SanDisk Corporation, the global leader in flash memory cards, today announced that the SanDisk® Cruzer® Enterprise FIPS edition secure USB flash drive has received Common Criteria EAL2 certification, making it the only USB flash drive to earn both Federal Information Processing Standards (FIPS) 140-2 Level 2 certification and Common Criteria certification.
The Common Criteria is an internationally recognized ISO standard (ISO/IEC 15408) used by governments and other organizations to assess the security functional requirements and security assurance requirements of technology products. With its certifications recognized in 26 countries, Common Criteria is an important global evaluation standard for security products.
"Common Criteria evaluations require a thorough examination of the entire device to certify its effectiveness in protecting the confidentiality, integrity and availability of sensitive information, including a comprehensive review of company internal processes," said David Matot, product marketing manager, enterprise solutions, SanDisk. "Cruzer Enterprise flash drives are the only USB drives in the world to hold both FIPS 140-2 and Common Criteria certifications, making them the USB flash drive of choice for organizations that require proven solutions from a leader in secure removable storage."
The Cruzer Enterprise secure USB drive was evaluated under the Australasian Information Security Evaluation Program, Defense Signals Directorate (DSD).
"A Common Criteria evaluation offers an independent evaluation of the security functionality of a product, thereby providing users with a level of assurance that the security features of the product will perform as claimed," said Mike Burgess, first assistant secretary, information security, DSD.
"Common Criteria gives organizations peace of mind when evaluating vendor products for implementation across their business," said Doug Stuart, chief operating officer, stratsec, the Australian-based information security company that conducted the evaluation. "The SanDisk Cruzer Enterprise USB flash drive FIPS edition product line has been rigorously tested, and organizations can have the assurance that the secure USB flash drive meets the stringent requirements for EAL2 certification."
In addition to earning critical security certifications that qualify Cruzer Enterprise secure USB for use in federal agencies and other security-driven organizations, SanDisk's line of Cruzer Enterprise USB flash drives passed an environmental test conducted by an independent laboratory, and were certified as meeting Military Standard 810-F 506.4 and 512.4* when submitted to immersion and rainy conditions using fresh water.
To deliver an additional layer of security for government and enterprise organizations, SanDisk provides Cruzer Enterprise secure USB drives with McAfee Malware Protection, which features an automatic anti-malware scan that prohibits file transfers to the secure USB drive when it detects infection on a host PC.
For greater control and security, agency or company-issued Cruzer Enterprise secure USB flash drives can be easily managed with SanDisk's Central Management and Control (CMC) software. SanDisk CMC server software provides lifecycle management for Cruzer Enterprise drives, including password recovery and renewal through the network, remote termination of lost drives, central backup and restore, and central usage tracking.
