SecureSphere Meets Requirements for FIPS 140-2 Federal Information Processing Standard
REDWOOD SHORES, Calif., December 23, 2008 – Imperva®, the leader in application data security, today announced that its SecureSphere Web Application Firewall and Database Security Gateway products have achieved level 1 compliance with the FIPS 140-2 standard. FIPS (Federal Information Processing Standard), which certifies cryptographic operations in computer systems, is a requirement for information security products deployed in sensitive U.S. and Canadian government installations.
Although primarily intended as a requirement for government applications and contracts, FIPS compliance is increasingly being requested by financial institutions and e-commerce sites. In addition to FIPS compliance, SecureSphere is:
- Approved for conformance to the Common Criteria Certification process
- An ICSA Labs certified Web Application Firewall (WAF)
- SAP Certified for its interoperability with the SAP NetWeaver® Application Server
- Certified as interoperable with RSA Access Manager software from RSA
- Certified as interoperable with the ArcSight SIEM (Security Information and Event Management) platform
FIPS compliance verifies that SecureSphere meets the following two key government requirements:
- United States FIPS 140-2 Cryptographic Module Validation Authority (CMVA), set by the National Institute of Standards and Technology
- Canadian FIPS 140-2 CMVA, set by the Communications Security Establishment (CSE)
The use of validated cryptographic modules is required by the United States Government for all unclassified uses of cryptography. The Government of Canada also recommends the use of FIPS 140 validated cryptographic modules in unclassified applications of its departments.
“The government market in the US, Canada, and abroad is one of the leading sources of revenue for Imperva,” said Mark Kraynak, vice president of marketing for Imperva. “Compliance with the FIPS standard meets mandated government requirements, while providing all our customers, especially in the financial and e-commerce sectors, even greater confidence in SecureSphere’s security capabilities.”
For more information regarding FIPS 140-2, visit: http://csrc.nist.gov/publications/PubsFIPS.html
About Imperva
Imperva, the Data Security leader, enables a complete security lifecycle for business databases and the applications that use them. Over 4,500 of the world’s leading enterprises, government organizations, and managed service providers rely on Imperva to prevent sensitive data theft, protect against data breaches, secure applications, and ensure data confidentiality. The award-winning Imperva SecureSphere is the only solution that delivers full activity monitoring from the database to the accountable application user and is recognized for its overall ease of management and deployment. For more information, visit www.imperva.com.
# # #
Imperva and SecureSphere are registered trademarks of Imperva, Inc. All other brand or product names are trademarks or registered trademarks of their respective holders.
Editorial Contact
Marc Gendron
(781) 237-0341
marc@mqpr.net