Corsec partners with HP to help P-Class Smart Array RAID Controllers reach FIPS 140-2 Level 2 validation

Congratulations to Hewlett-Packard (NYSE: HPQ), for successfully completing the Federal Information Processing Standards 140-2 (FIPS 140-2) validation for your P-Class Smart Array Raid controller. The certification underscores HP’s commitment to helping federal organizations and global enterprises secure privileged accounts. Corsec is pleased and excited to have helped them reach such a monumental goal.

About HP P-Class Smart Array RAID Controllers

The HP P-Class Smart Array RAID Controllers are a family of serial-attached SCSI1 host bus adapters that provide intelligent control for storage array. The controllers can be card-based or embedded within an HP server, and provide a high speed data path, on-board storage cache, remote management, and encryption of data at rest. Additional drives can be easily added to increase capacity. The purpose of the controller is to transform an application’s high-level ‘read’ or ‘write’ disk operations into the individual instructions required for a RAID2 array using an embedded RAID-on-Chip (ROC) processor. Disk operations are protected in transit via the Smart Array Controllers’ on-board memory cache that acts as a buffer for disk input/output operations. When a controller detects a power loss, any data in the cache is written to the flash memory for retrieval when the power returns. For more on the Smart Array products click here

About FIPS 140-2

The FIPS 140-2 standard is a joint effort by the National Institute of Standards and Technology (NIST) in the United States, and the Communications Security Establishment Canada (CSEC), under the Canadian government. The Cryptographic Module Validation Program (CMVP), headed by NIST, provides module and algorithm testing for FIPS 140-2, which applies to Federal agencies using validated cryptographic modules to protect sensitive government data in computer and telecommunication systems. FIPS 140-2 provides stringent third-party assurance of security claims on any product containing cryptography that may be purchased by a government agency.

The FIPS standard, which is mandated by law in the U.S. and very strictly enforced in Canada, is also currently being reviewed by ISO to become an international standard. FIPS 140-2 is gaining worldwide recognition as an important benchmark for third party validations of encryption products of all kinds. FIPS 140-2 validation of the HP P-Class Smart Array RAID Controllers will provide users with a high degree of security, assurance, and dependability.

In addition to helping companies reduce risk, increase financial returns and improve branding, Corsec’s approach to Certification can help companies:

  • Shorten time to market and eliminate the impact of missed financials
  • Assure its customers that its product has been independently tested and validated
  • Access to untapped markets that have certifications as barriers to entry
  • Create a competitive advantage

Corsec partners with IT companies worldwide to manage the process of IT security certifications and validations, including FIPS 140-2, Common Criteria and DoDIN APL.

Looking to start the security certification process? Don’t know where to start? View our assessment and turnkey solution pages to determine the best path forward for your products. You can also take a look at how we have helped organizations like yours successfully navigate the complex and lengthy security certification process.