CUPERTINO, Calif.
– October 30, 2006 – ArcSight, Inc., a global leader in
Enterprise Security Management (ESM) software, today announced that it
has achieved the Certification for Evaluation Assurance Level Augmented
(EAL3) from the National Information Assurance Partnership, (NIAP).
ArcSight is the only security information management (SIM) vendor to
receive this high level of security certification. Tested by the
independent SAIC Common Criteria Testing Laboratory, this certification
provides third-party validation as to the integrity and quality of the
security features of ArcSight ESM software.
“Receiving
Common Criteria Level Three Augmented Certification demonstrates
ArcSight’s highest commitment to developing secure solutions to
address the mission critical security management needs of government
agencies and security conscious organizations,” said Haiyan Song,
vice president of engineering at ArcSight. “We continue to invest
in certifications such as these to provide assurance to our customers
that we meet their toughest demands and we are validated by rigorous
international security standards.”
The NIAP is a program
established by the National Institute of Standards and Technology
(NIST) and the National Security Agency (NSA) to evaluate IT product
conformance to international standards. The rigorous and systematic
program, publicly known as Common Criteria, is accepted by a number of
organizations internationally as a definitive standard for proving that
the integrity and security architecture of a technology have been
tested and validated against known criteria, performed by an accredited
third-party source. Twenty-two countries now recognize Common Criteria
(also known as ISO international standard 15408) as the official
third-party evaluation criteria for IT security procedures. The
certification of EAL Level 3 augmented provides enterprises with an
extensive third-party validation as to the integrity of the ArcSight
ESM solution.
