Lumeta IPsonar 5.5C Achieves Common Criteria CertificationJanuary 13, 2014 No Comments
Strengthens trust for government and enterprise customers across the globe
Somerset, NJ – January 13, 2013 – Lumeta Corporation, the leader in network situational awareness, today announced that Lumeta IPsonar 5.5C has achieved certification under the Common Criteria Evaluation and Validation Scheme (CCEVS). With this internationally recognized certification, Lumeta demonstrates the company’s commitment to providing the highest level of independently verified security and information assurance to its U.S. government, international government and commercial enterprise customers, as well as its partner community.
Lumeta IPsonar addresses network situational awareness challenges impacting its customers; it thoroughly identifies the routed infrastructure of a network and addresses any knowledge gaps. Common Criteria certification means that IPsonar has been evaluated by a neutral third party and meets Lumeta’s claims for security features and capabilities. The certification provides Lumeta’s customers with high confidence in the strength of the security mechanisms within IPsonar.
Common Criteria certification is a requirement for IT security products purchased by the U.S. Government for national security systems. In addition, many federal directives and best practice guidelines prompt government agencies and enterprise customers to look for Common Criteria certification, even though not explicitly named as a requirement. Internationally, several countries promote Common Criteria validation as criteria for government purchase of new products. Also, Common Criteria is now a NATO standard.
“Achieving the demanding Common Criteria certification demonstrates our continued commitment to provide customers with proven security products with industry-leading levels of information assurance. Customers can be confident that IPsonar will be a trusted addition to their overall security posture,” said Reggie Best, chief product officer at Lumeta. “At the same time, this certification gives our partners greater confidence to take Lumeta’s security offerings to more of their clients in government and enterprise segments.”
To facilitate the rigorous process of Common Criteria certification, Lumeta engaged the services of Leidos Inc. (formerly SAIC), a trusted leader in the product testing/evaluation market. Leidos determined that IPsonar complies with the security requirements specified in Protection Profile for Network Devices.
For more information on IPsonar’s Common Criteria certification, and to view the certificate, please visit: https://www.niap-ccevs.org/st/vid10506/
For additional IPsonar certifications, please visit:
About Common Criteria
Common Criteria Evaluation and Validation Scheme (CCEVS) is a U.S. Government program administered by the National Information Assurance Partnership (NIAP) to evaluate security functionality of information technology with conformance to the Common Criteria international standard. As the basis for the international standard ISO/IEC 15408, Common Criteria is a framework for information technology security certification.
NIAP is transitioning to Protection Profile compliance and a move away from Evaluation Assurance Level (EAL) compliance. This strengthens evaluations by focusing on technology specific, tailored assurance requirements. Products are evaluated against a NIAP-approved Protection Profile which includes a collection of assurance activities tailored to the technology with no EAL assigned. Protection Profiles define security functional and assurance requirements that government, military and other users expect products to meet. Vendors can then implement and make claims about the security attributes of their products, and testing laboratories evaluate the products to determine if they actually meet the claims.
Common Criteria certifications are recognized by all 26 nations of the international Common Criteria Recognition Arrangement (CCRA). CCRA carries a unified approach to the evaluations of information technology products and protection profiles for information assurance and security. This arrangement benefits member nation governments and other customers of IT products by creating more clarity in procurement decisions, more precision in evaluations, a better balance of security and features, and more rapid access to products from industry.
Lumeta IPsonar actively examines a network infrastructure, identifying connected assets such as hosts and other network devices in order to map a view of the routed infrastructure of the network. IPsonar includes:
• Network Discovery – Identify all network address spaces, routing devices and connectivity flows across the network (including “stealth” assets) utilizing advanced multi-protocol discovery technology, and creates a comprehensive route-based topology.
• Host Discovery – Detects all known and previously unknown network devices by conducting a census of IP addresses across protocols. Flags devices unrecognized by official network inventories for remediation.
• Leak Discovery – Reveals unauthorized connections between a network and another network, sub-net, or the Internet, and determines whether access is outbound, inbound or both. Leak Discovery highlights unknown connections into other organizations (e.g., legacy divestiture connectivity) or to the Internet.
• Device Discovery – Identifies web services, wireless access points and IP applications active on hosts and devices pinpointing resources for which tested ports are active. Additionally, Layer 2 discovery matches a device’s unique MAC address with its assigned IP address, providing crucial information for asset management and diagnostics.
About Lumeta Corporation
Lumeta’s network situational awareness solutions identify and map every IP connected device on a network and discover inbound and outbound leaks, giving IT management a clear, comprehensive assessment of network vulnerabilities, cyber-threat risks and policy violations from network edge to core. Lumeta provides foundational intelligence required to make decisions impacting security, compliance and availability. Lumeta’s products deliver an efficient and cost-effective process to streamline network consolidation (M&A) projects, as well as addresses today’s security initiatives associated with BYOD, Mobility, Cloud, Outsourcing, SDN, Access Control and Big Data which increase the complexity of a network and compromise traditional security defenses. Lumeta optimizes other network and security product investments with accurate and fact-based network intelligence. Headquartered in Somerset, New Jersey, Lumeta has operations throughout the world. More information is available at www.lumeta.comNews