Back to SYMC
Symantec Solutions Achieve Common Criteria Certifications

MOUNTAIN VIEW, CA -- (Marketwire) -- 05/09/12 -- Symantec Corp. (NASDAQ: SYMC) today announced Symantec Data Loss Prevention, Symantec Control Compliance Suite and Risk Automation Suite have achieved Common Criteria certification at Evaluation Assurance Level 3 (EAL3+) under the Common Criteria Information Technology Security Evaluation (CC). These follow the recent certification of Symantec's VeriSign eToken series, which achieved a Common Criteria certification at EAL4+, the highest assurance level recognized globally under the Common Criteria Recognition Agreement for high and consistent standards in this type of product profile.

In addition, the Java Cryptographic Module for Symantec Data Loss Prevention and Symantec Cross-Platform Cryptographic Module for Symantec Security Information Manager were validated to Federal Information Processing Standard (FIPS) 140-2 for security requirements for cryptographic modules under certification. FIPS are requirements issued by the National Institute of Standards and Technology (NIST) that apply to federal government computer systems.

Common Criteria certification verifies that the software has completed a rigorous independent testing process of specification, implementation and evaluation, and conforms to standards sanctioned by the International Standards Organization (ISO/IEC 15408). The testing is managed by an independent evaluation firm and is recognized by public sector security authorities and organizations with high-level security requirements for its expertise and adherence to published international security regulations. It's an important worldwide evaluation for security products and is recognized in 20 countries around the world including the United States, United Kingdom, Canada, Germany and Australia. Solutions that receive Common Criteria certification are considered to exhibit high levels of security, minimizing risk for the organizations that use them. This is exceedingly important within the government sector, a primary focus of Symantec.

Symantec Control Compliance Suite, the company's enterprise-class IT governance, risk and compliance (GRC) solution, provides a comprehensive compliance and risk management solution that enables security leaders to communicate IT risk in business-relevant terms, prioritize remediation efforts based on business criticality, and automate time-consuming manual assessment processes to improve their organization's overall security and compliance posture while reducing cost and complexity.

Symantec Data Loss Prevention's Common Criteria and FIPS certifications provide U.S. federal government agencies and the organizations that do business with them an objective assessment for reliably qualifying the security of the solution. Symantec's market-leading DLP solution delivers a proven, content-aware solution to discover, monitor, protect and manage confidential data wherever it is stored or used. It allows organizations to measurably reduce their risk of a data breach, demonstrate regulatory compliance and safeguard customer privacy, brand equity and intellectual property.

"Government agencies increasingly need to protect sensitive intellectual property and manage IT risk in a complex and increasingly at-risk environment," said Gigi Schumm, vice president and general manager of Symantec's Public Sector organization. "These certifications are a testament to our unwavering commitment to provide customers with the most secure solutions available for their mission-critical IT resources."

Symantec Corporation Worldwide Public Sector Enablement Program is committed to providing IT security products that provide significant value to private and public sector customers. As part of that program, Symantec is continuously improving its internal development efforts and business processes to ensure that it meets and/or exceeds requirements from Common Criteria, Federal Information Processing Standard (FIPS), CEGS/CAPS, VPAT/Section 508, Security Technical Implementation Guide (STIG), Security Content Automation Program (SCAP), and other local, state, government, and worldwide requirements. Additionally, Symantec maintains active participation in various government working groups and policy development organizations.

Connect with Symantec

About Symantec

Symantec is a global leader in providing security, storage and systems management solutions to help consumers and organizations secure and manage their information-driven world. Our software and services protect against more risks at more points, more completely and efficiently, enabling confidence wherever information is used or stored. More information is available at

NOTE TO EDITORS: If you would like additional information on Symantec Corporation and its products, please visit the Symantec News Room at All prices noted are in U.S. dollars and are valid only in the United States.

Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.

FORWARD-LOOKING STATEMENTS: Any forward-looking indication of plans for products is preliminary and all future release dates are tentative and are subject to change. Any future release of the product or planned modifications to product capability, functionality, or feature are subject to ongoing evaluation by Symantec, and may or may not be implemented and should not be considered firm commitments by Symantec and should not be relied upon in making purchasing decisions.

Back to SYMC
Wikinvest © 2006, 2007, 2008, 2009, 2010, 2011, 2012. Use of this site is subject to express Terms of Service, Privacy Policy, and Disclaimer. By continuing past this page, you agree to abide by these terms. Any information provided by Wikinvest, including but not limited to company data, competitors, business analysis, market share, sales revenues and other operating metrics, earnings call analysis, conference call transcripts, industry information, or price targets should not be construed as research, trading tips or recommendations, or investment advice and is provided with no warrants as to its accuracy. Stock market data, including US and International equity symbols, stock quotes, share prices, earnings ratios, and other fundamental data is provided by data partners. Stock market quotes delayed at least 15 minutes for NASDAQ, 20 mins for NYSE and AMEX. Market data by Xignite. See data providers for more details. Company names, products, services and branding cited herein may be trademarks or registered trademarks of their respective owners. The use of trademarks or service marks of another is not a representation that the other is affiliated with, sponsors, is sponsored by, endorses, or is endorsed by Wikinvest.
Powered by MediaWiki