ICMC-16

Corsec’s Matt Keller Attending 2016 ICMC

Next month in Ottawa, Ontario, Canada, hundreds of global leaders in the commercial encryption community will gather at the fourth annual International Cryptographic Module Conference (ICMC). Corsec’s Matt Keller, who also serves as CMUF Management …

Read more

DISA

DISA Focuses On Mobile Security

In November of 2015, the Defense Information Systems Agency (DISA) announced it was taking steps to make cloud and mobile enabled networks a priority in 2016. It looks like that vision has actually started to take …

Read more

Common Criteria

HPE Completes Common Criteria on iLO 4

Corsec would like to congratulate our partner, HP Enterprise on successfully completing the Common Criteria certification process for the HP Integrated Lights-Out (iLO) 4 v2.11 component. The certification was completed at an Evaluation Assurance Level (EAL) 2+ and …

Read more

Cloud-Computing

DISA Updates Cloud Computing Security

Last week, the Department of Defense (DOD) released an update to the Cloud Computing Security Requirements Guide (CC SRG) through the Chief Information Office and the Defense Information Systems Agency (DISA). This update provides guidance …

Read more

Corsec - FIPS 140-2

Sonus Completes FIPS 140-2 Validation

Corsec would like to thank and congratulate our partner Sonus Networks Inc., on completing the FIPS 140-2 validation process for the Session Border Controller (SBC) 7000.  After a year of hard work, the Sonus SBC 7000’s achieved …

Read more

Cyber-Defense

Pentagon Increases Spending On Cyber Defense

Defense Secretary Ashton Carter announced that the Pentagon would be spending an additional $900 million in 2017 to enhance cyber defense measures. This comes after last years hack of the Office of Personnel Management (OPM), resulting …

Read more

niap

NIAP archives Products with Outdated RNG

NIAP, the governing body over Common Criteria in the U.S., announced last week that it would be removing products from their Product Compliant List (PCL) that do not meet new Random Number Generator (RNG) requirements.  This …

Read more

NIST

SCAP: New Revision Available

The Information Technology Laboratory (ITL) at the National Institute of Standards and Technology (NIST) has released the fourth revision of their Internal Report covering SCAP Version 1.2 Validation Program Test Requirements. SCAP or the “Security Content Automation Protocol” is …

Read more

DoDIN APL

Cisco Completes DoDIN APL Listing with Corsec

Corsec would like to congratulate our partner, Cisco, on successfully completing all the necessary requirements to achieve listing on the DoD’s Information Network Approved Product List (DoDIN APL).  Cisco’s Information Assurance Tool (IAT), StealthWatch Rel. …

Read more

FIPS 140, CSfC, Common Criteria, UC APL

NIST’s Draft PUB on Entropy and RNG

Last month NIST released a draft publication on sources of Entropy and randomness in protecting sensitive data. The draft “Special Publication 800-90B, Recommendation for the Entropy Sources Used for Random Bit Generation”, is intended to help product vendors …

Read more