Red Hat, Inc., the world's leading provider of open source solutions, today announced that JBoss Enterprise Application Platform 5.1.0 and 5.1.1 have been awarded Common Criteria certification at Evaluation Assurance Level 4 (EAL4+ ) under the Common Criteria Evaluation and Certification Scheme (CCS). Common Criteria is a set of internationally approved criteria for evaluating and certifying the information security of IT products and information systems, and EAL4+ is the highest assurance level that is recognized globally by all signatories under the Common Criteria Recognition Agreement for this category of solutions. This certification also marks the highest level of Common Criteria certification for the JBoss Enterprise Middleware portfolio.
“Security remains one of the most important considerations for security-conscious industries like government, financial services and healthcare considering new technology solutions, and achieving Common Criteria certification gives customers the added confidence that our solutions meet specific, internationally recognized benchmarks for security performance,” explained Paul Smith, general manager and vice president, public sector operations, Red Hat. “We made the commitment to upgrade our Common Criteria certification for the JBoss Enterprise Application Platform from EAL2 to EAL4+, and achieving the highest available certification level is a testament to our ongoing efforts to meeting the needs of security-conscious government organizations and businesses.”
To facilitate this certification, Red Hat worked with atsec information security, a government accredited laboratory in the United States and Germany, that tested and validated the security, performance and reliability of the solution against the Common Criteria Standard for Information Security Evaluation (ISO/IEC 15408) at EAL4+. Their tests, and the resulting certification, validate JBoss Enterprise Application Platform as one of the most trusted platforms for building, deploying, and hosting enterprise Java applications and services.
“We are proud that Red Hat chose atsec as the laboratory for the Common Criteria evaluation, as this project continues our successful business relationship with Red Hat,” said Ken Hake, Common Criteria laboratory manager for atsec U.S. “Red Hat’s completion of this Common Criteria project will result in more assurance for customers who run JBoss Enterprise Middleware in business critical environments.”
This certification supports Red Hat's reputation as leader in providing solutions that are designed for security-sensitive environments and government use. To date, Red Hat has achieved 16 different Common Criteria certifications, including 13 certifications for Red Hat Enterprise Linux across four different hardware platforms. Red Hat Enterprise Linux 5 has achieved Common Criteria certification at EAL4+ under the Controlled Access Protection Profile (CAPP), Label Security Protection Profile (LSPP), and the Role-Based Access Control Protection Profile (RBACPP), providing a leading level of security and assurance from a mainstream operating system.
Continuing this commitment, Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6 are both currently “In Evaluation” for Common Criteria Certification at EAL4+, with the inclusion of the KVM Hypervisor.
About Red Hat, Inc.
Red Hat (redhat.com), the world's leading provider of open source solutions and an S&P 500 company, is headquartered in Raleigh, NC with more than 70 offices spanning the globe. Red Hat provides high-quality, affordable technology with its operating system platform, Red Hat Enterprise Linux, together with cloud, virtualization, management, storage and service-oriented architecture (SOA) solutions, including Red Hat Enterprise Virtualization and JBoss Enterprise Middleware. Red Hat also offers support, training and consulting services to its customers worldwide.
Certain statements contained in this press release may constitute "forward-looking statements" within the meaning of the Private Securities Litigation Reform Act of 1995. Forward-looking statements provide current expectations of future events based on certain assumptions and include any statement that does not directly relate to any historical or current fact. Actual results may differ materially from those indicated by such forward-looking statements as a result of various important factors, including: risks related to delays or reductions in information technology spending; the effects of industry consolidation; the ability of the Company to compete effectively; uncertainty and adverse results in litigation and related settlements; the integration of acquisitions and the ability to market successfully acquired technologies and products; the inability to adequately protect Company intellectual property and the potential for infringement or breach of license claims of or relating to third party intellectual property; the ability to deliver and stimulate demand for new products and technological innovations on a timely basis; risks related to data and information security vulnerabilities; ineffective management of, and control over, the Company's growth and international operations; fluctuations in exchange rates; and changes in and a dependence on key personnel, as well as other factors contained in our most recent Quarterly Report on Form 10-Q (copies of which may be accessed through the Securities and Exchange Commission's website at sec.gov), including those found therein under the captions "Risk Factors" and "Management's Discussion and Analysis of Financial Condition and Results of Operations". In addition to these factors, actual future performance, outcomes, and results may differ materially because of more general factors including (without limitation) general industry and market conditions and growth rates, economic and political conditions, governmental and public policy changes and the impact of natural disasters such as earthquakes and floods, including events in Japan. The forward-looking statements included in this press release represent the Company's views as of the date of this press release and these views could change. However, while the Company may elect to update these forward-looking statements at some point in the future, the Company specifically disclaims any obligation to do so. These forward-looking statements should not be relied upon as representing the Company's views as of any date subsequent to the date of the press release.
Red Hat, Inc. Red Hat, the Shadowman logo and JBoss are registered trademarks of Red Hat, Inc. in the U.S. and other countries. Linux is a registered trademark of Linus Torvalds.