Siemens Achieves NIST’s FIPS 140-2 Validation

Corsec would like to congratulate our partner, Siemens, on taking their Rugged Operating System (ROS) products through the Federal Information Processing Standard 140-2 (FIPS 140-2) validation process. After working with Corsec, Siemens was able to complete their FIPS 140-2 validations for the RUGGEDCOM Ethernet Switches and RUGGEDCOM Serial Device Server. For more information on the validation and to find additional details on the product’s security policy, visit NIST’s validated modules site.

Siemens is a global powerhouse focusing on the areas of electrification, automation and digitalization. Their completion of the FIPS 140-2 validation process demonstrates their commitment to strong levels of security, including a government backed product offering and a dedication to providing customers and end users with the most scrutinized and highly tested security solutions. These validations also strengthen Siemens’ stance on complying with provisions of the recent Presidential Executive Order on “Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure”.

About FIPS 140-2

FIPS 140-2 is a joint effort by the National Institute of Standards and Technology (NIST) in the United States, and the Communications Security Establishment Canada (CSEC), under the Canadian government. The Cryptographic Module Validation Program (CMVP), headed by NIST, provides module and algorithm testing for FIPS 140-2, which applies to Federal agencies using validated cryptographic modules to protect sensitive government data in computer and telecommunication systems. FIPS 140-2 provides stringent third-party assurance of security claims on any product containing cryptography that may be purchased by a government agency.

FIPS, which is mandated by law in the U.S. and very strictly enforced in Canada, is also currently being reviewed by ISO to become an international standard. FIPS 140-2 is gaining worldwide recognition as an important benchmark for third party validations of encryption products of all kinds. A FIPS 140-2 validation of a product provides end users with a high degree of product security, assurance, and dependability.

The FIPS standard, which is mandated by law in the U.S. and very strictly enforced in Canada, is also currently being reviewed by ISO to become an international standard. FIPS 140-2 is gaining worldwide recognition as an important benchmark for third party validations of encryption products of all kinds.

About the Products:

The Rugged Operating System (ROS) offers plug and play operation – including automatic learning, negotiation and crossover detection. In addition, ROS offers Quality of Service for real-time traffic, and VLAN with double tagging and GVRP support. The RUGGEDCOM Ethernet Switches and RUGGEDCOM Serial Device Server are utility-grade, fully-managed Ethernet devices designed to operate reliably in electrically harsh and climatically demanding environments. The devices’ rugged hardware design, coupled with the embedded ROS version 4.2.1.F, provides improved system reliability and advanced cybersecurity and networking features.

This makes them ideally suited for creating secure Ethernet networks for mission-critical, real-time control applications

About Siemens:

Siemens is a global powerhouse positioned along the electrification value chain – from power generation, transmission and distribution to smart grid solutions and the efficient application of electrical energy – as well as in the areas of medical imaging and laboratory diagnostics

For further information, please visit www.siemens.com

About Corsec Security, Inc.:

For nearly two decades, Corsec has assisted companies through the IT security certification process for FIPS 140-2, Common Criteria (CC) and the DoD’s APL. We are a privately-owned company focused on partnering with organizations worldwide to assist with the process of security certifications and validations. Our certification methodology helps open doors to new markets and increase revenue for clients with products ranging from mobile phones to satellites. Our broad knowledge safeguards against common pitfalls and thwarts delays, translating to a swift and seamless path to certification. Corsec has created the benchmark for providing business leaders with fast, flexible access to industry knowledge on security certifications and validations.

Stay up to date with Corsec as we bring you all the most recent updates to the standards, certifications, and requirements – Subscribe

Corsec Social Media:

LinkedInTwitterFacebook