RSA Keon® Certificate Authority Awarded Highest Common Criteria Certification of Commercial Certificate Management Solutions
RSA Security’s certificate authority helps organizations around the globe achieve highest levels of government compliance
Bedford, MA, Monday, January 27, 2003 — RSA Security Inc. (Nasdaq: RSAS), the most trusted name in e-security®, today announced the availability of RSA Keon® Certificate Authority (CA) 6.5 software. With this release, the RSA Keon CA solution achieves high levels of compliance with government initiatives for security certification and electronic signing, helping to make certificate management a viable solution in today’s security-conscious business climate. The RSA Keon CA solution is the first in its category to be certified for Common Criteria EAL (Evaluation Assurance Level) 4+. Additionally, the RSA Keon CA 6.5 software has been designed to support requirements for digital signing in Europe and Russia as one of the only commercially available products to support both the European Union (EU) Directive on Electronic Signatures and GOST Public Key Digital Signature Algorithm.
"The availability of an EAL 4 certified certificate management solution is a significant milestone for e-business, helping to enable legally-binding electronic transactions that raises the level of assurance afforded e-business,"said Charles Kolodgy, Research Manager of Security Products at IDC. "With today’s heightened awareness surrounding the security of e-business infrastructures, assurance of product security functionality is absolutely essential going forward. Recognized by an independent third party, the validation received by the new release of RSA Keon certificate management software illustrates RSA Security’s continued commitment to help make electronic transactions safe, effortless and dependable."
The US Government, like others around the globe, now requires IT security products and solutions to meet stringent industry standards based on defined assurance levels. Common Criteria is an internationally recognized standard used for this testing. In the United States, Common Criteria is granted by National Information Assurance Partnership (NIAP) – a joint operation between the National Institute of Standards and Technology (NIST) and the National Security Agency (NSA). Security solutions are evaluated and validated with designations of Evaluation Assurance Levels (EAL). EAL 4+ provides a high level of independently assured security based on security analysis and design combined with strong commercial development practices. RSA Keon 6.5 software is the only digital certificate management solution to be Common Criteria EAL 4+ certified, helping to give users confidence that the certificates are valid, credible and trustworthy. For more information about Common Criteria validation of RSA Keon software, please visit http://niap.nist.gov/cc-scheme/ST_VID-4007.html.
In addition, European and Russian governments have passed electronic signature legislation impacting both private and government entities. The European Union Directive on Electronic Signatures and the Russian-based GOST Public-Key Digital Signature Algorithm impose a number of specific requirements that organizations must adhere to for electronic signatures to be binding. RSA Keon CA 6.5 software is one of the first certificate management solutions to comply with these requirements, helping to enable certified digital signatures that are admissible in a court of law as evidence in legal disputes.
"RSA Security is proud to be the first vendor in the certificate management industry to receive Common Criteria EAL 4+ certification – the highest level of tested assurance met by any certificate management solution," said Bill McQuaide, senior vice president of the Authentication division at RSA Security. "RSA Security submitted the RSA Keon CA solution to the rigorous testing regimen as part of its ongoing commitment to provide customers with security technologies that meet the highest possible industry standards. We are confident that this effort will spur substantial adoption of certificate management in the coming years. In fact, we’ve already won a multi-million dollar contract based on this achievement."
RSA Keon CA software is a certificate management solution that is designed to issue, manage and validate digital certificates. RSA Keon CA solution features a powerful signing engine designed for digitally signing end-user certificates and system events as well as an integrated data repository for storing certificates, system data and certificate status information. The new release of RSA Keon 6.5 software offers enhanced features such as the ability to digitally sign distribution media, the secure audit logging of all security relevant events, and enhanced administrative roles which are engineered to separate responsibility and comply with the Common Criteria requirements. In addition, RSA Keon CA 6.5 software addresses international standards by including the necessary field extensions to support EU Qualified Certificates (RFC 3039).
With RSA Keon 6.5 software, organizations can define and self-administer their own security procedures, trust relationships, certificate formats and rules for certificate life cycles that serve as a foundation for corporate security policies. Organizations have deployed RSA Keon software in conjunction with various e-business applications such as digital signing for secure e-mail and on-line forms as well as providing strong authentication of Web servers in addition to users and devices.