Vectra® Networks, the leader in real-time detection of in-progress cyber attacks, today announced its completion of the FIPS 140-2 validation process. Vectra has been awarded Certificate #2448 by the National Institute of Standards and Technology (NIST). This is the result of successfully testing the Vectra Cryptographic Module against the federally-mandated encryption standards on three Linux platforms: SUSE Linux Enterprise, CentOS and Red Hat Enterprise Linux.
FIPS 140-2 is the second iteration of the benchmark established in 1994. Certification is administered by the Cryptographic Module Validation Program (CMVP), operated jointly by the U.S. NIST Computer Security Division and their Canadian counterpart, Communications Security Establishment Canada (CSEC). The validation is a requirement for any encryption utilized in any software solution deployed in the U.S. government.
“Vectra offers a new class of advanced persistent threat (APT) defense that delivers real-time detection and analysis of active cyber attacks that get inside networks,” said Gene Skiba, president at AS Global, a leading systems integrator that focuses on federal markets. “We partner with Vectra because it closes a critical gap between network perimeter defenses that attackers easily evade and forensic tools that reconstruct cybercrimes after a breach has occurred. With FIPS validation, our sales cycle for Vectra is easier within the federal government market.”
With the U.S. government relying more than ever on technology built in the private sector, Vectra’s completion of rigorous testing positions it for significant growth in revenue as a government contractor. Vectra is months ahead of schedule for validation, the direct result of licensing SafeLogic’s CryptoComply encryption module. Vectra reaped the benefits of RapidCert, SafeLogic’s unique proprietary service that accelerates the FIPS 140-2 certification timeline and handles the entire validation process from start to finish.
“Vectra recognized the value of getting its certificate expedited, and I’m very pleased that they chose SafeLogic to provide their encryption module and coordinate the validation effort,” said Ray Potter, CEO of SafeLogic. “Rather than wasting time and resources reinventing the wheel, SafeLogic had it done within weeks while Vectra’s key engineers stayed on task, building features that directly benefit its customers.”
Vectra technology picks up where perimeter security leaves off by providing deep, continuous analysis of both internal and Internet-bound network traffic to automatically detect all phases of a breach as attackers attempt to spy, spread, and steal within a network.
FIPS 140-2 encryption, in addition to being mandated for U.S. government and military use, has become the de facto standard for regulated industries, including finance, healthcare, and utilities. With SafeLogic engaged to maintain the encryption compliance, the Vectra team remained focused on functionality and industry-specific solutions for these verticals. For more information, visit www.VectraNetworks.com and www.SafeLogic.com.
SafeLogic’s product line is focused on standards-based cryptographic engines designed for use in mobile, Cloud, server, wearable, IoT, workstation, and appliance environments. These modules have been fully validated to FIPS 140-2 standards and offer drop-in OpenSSL and Bouncy Castle compatibility, a variety of connectors to accommodate unique product architecture, and instant compliance for federal deployments to SafeLogic customers. Even better, SafeLogic modules include RapidCert, the industry’s only FIPS 140-2 validation service that provides a certificate in the customer’s name, while drastically accelerating the timeline, requiring no additional engineering effort, zero interaction with testing labs, and at a fixed cost. SafeLogic was established in 2012, is privately held and is headquartered in Palo Alto, California. For more information, see http://www.SafeLogic.com.
Vectra® Networks is the leader in real-time detection of in-progress cyber attacks. The company’s automated threat-management solution continuously monitors internal network traffic to pinpoint cyber attacks as they happen. It then automatically correlates threats against hosts that are under attack and provides unique context about what attackers are doing so organizations can quickly prevent or mitigate loss. Vectra prioritizes attacks that pose the greatest business risk, enabling organizations to make rapid decisions on where to focus time and resources. In 2015, Gartner named Vectra a Cool Vendor in Security Intelligence for addressing the challenges of post-breach threat detection. The American Business Awards also selected Vectra as the Gold Award winner for Tech Startup of 2015. Vectra’s investors include Khosla Ventures, Accel Partners, IA Ventures and AME Cloud Ventures. The company’s headquarters are in San Jose, Calif., and it has European operations in Zurich. More information can be found at www.vectranetworks.com.
###
Vectra and the Vectra Networks logo are registered trademarks and Security that thinks, the Vectra Threat Labs, and the Threat Certainty Index are trademarks of Vectra Networks. Other brand, product and service names are trademarks, registered trademarks or service marks of their respective holders.