Welcome!

Linux Authors: Maureen O'Gara, Chris Fleck, Loraine Antrim, Walter H. Pinson, III, Suresh Krishna Madhuvarsu

Related Topics: Linux, Open Source

Linux: Article

SGI And atsec Complete Evaluation Of Red Hat Enterprise Linux 4 Update 4

EAL3+ And CAPP Validation For SGI In A Series Of Linux Evaluations By atsec
By Linux News Desk
Article Rating:
October 25, 2006 03:00 AM EDT
Reads:
 7,411

SGI and atsec information security announced the completion of the Common Criteria evaluation of Red Hat Enterprise Linux (RHEL) 4 Update 4 at evaluation assurance level (EAL) 3+ with compliance to the Controlled Access Protection Profile (CAPP). RHEL4 Update 4 was examined on the SGI Altix server platform. The U.S. NIAP CCEVS Common Criteria scheme is the certifier for the evaluation, the result of which is internationally recognized through the Common Criteria Recognition Arrangement.

atsec is the world's most successful Common Criteria evaluator of Linux operating system products. To date, the company has performed ten Linux evaluations on six different Linux platforms at assurance levels EAL2, EAL3, and EAL4+ under both the German BSI and U.S. NIAP CCEVS Common Criteria schemes. atsec's security experts were able to shift evaluation efforts from RHEL4 Update 3 to RHEL4 Update 4 when it became evident early in the evaluation process that Update 4 would be released during a compatible timeframe.

Stephan Müller, atsec Lead Evaluator on the project notes: "At atsec, we are proud of our status as the world leader in Linux evaluations, and maintaining that status requires us not only to pay attention to ongoing evaluations, but also to constantly monitor developments in the Linux world. Because we were confident that Update 4 would be released as scheduled, we were able to adjust our evaluation efforts to move from Update 3 to Update 4. This greatly benefits SGI, because the evaluation actually completed just after release of Update 4. When certification occurs almost concurrent with product release, the sponsor reaps the maximum benefit from his investment in evaluation."

"CAPP certifications assure customers that the software running on SGI Altix systems is the most secure Linux can deliver today," said Beverly Bernard, marketing manager, SGI. "Protecting access to information is especially important in these days of infiltration of systems by hackers, many of whom are people who do not have the best interest of corporations in mind."

Red Hat Enterprise Linux 4 provides an enterprise-focused Linux environment. Areas of specific development include improvements in security capabilities, increased server performance and scalability, and enhanced desktop capabilities.

Published October 25, 2006 – Reads 7,411
Copyright © 2006 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.

About Linux News Desk

SYS-CON's Linux News Desk gathers stories, analysis, and information from around the Linux world and synthesizes them into an easy to digest format for IT/IS managers and other business decision-makers.

Comments (1) View Comments

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

Most Recent Comments
linux news desk 10/25/06 05:44:44 AM EDT

SGI and atsec information security announced completion of the Common Criteria evaluation of Red Hat Enterprise Linux (RHEL) 4 Update 4 at evaluation assurance level (EAL) 3+ with compliance to the Controlled Access Protection Profile (CAPP). RHEL4 Update 4 was examined on the SGI Altix server platform. The U.S. NIAP CCEVS Common Criteria scheme is the certifier for the evaluation, the result of which is internationally recognized through the Common Criteria Recognition Arrangement.