Sun Microsystems announced that the Trusted Solaris 8 4/01 Operating
Environment (Solaris OE) received security certification under the
Common Criteria Labeled Security Protection Profile (LSPP) at
Evaluation Assurance Level 4 (EAL4). The only operating system to
achieve this level of certification, the Trusted Solaris 8 OE
(http://sun.com/trustedsolaris) is an integrated platform expanding
the capabilities of the Solaris 8 OE for customers who require
enhanced security and strong access control in a highly secure
environment.
The Trusted Solaris 8 OE is considered the de facto standard for
protecting classified and sensitive information in military and
government institutions. Providing multiple levels of security to
control access and handling of data, the Trusted Solaris 8 OE
provides extensive protection for servers and desktop systems that
process highly sensitive information. The LSPP EAL4 independent
evaluation assures customers that Trusted Solaris 8 OE meets the
global standards for evaluating IT security set forth by Common
Criteria. The LSPP EAL4 certification is equivalent to the Orange
Book B1 standard published by the U.S. government.
Trusted Solaris 8 OE is the only operating system to carry
the Common Criteria Labeled Security Protection Profile
at Evaluation Assurance Level 4 certification. (Press Release)
“Solaris already sets the standard for operating system security,
but users who require multiple levels of security can turn to
Trusted Solaris 8 OE, which provides the highest level of security
in the marketplace,” said Andy Ingram, vice president of marketing,
Solaris software. “Our customers face an increasingly hostile
environment where internal and external security threats are growing
in frequency and sophistication. They need an operating system that
can protect trade secrets, customer lists, litigation strategies
and other confidential, mission-critical information from security
breaches.”
Today, companies and government agencies invite customers, citizens,
employees, partners and suppliers into their networks as part of
day-to-day operations. This type of access allows for increased
productivity, but can also leave sensitive data and classified
information exposed. As information security breaches continue
unabated, the financial toll and liability is mounting for both
private and public enterprises. The Solaris 8 OE provides
industry-leading security features not commonly found in standard
operating systems. To extend these capabilities even further, Sun
developed Trusted Solaris 8 OE, which enables organizations to
safeguard their most-critical information in a networked environment
by processing and managing information at different levels of
sensitivity. The Trusted Solaris 8 OE takes security to the next
level with mandatory access control, which restricts or grants
access to data only after verifying the clearance level of the user
and comparing it to the security level of the data.
One organization that demands security clearance for classified
information is Veridian, a provider of information-based systems
and integrated solutions for the national intelligence community,
the Department of Defense, law enforcement and other federal and
local government agencies. Using the capabilities of the Trusted
Solaris 8 OE, Veridian developed the Trusted Network Environment,
a scalable suite of applications, servers, databases, gateways and
services that ensure fully audited, controlled access to all
information and services across the IT enterprise.
“We’ve built all of our Trusted Network Environment client and
server applications to run on the Trusted Solaris 8 OE,” said David
Castillo, Veridian’s director of TNE product and service development.
“The Trusted Solaris 8 OE provides the powerful security features
that our government customers require to protect our nation’s most
valuable information.”