The First International Cryptographic Module Conference
September 24-26, Gaithersburg, MD
Bringing experts together from around the world to confer on the topic of cryptographic modules.
IBM’s® z/VM® Version 6 Release 1 System SSL Cryptographic Module Receives FIPS 140-2 Certification2012-06-28
Austin, TX – IBM’s® z/VM® Version 6 Release 1 System SSL Cryptographic Module recently received FIPS 140-2 Level 1 certification. The successful certification is listed on the National Institute of Standards and Technology’s (NIST) website (http://csrc.nist.gov/groups/STM/cmvp/validation.html, certification number 1735).
In view of constantly growing threats, the security of information assets is an ongoing concern with increasing importance for many companies. IBM z/VM is a highly secure, high-performance enterprise operating system with multi-system virtualization and virtual server mobility capabilities for IBM zSeries mainframe computers, empowering the use of advanced features, such as running separated virtual machines on top of the new 64-bit z/Architecture. Multiple zSeries computers running the evaluated version of IBM z/VM can be connected to form a networked system.
Apostol Vassilev, CST laboratory manager for atsec, commented: “The System SSL module is a part of the foundation for the security services on the IBM z/VM V6 R1. The module is capable of servicing the security needs of the operating system and applications on it with improved scalability and performance, while maintaining high security. The successful completion of this project is a continuation of our work with IBM on validating System SSL on other mainframe platforms and demonstrates the knowledge and experience the atsec Cryptographic and Security Testing lab has gained from these challenging engagements.”
The Federal Information Processing Standard 140-2 (FIPS 140-2) describes the U.S. Federal Government’s requirements for IT products in sensitive, but unclassified use. It defines the security requirements that must be met by cryptographic modules used to protect unclassified data within IT systems. FIPS 140-2 is published by the National Institute of Standards and Technology (NIST). The certification is mandatory for cryptographic products used by the U.S. Federal Government.
About atsec information security
atsec information security is an independent, standards-based information technology security services company with offices in the U.S., Germany, Sweden, and China. atsec's services include formal laboratory testing and evaluation of information assurance (IA) and IA-enabled commercial off the shelf (COTS) information technology, as well as information security consultancy.
atsec offers evaluation and testing services leading to formal certification of information security technology, including evaluations under Common Criteria schemes in the U.S., Germany, and Sweden. In addition, the atsec U.S. organization operates a Cryptographic and Security Testing Laboratory accredited under the Cryptographic Module Validation and the Cryptographic Algorithm Validation Programs of the National Institute of Standards and Technology (NIST) in the U.S. and Communications Security Establishment Canada (CSEC) in Canada for validating cryptographic modules under the FIPS 140-2 standard.
atsec works with any company, regardless of size or locale, that is serious about IT security.