the West Coast, WEST is now in its 26th year of bringing military and industry …
On January 28th, 2016, OpenSSL released a patch to update a high risk vulnerability. It was discovered and reported that prime “files may not be “safe”. Where an application is using DH configured with parameters …
We are pleased to congratulate our partner DTECH LABS (a subsidiary of Cubic) for a true partnership in product security compliance and security hardening. Corsec and DTECH together have broken the previous benchmarks in time …
As previously mentioned, CMVP announced that all FIPS 140-2 validations that use Random Number Generators (RNG), as well as certifications that use both the NIST 800-90A DRBG and RNG will be required to re-validate, otherwise, they will …
EMC continues to grow as a leader in the secured storage playing field. Corsec would like to congratulate our partner EMC on completing the Common Criteria EAL 2+ evaluation for their product, the SourceONE v7.2. With this …
On January 28th; the U.S., Canada, and 47 European countries take time to acknowledge the importance of privacy and data protection best practices. Although this day has its roots in protecting personal data, specifically with …