Atlanta, GA – April 14, 2021 – BeyondTrust, the worldwide leader in Privileged Access Management, today announced it has been awarded Level 1 Federal Information Processing Standards (FIPS) 140-2 validation for its Privileged Remote Access solution. BeyondTrust now has FIPS 140-2 Level 1 validation for both of their Secure Remote Access solutions, Privileged Remote Access for the first time and renewed validation for Remote Support.
FIPS 140-2 Level 1 validation is a set of standards for IT operations and infrastructure for government agencies and any business entities (such as contractors) who will need to handle some or all an agency’s communications and data needs, and informs business partners in the government domain that the technologies are certified. Defined by the National Institute of Standards and Technology (NIST), FIPS 140-2 validation is a business imperative within the public sector and has also become a de-facto standard for encryption beyond the federal government and is recognized as an important security standard outside the United States.
To be FIPS 140-2 validated, the cryptographic module used in the Secure Remote Access solutions must be independently validated by a NIST specified laboratory. BeyondTrust is the first and only PAM vendor with secure privileged remote access and remote support solutions using an appliance-based approach, and a patented deployment model that has achieved FIPS 140-2 Level 1 validation.
“Upgrading deployed cryptography is one of the most high leverage and fundamentally important initiatives that a technology company can pursue,” added SafeLogic CEO Poga Ahn. “We are honored to partner and support BeyondTrust’s effort to transition to an encryption module that has been independently tested and validated by NIST to meet FIPS 140 standards. It is a critical step in solidifying their already sterling reputation in the public sector.”
Validation signifies the solution is fully standardized and conformant and ensures a higher level of security than “compliant,” which means that some aspects of a product or solution may be compliant, but not validated. To achieve FIPS 140-2 validation, the software (or hardware) must be independently certified by one of NIST specified laboratories. It’s an important differentiation, as having a compliant-only product might have security weaknesses and gaps within different parts of a product.
“Every day, government agencies handle highly confidential information that must never be at risk of falling into the wrong hands,” states Craig McCullough, Vice President of Federal Sales at BeyondTrust. “In light of recent public sector breaches, data and network security has become an even higher priority for government agencies. Our FIPS validation reflects BeyondTrust’s commitment to providing our customers with the most secure and dependable remote access and support solutions.”
The Federal Information Security Management Act (FISMA) dictates that U.S. government agencies must use FIPS 140-2 validated cryptography modules. U.S. government contractors and third-parties working for federal agencies are also required to use FIPS 140-2. FIPS 140-2 sets a high-security benchmark, and now other industries, like healthcare and finance, are also adopting the standard for securing their sensitive data.
BeyondTrust is the worldwide leader in Privileged Access Management (PAM), empowering organizations to secure and manage their entire universe of privileges. Our integrated products and platform offer the industry's most advanced PAM solution, enabling organizations to quickly shrink their attack surface across traditional, cloud and hybrid environments.
The BeyondTrust Universal Privilege Management approach secures and protects privileges across passwords, endpoints, and access, giving organizations the visibility and control they need to reduce risk, achieve compliance, and boost operational performance. We are trusted by 20,000 customers, including 70 percent of the Fortune 500, and a global partner network. Learn more at www.beyondtrust.com.
Mike Bradshaw Connect Marketing for BeyondTrust P: (801) 373-7888 E: email@example.com