Asigra Cloud Backup Platform Achieves FIPS 140-2 Certification
For security of backup in the cloud
This is a Press Release edited by StorageNewsletter.com on February 16, 2010 at 3:39 pmAsigra, Inc. announced that the U.S. National Institute of Standards and Technology (NIST) has awarded FIPS 140-2 Level 1 certificate #1240 to the Asigra Cloud Backup platform. As the only provider of FIPS 140-2 certified agentless cloud backup, Asigra delivers premier information security to government agencies and businesses, exceeding regulatory compliance standards mandated to protect sensitive or classified data.
The Federal Information Processing Standard (FIPS) is an internationally recognized standard for cryptography products, developed by the United States Federal government for use by all non-military government agencies and by government contractors. Certification of Asigra’s Cloud Backup software platform encompasses the entire system for all data in flight and at rest. The security requirements cover eleven areas related to the secure design of Asigra Cloud Backup, from physical and logical integrity of the software to system level functionality such as user access control and key management. This certification provides one of the highest levels of assurance for security products, and requires extensive third-party lab certification. Testing is performed for physical security, design quality, cryptographic best practices, fully specified state model, and independent cryptanalysis.
Unencrypted data stored in backup repositories are a threat to any organization or agency, as witnessed by continuing accounts in the media of lost or stolen data from backup tapes and hard drives. Use of Asigra for private or public cloud backup to securely protect data from misuse has been proven in the world’s largest production environments and is now certified by NIST, one of the leading governmental security testing organizations. The certification extends Asigra’s leadership position in the cloud backup space with the most secure agentless cloud backup platform in the industry.
“End-to-end encryption and secure management of backup data is a priority for organizations as threats to sensitive information continue to grow,” said Charles Kolodgy, research director for IDC’s Security Products Services. “Compliance, security and storage professionals must ensure the confidentiality and integrity of employee and customer data by incorporating a comprehensive approach to backup data security into their overall risk reduction strategy. FIPS 140-2 certification by NIST demonstrates Asigra commitment to providing users with a high level of protection for critical backup data.”
Asigra is a pioneer in cloud backup security and for more than 23 years has proven the integrity of its solution with no reported data breaches or compromised systems. Asigra continues to set the bar for cloud backup security with the following data protection advantages:
- FIPS 140-2 certification
- End-to-end encryption at all protected sites
- Encryption key safeguarding
- Password management and rotation
- Digital signature for every file and block of data
- Data destruction based on policy with certificate of destruction
“Organizations cannot risk data loss, especially where Personally Identifiable Information (PII) or classified data is involved,” said Eran Farajun, Executive Vice President at Asigra. “Achieving FIPS 140-2 certification for our industry-leading cloud backup solution is additional validation that protecting information assets from the smallest organization to the largest distributed enterprise is a top priority for Asigra.”