blank

New Guidance On FIPS 140-2 Listings

The Cryptographic Module Validation Program (CMVP), which was established by NIST to validate modules for the Federal Information Processions Standard (FIPS), has announced upcoming policy changes for the Modules In Process (MIP) list and Implementation Under Test …

Read more

blank

Corsec Named Owler ‘HOT in 2016’ Winner

Owler (a Crowdsourced Competitive Intelligence Platform) recognizes the top trending companies in cities around the world. They filtered through more than 15 million companies and picked 4,500 award winners across 600 cities worldwide. Recipients were …

Read more

Food-For-Others

Corsec Cares Collects Food During Holiday Season

Every year Corsec Cares collects donations from team members and delivers them to a local organization to help ensure families in the district are able to enjoy and celebrate the Thanksgiving holiday season. For the second …

Read more

blank

Corsec Cares Assists FIRST LEGO League

As part of Corsec Cares, Corsec’s CEO, Matthew Appler, teamed up with FIRST Lego League (FLL), a local organization to help students expand their engineering enthusiasm and find solutions to real word issues. FLL is …

Read more

Corsec - FIPS 140-2

FIPS 140-2 Sunset Policy Update!

CMVP; the governing body that oversees U.S. FIPS 140-2 validations, has made drastic changes over the past year to policy governing product certification longevity. This week they went one step further and have now updated …

Read more

Whitehouse

Obama Signs Executive Orders

President Obama created two new executive orders on Tuesday: The first, a Commission on Enhancing National Cybersecurity, dedicated to “enhance cybersecurity awareness and protections at all levels of Government, business, and society, to protect privacy, to ensure public safety …

Read more

Crypt-Library

High Severity OpenSSL Vulnerability

On January 28th, 2016, OpenSSL released a patch to update a high risk vulnerability.  It was discovered and reported that prime “files may not be “safe”.  Where an application is using DH configured with parameters …

Read more

OpenSSL-FIPS-Compliance

FIPS Compliance and OpenSSL

Product vendors often rely on OpenSSL to meet FIPS requirements. However, with the new CMVP requirements and regulations, vendors using certain versions of the OpenSSL cryptographic library to meet FIPS 140-2 requirements are in jeopardy …

Read more

FIPS 140, CSfC, Common Criteria, UC APL

Corsec Cares Collects Gifts for Toys For Tots

Corsec’s philanthropy group, Corsec Cares, recently donated and delivered a box of gifts to the local Fairfax Toys For Tots location. The U.S. Marine Corps Reserves’ Toys for Tots program has been collecting and delivering new unwrapped …

Read more

FACETS

Corsec Cares Delivers Back to School Items

As part of Corsec Cares, Corsec team members have collected school supplies and donated them to FACETS, a local organization in Fairfax, VA.  FACETS is collecting supplies to help children in the area prepare for …

Read more

FIPS 140, CSfC, Common Criteria, UC APL

Corsec Announces Fall 2014 Global Speaking Tour

Industry Experts Selected to Deliver Critical Guidance and Insights at Leading IT Security Conferences Fairfax, VA, September 8, 2014 – Corsec, the world’s leader in providing access to new markets via third-party security validations, recently …

Read more

FIPS 140, CSfC, Common Criteria, UC APL

15 Years Teaches You a Lot: 3 Key Points to Remember

At Corsec, we just celebrated our 15th year of business in the security validation consulting industry. As you might imagine, we spent some time reflecting on the changes we have seen in the industry, the customers we have had the pleasure to work with, and the successes and failures we have seen over the years.

There were a few specific things that kept coming up in these discussions—three factors we could identify that predicted success or failure in security validation projects.

Read more