atsec achieves General Services Administration (GSA) FIPS 201 Evaluation Program (EP) Lab Accreditation
In August 2004, the Homeland Security Presidential Directive (HSPD) 12 established requirements for identification and authentication of federal employees and contractors accessing federal facilities and information systems. FIPS 201: Personal Identity Verification of Federal Employees and Contractors was developed to satisfy the requirements of HSPD 12. atsec's experience in IT security will help hardware and software companies to validate FIPS 201 product or service compliance, which is requirement for federal agencies who implement compliant solutions as per HSPD-12.
Fiona Pattinson, atsec's Director of Business Development, commented:
"As a leader in the business of standards-based IT security testing and evaluation, atsec is very pleased to have achieved this accreditation.
We are looking forward to helping vendors achieve FIPS 201compliance for their products and services."
atsec is already an accredited laboratory (Laboratory code 200658) under the National Voluntary Laboratory Accreditation Program (NVLAP) for cryptographic module testing, and is accredited to conduct conformance testing of SCAP and Personal Identity Verification smart card applications and middleware under the National Institute of Standards and Technology (NIST) Personal Identity Verification Program (NPIVP).
atsec also operates fully accredited laboratories for Common Criteria testing under the U.S., German, and Swedish national schemes.
About atsec information security
atsec information security is an independent, standards-based information technology security services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. atsec was founded in Munich
(Germany) in 2000 and has extensive international operations with offices in the U.S., Germany, Sweden and China.atsec offers evaluation and testing services leading to formal certification for IT security including evaluation under Common Criteria schemes in the U.S., Germany, and Sweden; cryptographic module and algorithm testing under the Cryptographic Module Validation Program of the National Institute of Standards and Technology (NIST) in the U.S.and Communications Security Establishment Canada (CSEC) in Canada; and compliance validation to the Payment Card Industry (PCI) Data Security Standard.
atsec also offers secure code review, ISO/IEC 27001 ISMS consulting, and penetration testing and scanning services.atsec works with leading global companies such as IBM, Apple, Microsoft, Hewlett-Packard, Oracle, Cray, BMW, SGI, Vodafone, Swisscom, RWE, and Wincor-Nixdorf.