Security News Desk

Subscribe to Security News Desk: eMailAlertsEmail Alerts
Get Security News Desk via: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


BMC Earns NIAP Common Criteria EAL3 Security Certification

Certification Validates Security and Reliability of BMC Software Solutions

Enterprise management solutions provider BMC Software has announced that its most current release of BMC Marimba Desktop/Mobile Management and BMC Marimba Server Change Management product suites have been awarded Common Criteria Evaluation Assurance Level 3 (EAL3) certification.

Additionally, the company’s BMC Remedy Action Request System (AR System) solution has entered the National Information Assurance Partnership (NIAP) evaluation for Common Criteria EAL3 certification. Managing change across desktop, server and mobile devices can cause increased risks for government agencies, and this certification helps mitigate that risk through validated security capabilities.

Common Criteria EAL3 certification, sanctioned by NIAP Common Criteria Evaluation and Validation Scheme (CCEVS), assures government agencies that Marimba Client Management from BMC and Marimba Server Management from BMC — the BMC Marimba Desktop/Mobile Management and Server Change Management products — have gone through stringent testing/analysis and conform to current federal security standards. The BMC Remedy Action Request System solution is currently being evaluated to ensure it also meets NIAP and CCEVS requirements.

“NIAP and its CCEVS testing process is an essential component to the protection of public and private Information Technology (IT) infrastructures,” said Chris Aherne, Federal area director at BMC Software. “BMC Software is completely committed to NIAP’s goal of increasing government trust levels through the use of security testing, evaluation, and validation programs. It is our goal to ensure that all appropriate BMC Software products are certified through the Common Criteria EAL3 verification system.”

In demonstrating its continued commitment to EAL3 verification, BMC Software also announced that the company’s BMC Remedy Action Request System solution has entered the NIAP evaluation for Common Criteria EAL3 certification. AR System is a rapid application development environment for automating and maintaining business processes and the application platform for BMC Remedy Enterprise Solutions, BMC Remedy Customer Service and Support solutions, and custom-built applications. AR System is currently being evaluated to ensure it meets NIAP CCEVS requirements, enabling government agencies to expedite their implementation of these BMC service management solutions.

“Current landscapes are forcing agencies to require that their software solution providers adhere to strict regulatory standards that guard against threats to their IT systems,” said Aherne. “BMC Software applauds NIST and NSA for its continued focus on IT security, as well as its dedication to ensuring that the private sector supplies its agency counterparts with solid, secure software solutions.”

NIAP, a collaboration between the National Institute of Standards and Technology (NIST) and the National Security Agency (NSA), is an initiative designed to meet the security testing needs of both IT consumers and producers. Tasked with defining and developing national and international standards for IT security, the partnership combines the extensive IT security experience of both agencies to promote technically sound security requirements for IT products and systems. Additionally, 21 countries around the world mutually recognize the Common Criteria certificate

More Stories By Security News Desk

SYS-CON's Security News desk trawls the world of security for news of software, hardware, products, and services that seems likely to be of interest to infosec professionals and summarizes them for easy assimilation by busy IT managers and staff.

Comments (1)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.