January 18, 2013

Cover Story

CEO of the Year

Utah’s business landscape is rich with professionals who have le...Read More

Featured Articles

Did you go Skiing this winter?

Around Utah

Sections

Spotlight
Martin Plaehn

Spotlight
Karen Sendelback

Legal Briefs
Social Media and Employers: Friends or Enemies?

Money Talk
The Case for HSAs

Economic Insight
Time to Show Up

Lessons Learned
Make a Move

TechKnowledge
In the Lab

EntrepreneurEdge
Rent to Own

Business Trends
Back from the Dead

Executive Living
Artful Inspiration

Features
A Breath of Fresh Air

Features
Worst-Case Scenario

Regional Report
Northern Utah

Focus
Measure Up

Industry Outlook
Travel & Tourism

Players
Players

Article

AccessData Group Achieves Common Criteria Certification for CIRT

Press Release

January 18, 2013

AccessData’s CIRT v.2.1.2 received certification from Common Criteria, an internationally recognized standard for computer security certification, with an Evaluation Assurance Level (EAL) of 3+. Common Criteria provides a set of standards used by the federal government and other organizations to assess the security and assurance of technology products. Common Criteria implements and evaluates solutions, employing rigorous and consistent methodologies, to validate and rate their levels of security assurance. Common Criteria is the driving force for the widest available mutual recognition of secure and trusted IT products.

AccessData chose to invest in the certification to ensure CIRT is endorsed against internationally sanctioned and rigorous security standards. CIRT is the first and only product to integrate network and host forensics, malware analysis, large-scale data auditing and remediation capabilities. The solution delivers the functionality of AccessData’s SilentRunner network forensics solution, AD eDiscovery and AD Enterprise products through a single collaborative interface. Common Criteria has bestowed this certification upon CIRT for its data protection technology, including its ability to provide network surveillance (also, its ability to detect data spillage, and its ability to perform integrated root cause analysis in the event of a security breach). The core technology certified through Common Criteria exists in many of AccessData’s solutions.

This certification ensures the product was methodically tested and checked at an independent lab where a vulnerability analysis demonstrated resistance to penetration attackers. The lab found that CIRT v2.1.2 provides the means to identify and manage inappropriate data hosted on corporate end user workstations, file shares, and email message servers. It offers protection against attempts to breach system security by attackers. The lab gave CIRT its highest rating of all products it is currently testing. The EAL score of 3+ is recognized by all countries participating in the Common Criteria Recognition Arrangement (CCRA).

The evaluators determined that the initialization process is secure and that the security functions are protected against tamper and bypass. User guides were found to be sufficiently descriptive on how to use and administer CIRT, resulting in a secure configuration. The evaluators found that the CIRT v2.1.2 configuration items were clearly marked and the access control measures were effective in preventing unauthorized access to configuration items. AccessData’s configuration management system was also observed during the site visit, and it was found to be mature and well-developed.

Evaluators also examined the development security procedures and determined that they detailed sufficient security measures to protect the confidentiality and integrity of the CIRT v2.1.2 design and implementation. Common Criteria noted that AccessData maintains a high-level of end user support for the product. This independent penetration testing did not uncover any exploitable vulnerabilities in the intended operating environment.

CIRT v2.1.2 was subjected to a comprehensive suite of formally documented, independent functional and penetration tests. The testing took place at the Information Technology Security Evaluation and Test (ITSET) Facility at EWA-Canada. The CCS Certification Body witnessed a portion of the independent testing. The developer’s tests and the independent functional tests yielded the expected results, giving assurance that CIRT v2.1.2 is a trusted product that provides the security desired by the most demanding organizations.

Utah Business Social
UB Events View All
Best Companies to Work For 2014Utah Business Event
Dec 11, 2014
Utah Business magazine along with our presenting sponsor- CBIZ, premier sponsor- Diversified Insu...
SAMY Awards 2015Utah Business Event
Jan 23, 2015
Utah Business magazine along with Presenting Sponsor Griffin Hill are pleased to present the 201...
Forty Under 40 - 2015Utah Business Event
Feb 26, 2015
Utah Business Magazine along with Presenting Sponsors: Kirton McConkie, BIG-D Construction and Ma...
Community Events View All
Management Solutions
Nov 21, 2014
Looking for a way to manage your team systematically and effectively? Sandler Management Solutio...
Dancing in the South
Nov 22, 2014
This active participant-focused workshop provides movers and shakers in the metaphysical communit...

info@utahbusiness.com  |  90 South 400 West, Ste 650 Salt Lake City, Utah 84101   |  (801) 568-0114

Advertise with Utah Business

Submit an Event

* indicates required information
* Event Name:
Price (general):
Website (if applicable):
Coordinator's Name:
Coordinator's Email:
Coordinator's Phone:
Venue Name:
Venue Address:
Venue City:
Venue Zip:
Event Capacity:
Date(s):
to
* Event Description:
  Cancel