The PRWIRE Press Releases https:// 2002-01-21T20:48:00Z F-Secure gains FIPS-140-1 validation from National Institute of Standards and Technology 2002-01-21T20:48:00Z f-secure-gains-fips-140-1-validation-from-national-institute-of-standards-and-technology F-Secure has obtained FIPS-140-1 validation from the National Institute of Standards and Technology (NIST) for its anti-virus software - F-Secure SSH Client for Windows, which F-Secure has co-developed with SSH Communications Security Ltd. This is the first SSH implementation based on NISTs FIPS 140 certified cryptographic module. NIST works with government and industry to establish more secure systems and networks through security assessment tools, techniques, services, and supporting programs for testing, evaluation and validation. Its FIPS certified cryptographic module is a laboratory-based performance test covering 11 areas relating to the design and implementation of a cryptographic module. F-Secure SSH Client for Windows is a security solution that protects TCP/IP-based terminal connections. It provides multi-platform secure access for Web browsing, email and downloading files. It uses encryption to provide data privacy and integrity to eliminate security risks in data transfer. F-Secure SSH Client for Windows is distributed in Australia by Canberra-based security distributor, Open Systems Pty Ltd. This validation is corroboration by a third party, proving F-Secures software implementations are of the highest quality which gives local customers further confidence in our products, said Antony Steele, senior systems engineer, Open Systems Pty Ltd, and certified technical engineer of F-Secure products. F-Secure SSH Client for Windows with FIPS certified functionality will be available by the end of January 2002 in Australia. ENDS About F-Secure Corporation F-Secure Corporation is a leading provider of centrally managed security for today's remote, wireless enterprise. The company offers a full range of award-winning, integrated anti-virus, file encryption, distributed firewall and VPN solutions for workstations, servers, gateways and mobile devices. F-Secure products provide invisible, reliable, always-on, and up-to-date security for a widely distributed user base. Whether provided by corporate IT or delivered by service providers, F-Secure solutions extend policy-based security and instant alerts to all devices where information is created, stored or accessed. Founded in 1988, F-Secure Corporation is listed on the Helsinki Stock Exchange [HEX: FSC]. The company is headquartered in Espoo, Finland with North American headquarters in SaJose, California, as well as offices worldwide. About Open Systems Open Systems is a Canberra-based organisation which established in 1991 to service the computing infrastructure needs of government and private enterprise. It provides leading information technology products and total systems solutions accompanied with professional and dedicated sales and support services. Open Systems provides products and services to an extensive network of over 1200 value-added resellers and major systems integrator companies Australia-wide. Borderware firewall accepted for certification under Common Criteria EAL4+ & EAL5 vulnerability analysis 2001-10-02T20:24:00Z borderware-firewall-accepted-for-certification-under-common-criteria-eal4-amp-eal5-vulnerability-analysis BorderWare Technologies Inc has announced its firewall server is the first firewall to be accepted for re-certification under Common Criteria EAL4+ and EAL5 vulnerability analysis. Common Criteria is a certification scheme for evaluation of IT security that are broadly useful to the international community. BorderWares Firewall Server became the first firewall to gain a Common Criteria EAL4+ certification in January 2000. EAL5 is an add-on certification that the US National Institute of Standards and National Security Agency has established as a key part of the Common Criteria evaluation process. This re-certification increases the independent assurance that BorderWares product is well designed and engineered to provide protection against known vulnerabilities and offers the highest level of security, said Paul Patti, defence executive, Open Systems. Many of Open Systems customers, 60 per cent of which are government departments and agencies, require security products which are certified under Common Criteria. Ever since the Internet became an avenue for commerce, customers and businesses have relied on the standards that government set. The Common Criteria security standards of which 16 countries, including Australia, are signatories sets the standards which defence, Government and large organisations of these countries take as the minimum security standard. When we tell customers Borderwares firewall is used throughout government they immediately know theyre getting the best on the market. This vulnerability certification only increases customer confidence in the Borderware product and reinforces our leadership in the security market. Borderware is currently providing a detailed analysis for each known and applicable vulnerability to demonstrate how the product defends against them. The results of this analysis will be confirmed by independent testing by UK research company, Syntegra. The EAL5 vulnerability analysis is one of the areas that differentiates the Common Criteria from other certification schemes such as the European ITSEC and US TCSEC. ENDS About Common Criteria The CC represents the outcome of a series of efforts to develop criteria for evaluation of IT security that are broadly useful within the international community. In the early 1980's the Trusted Computer System Evaluation Criteria (TCSEC) was developed in the United States. In the succeeding decade, various countries began initiatives to develop evaluation criteria that built upon the concepts of the TCSEC but were more flexible and adaptable to the evolving nature of IT in general. In Europe, the Information Technology Security Evaluation Criteria (ITSEC) version 1.2 was published in 1991 by the European Commission after joint development by the nations of France, Germany, the Netherlands, and the United Kingdom. In Canada, the Canadian Trusted Computer Product Evaluation Criteria (CTCPEC) version 3.0 was published in early 1993 as a combination of the ITSEC and TCSEC approaches. In the United States, the draft Federal Criteria for Information Technology Security (FC) version 1.0 was also published in early 1993, as a second approach to combining North American and European concepts for evaluation criteria. The first Common Criteria product certifications were completed in the late 1990's and today some 14 countries have signed the Mutual Recognition Agreement including all the originators of the TCSEC, ITSEC and CTCPEC schemes. For further information on Common Criteria see About BorderWare Technologies Inc BorderWare Technologies Inc. is a private company headquartered in Toronto, Canada with offices in London, England; Frankfurt, Germany; Stockholm Sweden and San Jose, California. BorderWare's mission is to develop and market easy-to-use and highly secure Internet Gateway products and services based on its field-proven S-CORE technology, an industrial-strength operating system which forms the secure kernel of all BorderWare products. The company's flagship product is the BorderWare Firewall Server, an integrated firewall and Internet services gateway. BorderWare's range of solutions includes VPN client-server solutions, the BorderWare Document Gateway and the BorderWare Mail Gateway. BorderWare Technologies Inc. was the first firewall vendor to obtain the Common Criteria EAL4 Certification. Visit the BorderWare web site at