PRZOOM - /newswire/ -
Austin, TX, United States, 2011/05/03 - Wind River announced availability of and security certification for Wind River Linux Secure, the first commercial embedded Linux platform to achieve Common Criteria Evaluation Assurance Level 4+.
atsec information security is pleased to announce the successful Common Criteria certification of Wind River Linux Secure at EAL 4+ (augmented by flaw remediation), using the U.S. Government Protection Profile for General- Purpose Operating Systems in a Networked Environment. Wind River Linux Secure is the first commercial embedded Linux operating system accepted by NIAP, enabling Linux to be deployed securely on hardware from multiple vendors, including Freescale, Intel, and Texas Instruments Incorporated.
atsec information security performed the Common Criteria evaluation and the FIPS 140-2 testing that was part of the overall scope of the evaluation in its US government accredited laboratories in Austin, TX.
Kenneth Hake, Common Criteria laboratory manager, commented: “We congratulate Wind River on their achievement of Common Criteria EAL4+ certification for Wind River Linux Secure. We are also happy about the decision to have both the Common Criteria evaluation and FIPS 140-2 testing done by the atsec laboratories. It showed that you can save time and effort by using a company that is proficient in a wide variety of IT security standards.”
“The need for embedded Linux with security is growing across markets, as organizations must meet increasingly demanding security requirements. With Wind River Linux Secure, customers can meet their security needs with an open architecture software platform designed to comply with national security criteria, based upon a mature and widely-used Linux distribution,” said Paul Anderson, vice president of marketing and strategy for Linux products at Wind River. “Wind River partnered with atsec information security as it was essential to find a partner with strong expertise and history in evaluating operating systems per the Common Criteria guidelines.”
Under Common Criteria, products are evaluated against strict standards for various features, including security functionality, development environment, security vulnerability handling, documentation of security-related topics, and product testing.
The validation report and the certificate will be available on the NIAP website and also on the Common Criteria portal.
About atsec information security
atsec information security corporation (atsec.com) is a U.S. Government accredited laboratory, based in Texas, which tests information assurance (IA) and IA-enabled commercial off the shelf (COTS) information technology.
Combining all of our technology security experience and expertise, atsec information security corporation additionally provides strong consulting skills for: network penetration testing; embedded systems and hardware security testing and analysis; the Federal Information Security Management Act (FISMA); Information Systems Security Management Systems (ISMS); and independent security assessments based on your individual needs.
atsec also operates Government accredited laboratories in Germany and Sweden.