LogRhythm Log and Event Management Appliances Certified for Common Criteria Validation

##Company Supporting Third Government, Military, and Intelligence Agency Requirement for Security Appliances and Software

Dec. 15, 2009 LogRhythm, the company that makes log data useful, today announced that its SIEM 2.0 solution, which integrates log and event management, file integrity monitoring, and endpoint monitoring & control, has been approved by the National Information Assurance Partnership (NIAP) for entrance into the Common Criteria Certification process. LogRhythm appliances will be certified for Common Criteria, one of the most stringent and globally recognized standards for IT security products.Common Criteria will bolster LogRhythm’s existing support for leading federal, military, and intelligence agency certifications and requirements. The LogRhythm solution has already achieved U.S. Air Force Certification & Accreditation, and is capable of operation using FIPS 140-2 validated cryptography.Common Criteria is a framework that provides assurance that the process of specification, implementation and evaluation of a computer security product has been conducted in a rigorous and standard manner. Common Criteria was developed by the governments of Canada, France, Germany, the Netherlands, the UK, and the U.S., and unifies several pre-existing standards. It enables companies selling computer products for the government market, especially for deployment by Defense or Intelligence agencies, to only have to meet one set of requirements. LogRhythm is the only SIEM 2.0 solution that combines log and event management with file and endpoint security capabilities required to meet the most demanding security environments like those of Homeland Security, The Department of Defense, and Intelligence Agencies,” said Chris Petersen, co-founder and CTO of LogRhythm. “Common Criteria validation, combined with our U.S. Air Force certification and support for FIPS 140-2 validated cryptography helps us better serve these critical customers worldwide.

About the Common Criteria Evaluation

The National Institute of Standards and Technology (NIST) and the National Security Agency (NSA) have established a national program, the NIAP Common Criteria Evaluation and Validation Scheme (CCEVS) for the evaluation of information technology internationally. The Common Criteria process is a result of multi-national efforts designed to assure the security and trustworthiness of IT products that are part of the national information infrastructure, both in the public and private sectors. The SAIC Common Criteria Testing Laboratory is performing the test and evaluation of LogRhythm’s hardware and software for conformance with Common Criteria. For additional information, please see the Common Criteria website.

About LogRhythm

LogRhythm is a world leader in NextGen SIEM, empowering organizations on six continents to successfully reduce risk by rapidly detecting, responding to and neutralizing damaging cyberthreats. The LogRhythm platform combines user and entity behavior analytics (UEBA), network traffic and behavior analytics (NTBA) and security automation & orchestration (SAO) in a single end-to-end solution. LogRhythm’s Threat Lifecycle Management (TLM) workflow serves as the foundation for the AI-enabled Security Operations Center (SOC), helping customers measurably secure their cloud, physical and virtual infrastructures for both IT and OT environments. Built for security professionals by security professionals, the LogRhythm platform has won many accolades, including being positioned as a Leader in Gartner’s SIEM Magic Quadrant.