SOURCE: ArcSight

October 30, 2006 08:00 ET

ArcSight Achieves Internationally Recognized Common Criteria Certification Validating Its Mission Critical Security Capabilities

No Other SIM Vendor Has Achieved This Level of Security Certification

CUPERTINO, CA -- (MARKET WIRE) -- October 30, 2006 -- ArcSight, Inc., a global leader in Enterprise Security Management (ESM) software, today announced that it has achieved the Certification for Evaluation Assurance Level Augmented (EAL3) from the National Information Assurance Partnership (NIAP). ArcSight is the only security information management (SIM) vendor to receive this high level of security certification. Tested by the independent SAIC Common Criteria Testing Laboratory, this certification provides third-party validation as to the integrity and quality of the security features of ArcSight ESM software.

"Receiving Common Criteria Level Three Augmented Certification demonstrates ArcSight's highest commitment to developing secure solutions to address the mission critical security management needs of government agencies and security conscious organizations," said Haiyan Song, vice president of engineering at ArcSight. "We continue to invest in certifications such as these to provide assurance to our customers that we meet their toughest demands and we are validated by rigorous international security standards."

The NIAP is a program established by the National Institute of Standards and Technology (NIST) and the National Security Agency (NSA) to evaluate IT product conformance to international standards. The rigorous and systematic program, publicly known as Common Criteria, is accepted by a number of organizations internationally as a definitive standard for proving that the integrity and security architecture of a technology have been tested and validated against known criteria, performed by an accredited third-party source. Twenty-two countries now recognize Common Criteria (also known as ISO international standard 15408) as the official third-party evaluation criteria for IT security procedures. The certification of EAL Level 3 Augmented provides enterprises with an extensive third-party validation as to the integrity of the ArcSight ESM solution.

About ArcSight

ArcSight, a leader in Enterprise Security Management, provides solutions that serve as the mission control center for real-time threat management, compliance reporting and automated network response. By comprehensively collecting, analyzing and managing security data, ArcSight solutions centrally manage and mitigate information risk for security, insider threat and compliance. ArcSight's customer base includes leading global enterprises, government agencies and MSSPs.

ArcSight and the ArcSight logo are trademarks of ArcSight, Inc.

Contact Information