Latest news with #FIPS140-3
Business Wire
28-05-2025
- Business
- Business Wire
Endace Secures FIPS 140-3 Validation for EndaceProbe Packet Capture and Network Recording Appliances
AUSTIN, Texas & AUCKLAND, New Zealand--(BUSINESS WIRE)--Packet capture authority, Endace, today announced that EndaceProbe has achieved FIPS (Federal Information Processing Standard) 140-3 validation from the U.S. National Institute of Standards and Technology (NIST). The rigorous evaluation process formally validates that EndaceProbe hardware and software conforms to the latest cryptographic security framework, giving customers in government, defense, and regulated industries such as critical infrastructure, finance and healthcare, confidence the data they record using their EndaceProbes is protected by highly secure encryption. FIPS 140-3 validation was conducted on the following Endace products: EndaceProbe 2144-G5, EndaceProbe 2184-G5, EndaceProbe 92C8-G4, and the newly announced EndaceProbe 94C8-G5 100GbE platform. 'We are very proud to have achieved this FIPS 140-3 validation,' said Cary Wright, VP Product at Endace. 'Although FIPS is a US-mandated framework, it is widely acknowledged as a gold standard for cryptographic security technology. The meticulous testing requirements to meet FIPS criteria are laborious, but achieving this certification is a testament to Endace's unrelenting dedication to providing customers with armor-plated products that can be safely deployed into the most secure environments on the planet.' In October 2024, EndaceProbes were certified by the U.S. Defense Information Systems Agency (DISA) for its Department of Defense Information Network Approved Products List (DoDIN APL). Certification for the DoDIN APL involves rigorous testing to meet stringent military-grade cybersecurity criteria, and APL approved products may be deployed with no further certification or testing required, making it simpler for US agencies to comply with mandatory federal packet capture requirements. FIPS 140-3 is the most recent framework requirement from NIST and the Canadian Centre for Cyber Security for hardware and software products that use cryptography algorithms to protect sensitive information. The process is exhaustive and involves rigorous testing and validation for protecting cryptographic keys, performing cryptographic operations, and ensuring the security of data at rest, in-transit, and in-use. For more information about FIPS 140-3, see EndaceProbes provide scalable, accurate, full packet capture and recording, with zero packet loss so security and network teams can quickly access the irrefutable packet evidence they need to investigate and resolve incidents. With centralized data mining, rapid search, centralized management, and workflow integration, EndaceProbes deliver deep visibility into both North-South and East-West network traffic and 100% accurate recording on network links to 100Gbps and beyond, with industry-leading speed, density and storage capacity. About Endace
Yahoo
28-05-2025
- Business
- Yahoo
Endace Secures FIPS 140-3 Validation for EndaceProbe Packet Capture and Network Recording Appliances
NIST validation ensures highest cryptographic security standards, enhances data protection, streamlines customer procurement and deployment AUSTIN, Texas & AUCKLAND, New Zealand, May 28, 2025--(BUSINESS WIRE)--Packet capture authority, Endace, today announced that EndaceProbe has achieved FIPS (Federal Information Processing Standard) 140-3 validation from the U.S. National Institute of Standards and Technology (NIST). The rigorous evaluation process formally validates that EndaceProbe hardware and software conforms to the latest cryptographic security framework, giving customers in government, defense, and regulated industries such as critical infrastructure, finance and healthcare, confidence the data they record using their EndaceProbes is protected by highly secure encryption. FIPS 140-3 validation was conducted on the following Endace products: EndaceProbe 2144-G5, EndaceProbe 2184-G5, EndaceProbe 92C8-G4, and the newly announced EndaceProbe 94C8-G5 100GbE platform. "We are very proud to have achieved this FIPS 140-3 validation," said Cary Wright, VP Product at Endace. "Although FIPS is a US-mandated framework, it is widely acknowledged as a gold standard for cryptographic security technology. The meticulous testing requirements to meet FIPS criteria are laborious, but achieving this certification is a testament to Endace's unrelenting dedication to providing customers with armor-plated products that can be safely deployed into the most secure environments on the planet." In October 2024, EndaceProbes were certified by the U.S. Defense Information Systems Agency (DISA) for its Department of Defense Information Network Approved Products List (DoDIN APL). Certification for the DoDIN APL involves rigorous testing to meet stringent military-grade cybersecurity criteria, and APL approved products may be deployed with no further certification or testing required, making it simpler for US agencies to comply with mandatory federal packet capture requirements. FIPS 140-3 is the most recent framework requirement from NIST and the Canadian Centre for Cyber Security for hardware and software products that use cryptography algorithms to protect sensitive information. The process is exhaustive and involves rigorous testing and validation for protecting cryptographic keys, performing cryptographic operations, and ensuring the security of data at rest, in-transit, and in-use. For more information about FIPS 140-3, see EndaceProbes provide scalable, accurate, full packet capture and recording, with zero packet loss so security and network teams can quickly access the irrefutable packet evidence they need to investigate and resolve incidents. With centralized data mining, rapid search, centralized management, and workflow integration, EndaceProbes deliver deep visibility into both North-South and East-West network traffic and 100% accurate recording on network links to 100Gbps and beyond, with industry-leading speed, density and storage capacity. About Endace Endace's scalable, always-on packet capture gives Network Operations and Security teams the deep visibility they need for fast, accurate incident investigation with rich forensic evidence at their fingertips from all their tools. EndaceProbes provide enterprise-class packet sniffing in on-prem, public and private cloud environments, with rapid, centralized search and one-click access to full pcap data from leading security and performance solutions (including Palo Alto Networks, Fortinet, Cisco, Splunk, Elastic, and many others). Analyze network traffic using a single, unified console across all on-premise, private, or public cloud infrastructure for total hybrid cloud visibility. Capture every packet. See every threat. View source version on Contacts Email: pr@ Phone:Mark Evans, mobile +64-21-494 850 – New Zealand / APACKimber Smith-Fidler, mobile +1 775 298 5260 – USA / North AmericaLeah Jones (The CommsCo) +44 203 697 6680 – UK / EMEA Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Cision Canada
08-05-2025
- Business
- Cision Canada
Swissbit introduces iShield Key 2: One key for phishing-resistant login and physical access
WESTFORD, Mass., May 8, 2025 /CNW/ -- Swissbit, a leading provider of storage and security solutions, announces the launch of the iShield Key 2, its next-generation hardware authenticator for enterprise and public sector use. Built on the FIDO2 standard, it supports phishing-resistant, passwordless authentication with capacity for up to 300 Passkeys. Pro models add HOTP, TOTP, and PIV smartcard functionality, while the unique MIFARE variant enables combined digital and physical access control. A FIPS 140-3 Level 3 certified version is available for high-security environments. All models feature a compact, industrial-grade design manufactured in Berlin, Germany. At launch, the iShield Key 2 is available with USB-C, with USB-A variants scheduled for release by end of Q2 2025. All models support NFC for contactless use. The portfolio consists of three main lines: iShield Key 2, iShield Key 2 MIFARE, and iShield Key 2 FIPS. Each line is available in a base FIDO2-only version and a Pro version supporting HOTP, TOTP, and PIV. This breadth allows organizations to select the authenticator that best fits their specific requirements and use cases. Variants with FIDO Enterprise Attestation are also available, allowing organizations to restrict access to verified, company-issued security keys. Physical access control and beyond Thanks to NXP's advanced chip technology, the iShield Key 2 MIFARE supports DESFire EV3, enabling true hybrid usage. This allows the key to integrate seamlessly into daily workflows and support custom applications based on MIFARE technology – ideal for use cases such as time tracking, payment, or campus ID cards. Swissbit also offers optional support for leading access control technologies such as HID SEOS and LEGIC advant / LEGIC neon. Update Capabilities All iShield Key 2 models can be remotely updated by using secure channel protocols which allows the provisioning of new firmware versions and applications to devices in the field. About Swissbit Swissbit AG is the leading European technology company for data storage and security solutions. Founded in 2001, Swissbit operates offices in Switzerland (HQ), Germany, the USA, Japan, and Taiwan, and maintains its own semiconductor production facility in Berlin, Germany. PR Contact Swissbit AG Marian Weber Industriestrasse 4 9552 Bronschhofen Switzerland Tel: +49 172 854 88 26 Email: [email protected] - Picture is available at AP -
Yahoo
05-05-2025
- Business
- Yahoo
SEALSQ's VaultIC 408 Meets FIPS 140-3 Requirements, Advancing NIST Certification and Strengthening Leadership in Secure IoT and Smart Grid Solutions
Geneva, Switzerland, May 05, 2025 (GLOBE NEWSWIRE) -- SEALSQ Corp (NASDAQ: LAES) ("SEALSQ" or "Company"), a company that focuses on developing and selling Semiconductors, PKI, and Post-Quantum technology hardware and software products, today announced a groundbreaking development in the field of network security. As per the UL Labs report, VaultIC 408 meets FIPS 140-3 requirements, advances NIST certification and strengthens SEALSQ's leadership in secure IoT and smart grid solutions. SEALSQ's VaultIC 408 Secure Microcontroller (Module Name: VaultIC408 1.2.4, Hardware Version: AT90SO28RS rev A, Firmware Version: 1.2.4.1) has successfully passed NIST FIPS 140-3 testing at Security Level 3 (overall), as confirmed by a Validation Test Report submitted by UL Verification Services Inc. to the Cryptographic Module Validation Program (CMVP). The module's status is listed on the CMVP Modules In Process List at This milestone reinforces SEALSQ's leadership in delivering high-security hardware for Internet of Things (IoT) ecosystems, Smart Grid infrastructure, and other critical applications. Note: The Cryptographic Module Validation Program (CMVP) Modules In Process and Implementation Under Test (IUT) Lists are provided for information purposes only. Participation on the list is voluntary and is a joint decision by the vendor and Cryptographic Security and Testing (CST) laboratory. Modules are listed alphabetically by vendor name. Posting on the list does not imply guarantee of final validation. The VaultIC 408 is a state-of-the-art secure microcontroller designed to safeguard connected devices against advanced cyber threats. It integrates hardware-based encryption, authentication, and key management within a tamper-resistant secure element, ensuring robust data integrity and device security. Optimized for IoT and Smart Grid applications, the VaultIC 408 supports low-power, compact designs for smart homes, industrial automation, healthcare, automotive, and digital identity solutions. It secures millions of smart grid hubs for renown device makers supplying for instance the UK's Smart Metering Implementation Programme (SMIP) and is also deployed in smart locks, drones, and satellite IoT platforms. 'UL Labs' report regarding VaultIC 408's FIPS 140-3 Level 3 compliance validates SEALSQ's commitment to delivering cutting-edge secure semiconductors,' said Carlos Moreira, CEO of SEALSQ. 'This achievement strengthens our ability to provide trusted solutions for global IoT and critical infrastructure markets.' The NIST FIPS 140-3 standard is the global benchmark for cryptographic module security, surpassing FIPS 140-2 with stricter requirements for algorithms, physical security, and operational resilience. It is mandated for U.S. federal agencies and widely adopted in energy, healthcare, defense, and financial sectors []. UL Labs, accredited by the National Voluntary Laboratory Accreditation Program (NVLAP) under Lab Code 100432-0, conducted rigorous testing to ensure compliance. The submitted Validation Test Report positions the VaultIC 408 for final NIST CMVP certification, expected in the coming months, enhancing its credibility for regulated markets. This inclusion reinforces SEALSQ's position and strategic advancements in the IoT market projected to reach $1.1 trillion by 2030 and the Smart Grid market growing at a 20.8% CAGR through 2032. SEALSQ is poised to meet the rising demand for secure semiconductors. For more information on the VaultIC 408, visit or contact investor@ About SEALSQ:SEALSQ is a leading innovator in Post-Quantum Technology hardware and software solutions. Our technology seamlessly integrates Semiconductors, PKI (Public Key Infrastructure), and Provisioning Services, with a strategic emphasis on developing state-of-the-art Quantum Resistant Cryptography and Semiconductors designed to address the urgent security challenges posed by quantum computing. As quantum computers advance, traditional cryptographic methods like RSA and Elliptic Curve Cryptography (ECC) are increasingly vulnerable. SEALSQ is pioneering the development of Post-Quantum Semiconductors that provide robust, future-proof protection for sensitive data across a wide range of applications, including Multi-Factor Authentication tokens, Smart Energy, Medical and Healthcare Systems, Defense, IT Network Infrastructure, Automotive, and Industrial Automation and Control Systems. By embedding Post-Quantum Cryptography into our semiconductor solutions, SEALSQ ensures that organizations stay protected against quantum threats. Our products are engineered to safeguard critical systems, enhancing resilience and security across diverse industries. For more information on our Post-Quantum Semiconductors and security solutions, please visit Forward-Looking StatementsThis communication expressly or implicitly contains certain forward-looking statements concerning SEALSQ Corp and its businesses. Forward-looking statements include statements regarding our business strategy, financial performance, results of operations, market data, events or developments that we expect or anticipates will occur in the future, as well as any other statements which are not historical facts. Although we believe that the expectations reflected in such forward-looking statements are reasonable, no assurance can be given that such expectations will prove to have been correct. These statements involve known and unknown risks and are based upon a number of assumptions and estimates which are inherently subject to significant uncertainties and contingencies, many of which are beyond our control. Actual results may differ materially from those expressed or implied by such forward-looking statements. Important factors that, in our view, could cause actual results to differ materially from those discussed in the forward-looking statements include SEALSQ's ability to continue beneficial transactions with material parties, including a limited number of significant customers; market demand and semiconductor industry conditions; and the risks discussed in SEALSQ's filings with the SEC. Risks and uncertainties are further described in reports filed by SEALSQ with the SEC. SEALSQ Corp is providing this communication as of this date and does not undertake to update any forward-looking statements contained herein as a result of new information, future events or otherwise. SEALSQ MoreiraChairman & CEOTel: +41 22 594 3000info@ SEALSQ Investor Relations (US)The Equity Group CatiTel: +1 212 836-9611 lcati@ in to access your portfolio
Channel Post MEA
29-04-2025
- Business
- Channel Post MEA
Commvault Cloud Achieves GovRAMP Authorization
Commvault announced that Commvault Cloud has achieved GovRAMP Authorized status for its cyber resilience SaaS solutions. This authorization is crucial for state and local government agencies, as well as educational institutions (SLED), enabling them to securely handle critical and sensitive data while supporting rigorous security verification standards. GovRAMP (formerly StateRAMP) offers a standardized approach for assessing the security posture of cloud products and services utilized by state and local governments and educational institutions. GovRAMP recognizes three verified statuses: Ready, Provisionally Authorized, and Authorized—each representing a milestone in the verification process based on NIST 800-53 Rev. 5 controls and requiring a government sponsor for the latter two. Achieving GovRAMP Authorized status at a High impact level signifies that Commvault Cloud meets the most rigorous security and risk management standards, demonstrating Commvault's unwavering commitment to cyber resilience and building trust within the public sector. Commvault Cloud underwent a comprehensive third-party assessment and review by the GovRAMP Program Management Office to earn this status. This achievement distinguishes Commvault as the only cyber resilience vendor to hold GovRAMP Authorized at a High impact level, FedRAMP High Authorized, and FIPS 140-3 validated status for its SaaS cyber resilience solutions. This unique combination furthers Commvault's position as a premier cyber resilience and data protection provider for federal, state, local, and educational entities across the United States. 'We're proud to achieve GovRAMP Authorization, especially when nearly all ransomware attacks (99%) on SLED organizations target backups,[1] underscoring the critical need for cyber resilience,' said Michael Carroll, Area Vice President, Commvault. 'Being the only vendor to secure GovRAMP Authorized at a High impact level, FedRAMP High, and FIPS 140-3 authorizations demonstrates our unique ability to support the most rigorous security demands of public sector organizations as they accelerate cloud transformations and bolster cyber resilience.' Achieving GovRAMP Authorization delivers significant benefits for SLED organizations using Commvault Cloud, including: Enhanced Security: Protects data against breaches and unauthorized access according to the highest security standards. Protects data against breaches and unauthorized access according to the highest security standards. Verification Assurance: Supports federal and state regulatory requirements, reducing the risk associated with non-compliance. Supports federal and state regulatory requirements, reducing the risk associated with non-compliance. Organizational Trust and Credibility: Builds confidence among government agencies by adhering to recognized, rigorous security frameworks. Builds confidence among government agencies by adhering to recognized, rigorous security frameworks. Seamless Adoption: Simplifies the procurement and implementation process for agencies requiring GovRAMP Authorized solutions. Simplifies the procurement and implementation process for agencies requiring GovRAMP Authorized solutions. Innovation and Flexibility: Enables SLED organizations to leverage advanced, secure cloud solutions for cyber resilience. The value of Commvault's focus on security and resilience is echoed by customers like Phillip Winder, Chief of Information Technology at State of Delaware Department of Corrections. 'Commvault's cutting-edge solutions have bolstered our cyber resilience capabilities and set a new standard for innovation. Advanced threat detection and rapid response capabilities help ensure that our critical operations remain uninterrupted, even in the face of sophisticated cyberattacks,' said Winder. 'With Commvault, we've been able to fortify our cyber defenses and streamline our incident response processes. The continuous monitoring and advanced data security features have been instrumental in preventing disruptions to our operations, allowing us to focus on our core mission,' Winder added. Commvault Cloud's GovRAMP Authorized status is available immediately for U.S.-based SLED customers. 0 0
