LogLogic Achieves NIST In Process Status for Stringent FIPS 140-2 Government Standard



18 July, 2011


LogLogic®, the IT Data Management Company, announced today that the LogLogic LX, ST, and MX Log Management Appliance v5.2 have been placed on the NIST's Modules In Process List for the Federal Information Processing Standards Publications (FIPS) 140-2 Validation: Security Requirements for Cryptographic Modules. FIPS 140-2 validation is a requirement for any cryptographic product that will be used in a U.S. government agency network.

"Our certification of FIPS 140-2 sends an important message to government buyers: LogLogic continues to be serious about meeting the security concerns of the Federal Government," said LogLogic Chief Marketing Officer Bill Roth. "Add this to our Certificate of Networthiness from the Army and our Common Criteria security certification, and it is clear that LogLogic has a long track record of delivering secure computing environments to the entire United States Government."

The FIPS 140-2 standard is a joint effort by the National Institute of Standards and Technology (NIST) in the United States, and the Communications Security Establishment Canada (CSEC), under the Canadian government. The Cryptographic Module Validation Program (CMVP), headed by NIST, provides module and algorithm testing for FIPS 140-2, which applies to Federal agencies using validated cryptographic modules to protect sensitive government data in computer and telecommunication systems. FIPS 140-2 provides stringent third-party assurance of security claims on any product containing cryptography that may be purchased by a government agency.

The FIPS standard, which is mandated by law in the U.S., and very strictly enforced in Canada, is also currently being reviewed by ISO to become an international standard. FIPS 140-2 is gaining worldwide recognition as an important benchmark for third party validations of encryption products of all kinds. FIPS 140-2 validation of these LogLogic management appliances will provide users with a high degree of security, assurance and dependability.

In order to expedite the FIPS 140-2 validation process, LogLogic partnered with Corsec Security, Inc., a consulting firm with over thirteen years of validation experience. "Corsec is proud to be working with LogLogic on their FIPS 140-2 validation effort," said Matthew Appler, CEO of Corsec Security. "LogLogic's' dedication to providing their customers with a third-party assured secure log management appliances is evident in their effort to pursue this stringent government validation."

LogLogic expects to complete the stringent validation process by early 2012

About Corsec Security, Inc.

Corsec Security, Inc. specializes in helping companies navigate through the complex process of receiving FIPS 140-2 and Common Criteria (CC) certifications. Corsec's consulting, document creation, and project management services deliver unmatched expertise in achieving government validation efforts at a firm, fixed price. Corsec partners with companies around the world to achieve local and international certification and to add security functionality to a wide range of products. Corsec minimizes the time, effort and money a vendor needs to invest in validation while ultimately maximizing the return on that investment. For further information, please visit www.corsec.com.

About LogLogic
LogLogic® is the IT Data Management Company. More than 1,250 customers worldwide entrust their most sensitive IT data to LogLogic's award-winning products. For more information on LogLogic and IT Data Management, visit us on the web at www.loglogic.com or on Twitter or Facebook.

All trademarks mentioned in this press release are the property of their respective owners.

TIBCO Software Inc.

Lloyd Berry

Public Relations

+1 650 846 8862