04/27/2008

Red Hat and atsec information security today announced that JBoss Enterprise Application Platform, v4.3 is currently ‘In Evaluation’ for Common Criteria certification at Evaluation Assurance Level (EAL) 2+ (augmented for flaw remediation).

ebizQ received the following:

Common Criteria is an internationally approved set of security standards used by governments and businesses worldwide. It is designed to bolster end-user confidence by providing clear and reliable assurance that a technology’s integrity and security architecture have been thoroughly tested and validated by an accredited, third-party source against the Common Criteria Standard for Information Technology Security Evaluation (ISO/IEC 15408).

Recognized and adopted by 22 countries, Common Criteria certification allows security-conscious organizations such as the U.S. government to purchase IT products with the confidence that they are in compliance with widely accepted security standards. In addition to its significance in government, Common Criteria is gaining momentum in financial services, healthcare and other industries that benefit from the security assurance certification affords.

Paul Smith, vice president of government sales operations, Red Hat said: “The achievement of Common Criteria certification for JBoss Enterprise Application Platform will mark a key milestone for Red Hat. The demand for enterprise-class solutions that stand up to strict security requirements continues to grow across many industries. Pursuit of this certification reinforces our continued commitment to security-minded customers and leadership in the area of IT security and speaks to the maturity of JBoss Enterprise Middleware as an enterprise-ready solution.”

atsec has significant experience with Red Hat products, having evaluated Red Hat Enterprise Linux in partnership with several hardware vendors, culminating in 14 certifications in the last four years. In addition, atsec has vast experience evaluating Java platforms.

Ken Hake, Common Criteria Laboratory Manager for atsec U.S., notes: “Red Hat’s continued commitment to security and compliance provides customers who trust JBoss Enterprise Middleware for their business critical deployments with an added level of assurance.”

JBoss Enterprise Application Platform is a leading platform for innovative and scalable Java applications. JBoss Enterprise Application Platform balances innovation with enterprise class stability by integrating the most popular clustered Java EE application server with next generation application frameworks. Built on open standards, JBoss Enterprise Application Platform integrates JBoss Application Server, with JBoss Hibernate, and JBoss Seam into a complete, simple enterprise solution for Java applications. Available through flexible and affordable subscriptions, JBoss Enterprise Application Platform makes it easy to develop, deploy, and manage enterprise Java applications.

atsec is one of only four companies worldwide with multiple evaluation labs accredited to perform evaluations under more than one national scheme. atsec labs have been accredited by NIAP CCEVS in the U.S., BSI in Germany and CSEC in Sweden to perform evaluations using the Common Criteria standard. Eligibility to perform evaluations under three major schemes and the availability of a large staff of qualified evaluators enable atsec to offer its customers both maximum flexibility and proven expertise and experience in Common Criteria evaluations. For more information about atsec’s qualifications and competence, see www.atsec.com. For independent confirmation of atsec’s competence and reputation, visit the NIAP, BSI or CSEC websites.