Volume 13
ment .
• Deception lures ( bait ) redirect attackers trying to infect endpoints , servers / VMs to engagement servers for detection .
• Bait includes deception credentials , ransomware bait , and other deception lures .
June 2017 Edition
process assessment , and independent testing based on detailed Target of Evaluation ( TOE ) specifications .
The evaluation determined that the Attivo Threat- Matrix system configured to include BOTsink , ThreatStrike and Central Management solutions meets the security criteria defined in the Security Target , which specifies EAL2 + ( Learn More about Attivo Networks and deception technology from AFCEA West 2017 . Courtesy of Attivo Networks and YouTube )
Attivo Networks ThreatMatrix Platform Achieves Common Criteria EAL2 + Certification
The ThreatMatrix Platform , which is comprised of Attivo BOTsink engagement servers , decoys , and deceptions , a Multi-Correlation Detection Engine ( MCDE ), the ThreatStrike end-point deception suite , and the Attivo Central Manager ( ACM ), has earned Common Criteria Evaluation Assurance Level 2 + ( EAL2 +) certification , according to Norwegian CCRA member SERTIT .
Common Criteria is an internationally recognized standard which defines a framework for evaluating the security of IT products .
US government organizations , international government entities from 27 different countries , and many global Fortune 500 corporations require Common Criteria certification to aid in the evaluation of IT products for their infrastructures and often require contractors to uphold the standard as well .
The certification requires developer testing , vulnerability analysis , product lifecycle management
Tushar Kothari , CEO of Attivo Networks
“ We are extremely pleased that the Attivo deception platform has received this critical certification because it provides validation to both corporate and government agency prospects that the solution has stood up against extremely stringent testing ,” says Tushar Kothari , CEO of Attivo Networks .
“ Attivo is the only company in this category to receive this certification , right when the need for detection technology is greater than ever and attackers continue to relentlessly demonstrate their ability to breach traditional security systems .”
“ We are pleased to have the opportunity to work with the emerging technologies offered by Attivo Networks to perform Common Criteria evaluation and FIPS 140-2 testing of the Attivo Networks ’ products ,” said Eugene Polulyakh , General Manager at Advanced Data Security accredited FIPS and Common Criteria testing laboratory located in San Jose , California .
26