Trusted Solaris 8 4/01 OE obtains marketplace first in security certification
Sun Microsystems announced that the Trusted Solaris 8 4/01 Operating Environment (Solaris OE) received security certification under the Common Criteria Labeled Security Protection Profile (LSPP) at Evaluation Assurance Level 4 (EAL4). The only operating system to achieve this level of certification, the Trusted Solaris 8 OE (http://sun.com/trustedsolaris) is an integrated platform expanding the capabilities of the Solaris 8 OE for customers who require enhanced security and strong access control in a highly secure environment.
The Trusted Solaris 8 OE is considered the de facto standard for protecting classified and sensitive information in military and government institutions. Providing multiple levels of security to control access and handling of data, the Trusted Solaris 8 OE provides extensive protection for servers and desktop systems that process highly sensitive information. The LSPP EAL4 independent evaluation assures customers that Trusted Solaris 8 OE meets the global standards for evaluating IT security set forth by Common Criteria. The LSPP EAL4 certification is equivalent to the Orange Book B1 standard published by the U.S. government. Trusted Solaris 8 OE is the only operating system to carry the Common Criteria Labeled Security Protection Profile at Evaluation Assurance Level 4 certification. (Press Release)
"Solaris already sets the standard for operating system security, but users who require multiple levels of security can turn to Trusted Solaris 8 OE, which provides the highest level of security in the marketplace," said Andy Ingram, vice president of marketing, Solaris software. "Our customers face an increasingly hostile environment where internal and external security threats are growing in frequency and sophistication. They need an operating system that can protect trade secrets, customer lists, litigation strategies and other confidential, mission-critical information from security breaches."
Today, companies and government agencies invite customers, citizens, employees, partners and suppliers into their networks as part of day-to-day operations. This type of access allows for increased productivity, but can also leave sensitive data and classified information exposed. As information security breaches continue unabated, the financial toll and liability is mounting for both private and public enterprises. The Solaris 8 OE provides industry-leading security features not commonly found in standard operating systems. To extend these capabilities even further, Sun developed Trusted Solaris 8 OE, which enables organizations to safeguard their most-critical information in a networked environment by processing and managing information at different levels of sensitivity. The Trusted Solaris 8 OE takes security to the next level with mandatory access control, which restricts or grants access to data only after verifying the clearance level of the user and comparing it to the security level of the data.
One organization that demands security clearance for classified information is Veridian, a provider of information-based systems and integrated solutions for the national intelligence community, the Department of Defense, law enforcement and other federal and local government agencies. Using the capabilities of the Trusted Solaris 8 OE, Veridian developed the Trusted Network Environment, a scalable suite of applications, servers, databases, gateways and services that ensure fully audited, controlled access to all information and services across the IT enterprise.
"We've built all of our Trusted Network Environment client and server applications to run on the Trusted Solaris 8 OE," said David Castillo, Veridian's director of TNE product and service development. "The Trusted Solaris 8 OE provides the powerful security features that our government customers require to protect our nation's most valuable information."