LogRhythm Log and Event Management Appliances Certified for Common Criteria Validation

##Company Supporting Third Government, Military, and Intelligence Agency Requirement for Security Appliances and Software

Dec. 15, 2009 LogRhythm, the company that makes log data useful, today announced that its SIEM solution, which integrates log and event management, file integrity monitoring, and endpoint monitoring & control, has been approved by the National Information Assurance Partnership (NIAP) for entrance into the Common Criteria Certification process. LogRhythm appliances will be certified for Common Criteria, one of the most stringent and globally recognized standards for IT security products.Common Criteria will bolster LogRhythm’s existing support for leading federal, military, and intelligence agency certifications and requirements. The LogRhythm solution has already achieved U.S. Air Force Certification & Accreditation, and is capable of operation using FIPS 140-2 validated cryptography.Common Criteria is a framework that provides assurance that the process of specification, implementation and evaluation of a computer security product has been conducted in a rigorous and standard manner. Common Criteria was developed by the governments of Canada, France, Germany, the Netherlands, the UK, and the U.S., and unifies several pre-existing standards. It enables companies selling computer products for the government market, especially for deployment by Defense or Intelligence agencies, to only have to meet one set of requirements. LogRhythm is the only SIEM solution that combines log and event management with file and endpoint security capabilities required to meet the most demanding security environments like those of Homeland Security, The Department of Defense, and Intelligence Agencies,” said Chris Petersen, co-founder and CTO of LogRhythm. “Common Criteria validation, combined with our U.S. Air Force certification and support for FIPS 140-2 validated cryptography helps us better serve these critical customers worldwide.

About the Common Criteria Evaluation

The National Institute of Standards and Technology (NIST) and the National Security Agency (NSA) have established a national program, the NIAP Common Criteria Evaluation and Validation Scheme (CCEVS) for the evaluation of information technology internationally. The Common Criteria process is a result of multi-national efforts designed to assure the security and trustworthiness of IT products that are part of the national information infrastructure, both in the public and private sectors. The SAIC Common Criteria Testing Laboratory is performing the test and evaluation of LogRhythm’s hardware and software for conformance with Common Criteria. For additional information, please see the Common Criteria website.

About LogRhythm

LogRhythm empowers more than 4,000 customers across the globe to measurably mature their security operations program. LogRhythm’s award-winning NextGen SIEM Platform delivers comprehensive security analytics; user and entity behavior analytics (UEBA); network detection and response (NDR); and security orchestration, automation, and response (SOAR) within a single, integrated platform for rapid detection, response, and neutralization of threats. Built by security professionals for security professionals, LogRhythm enables security professionals at leading organizations like Cargill, NASA, and XcelEnergy to promote visibility for their cybersecurity program and reduce risk to their organization each and every day. LogRhythm is the only provider to earn the Gartner Peer Insights’ Customer Choice for SIEM designation three years in a row. To learn more, please visit logrhythm.com.