For those of you in fields where regulatory requirements are important then this news from HyTrust is for you. They have entered the process to be validated for FIPS 140-2. A press release was released yesterday, March 11 2015. The contents of this press release is below.
MOUNTAIN VIEW, Calif.–(BUSINESS WIRE)–HyTrust Inc., the Cloud Security Automation Company, today announced that the HyTrust KeyControl®Cryptographic Module has entered the validation process for FIPS 140-2 compliance. By adding FIPS 140-2 validation, HyTrust will continue to strengthen support for critical regulatory mandates such as PCI, HIPAA, and FedRAMP, offering a significant competitive advantage in an environment where data security compliance requirements are being updated and enforced across the board.
“The HyTrust engineering team has extensive experience in building FIPS 140-2 compliant encryption systems. We have a deep understanding of the complexities involved in both the security requirements for cryptographic modules and the validation process,” said Hemma Prafullchandra, CTO and senior vice president of Products at HyTrust. “That’s why we can assure our customers that there will be a seamless upgrade path from current HyTrust DataControl deployments to the FIPS-validated version.”
FIPS 140-2 and the validation process involved represent an established standard from the National Institute of Standards and Technology (NIST). It exists specifically to validate that a cryptographic module creates and handles encryption keys in a secure manner. The validation serves to assure users that the technology has passed rigorous testing by an accredited third-party lab, in accordance with NIST’s Cryptographic Module Validation Program. Since its inception, FIPS 140-2 has been considered the defining benchmark for securely engineered encryption in a range of critical areas, from the defense sector to financial services and other sensitive vertical industries.
HyTrust KeyControl® is a hardened software appliance that can be easily deployed on physical or virtual servers. Working in tandem with the HyTrust DataControl® encryption engine, KeyControl provides automated and centrally managed control over all encryption and key management policies. The Cryptographic Module is a subset of HyTrust KeyControl, representing the core software elements that generate and manage cryptographic keys. HyTrust KeyControl uses the module to generate and protect keys, enabling the rest of the solution to confidently store and distribute those protected keys.
About HyTrust (www.hytrust.com)
HyTrust is the Cloud Security Automation Company. Its mission is to secure the next generation datacenter by automating data protection and continuously enforcing security policies for the people and tools that operate private, hybrid and public clouds. HyTrust software helps enterprises increase system availability, reduce the risk of compromise, and ensure compliance to industry standards. With HyTrust, organizations gain the control, visibility and security necessary for a trustworthy cloud.
The Company is backed by strategic investors VMware, Cisco, Intel, In-Q-Tel, Fortinet, and venture capital investors Granite Ventures, Trident Capital,Epic Ventures and Vanedge Capital; its technology and go-to-market partners include VMware; VCE; Symantec; CA; McAfee; Splunk; HP Arcsight;Accuvant; RSA and Intel.
HyTrust; HyTrust, Inc.; HyTrust CloudControl (HTCC); HyTrust DataControl (HTDC); HyTrust DataControl: VM Edition; HyTrust DataControl: Virtual Storage Edition; HyTrust DataControl: AWS Edition; HyTrust KeyControl (HTKC); HyTrust Appliance; HyTrust Appliance Community Edition; HyTrust Cloud Control; HighCloud; HighCloud DSM; HighCloud VMV; HighCloud Key and Policy Server; “Virtualization Under Control”; “Cloud Under Control” and “Virtualization & Cloud Under Control” are all trademarks of HyTrust, Inc. All other names and trademarks are property of their respective firms.