Opengear Joins OSSI’s Efforts to Expand Secure Open Source Network Communications within Federal Computing Environments

65

 

 

Opengear Sponsors Extension of the OpenSSL FIPS Object Module FIPS

140-2 validation to ARM Processors

 

SANDY, UT –  December 3, 2009 – Opengear (www.opengear.com) today

announced it has joined the Open Source Software Institute (OSSI) and

will work to contribute software that will expand the use of safe,

secure computing protocols in Federal computing environments. As a

part of Opengear’s commitment to open source, Opengear has extended

the OpenSSL cryptographic module – for the first time making it FIPS

140-2 compliant for ARM–based processors.

 

The Open Source Software Institute (OSSI) is a non-profit organization

dedicated to the promotion and implementation of open source solutions

within U.S. federal, state and municipal government agencies and

academic entities. As a part of its charter, OSSI works with

representatives of the U.S. government, IT industry and Open Source

Community to maintain and support open source projects such as

OpenSSL.

 

By joining OSSI:

       Opengear Chairman Bob Waldie will become a board member of the Open

Source Software Institute.

       Opengear’s full line of ARM-powered console servers and power

management solutions will be FIPS compliant.

 

Opengear has previously partnered with OSSI and the OpenSSL project to

sponsor an extension of the existing OpenSSL FIPS Object Module v1.2

validation (certificate #1051) that enables, for the first time, that

open source cryptographic module to meet the FIPS 140-2  standards for

ARM processors.  The OpenSSL project is a collaborative effort to

develop a robust, commercial-grade, full-featured, and open source

toolkit implementing the Secure Sockets Layer (SSL v2/v3) and

Transport Layer Security (TLS v1) protocols as well as a full-strength

general purpose cryptography library.

 

Federal Information Processing Standards (FIPS) are standards created

by the National Institute of Standards and Technology (NIST) for

Federal computer systems. These standards and guidelines are issued by

NIST for use government-wide. NIST develops FIPS when there are

compelling Federal government requirements such as for security and

interoperability and there are no acceptable industry standards or

solutions.  FIPS 140-2 is a standard specific to cryptographic

implementations.

 

“Opengear is a recognized leader in the software security industry and

has made a major contribution to the open source community through

their efforts to secure the modification to allow the FIPS validated

OpenSSL module to be compliant for ARM processors,” said John

Weathersby, OSSI executive director.  “We welcome Opengear as a member

of the organization and look forward to their active participation in

promoting the adoption of open source throughout government and

industry IT environments.”  Weathersby added that a representative

from Opengear has agreed to join the OSSI advisory board and will help

lead a special Open Source Security Working Group which will

officially launch at the organization’s annual meeting in December.

 

“Opengear has a long tradition of working with various organizations

and people in the open source community to help spread the use of open

source software,” said Bob Waldie, founder of Opengear. “The FIPS

validated OpenSSL is an example of industry, government and community

working together to produce and maintain certified security components

for all to use.”

 

About Opengear

Opengear (http://www.opengear.com) designs and manufactures

next-generation console server, power management and kvm over ip

solutions for secure remote access and control of infrastructure.

Opengear console servers are installed in more than 10,000 locations

around the world. Opengear’s open source platform gives network

managers and system integrators the most flexible, extensible, console

server solution on the market today for serial console ports, service

processors, power solutions and environmental monitoring.

 

 

About the Open Source Software Institute

OSSI (www.oss-institute.org) is a US-based, non-profit organization

whose mission is to promote the development and implementation of open

source software solutions within US federal, state and local

government entities.  OSSI has worked with members of the US

Government, industry sponsors and the core OpenSSL development team to

secure and maintain a Federal Information Processing Standard (FIPS

140-2) validated version of the popular OpenSSL cryptographic module.

 

 

Bret Clement

Office: 303.462.3057

Google Voice: 415.448.7375

Twitter: bret_clement