atsec at the 22nd Annual Computer Security Applications Conference

    /24-7PressRelease/ - November 03, 2006 - For the second year running, atsec is proud to be the platinum sponsor of the annual ACSAC conference, the international conference focusing on technical topics from the IT Security world. The ACSAC will be held in Miami Beach, Florida from December 11th to 15th.

atsec is pleased to sponsor the conference as a tribute to the important and active role this conference has played in the IT Security community for the last three decades. atsec will sponsor several conference events, as well as maintaining a booth to share information about atsec's IT security consulting and evaluation services.

One aspect of atsec's extensive range of evaluation services is the company's cryptographic module testing lab, which is accredited to perform conformance testing against Federal Information Processing Standard (FIPS) 140-2 and FIPS 201. FIPS 140-2 testing assures that a cryptographic module has been designed and implemented to meet strong security requirements. According to Cryptographic Module Validation Program (CMVP) statistics, nearly half of all cryptographic modules and more than one quarter of all cryptographic algorithms tested were found to be flawed in either design or implementation. FIPS 201 testing verifies conformance of Personal Identity Verification (PIV) smart card applications and middleware to the requirements of Homeland Security Presidential Directive (HSPD) 12. Verification under both programs makes a product eligible for sales to federal agencies.

"As a leader in the business of standards-based IT security testing and evaluation, atsec is extremely pleased to have successfully completed the rigorous accreditation process to become a CMTL," said Fiona Pattinson, atsec laboratory manager. "Our designation as a lab for both FIPS 140-2 and FIPS 201 testing, combined with our accreditation to evaluate products against the Common Criteria (ISO/IEC 15048) to two different national schemes (through U.S. NIAP CCEVS and German BSI), enable atsec to offer a very full range of testing and evaluation services in the IT security sector."

More information on ACSAC:
http://www.acsac.org

More information on FIPS 140-2:
http://www.atsec.com/01/cryptographic-module-fips-140-2-faq.html

About atsec information security
atsec information security is an independent, standards-based IT (information technology) security consulting and evaluation services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. atsec was founded in Munich (Germany) in January 2000 and has extensive international operations with offices in the US, Sweden, the UK, and China. atsec leverages its deep security, process, and standards expertise to consult on a wide range of IT security needs, enabling clients to establish integrated security management procedures in order to manage security risk and improve data, product, and business process reliability. atsec works with leading global companies such as IBM, HP, Oracle, Cray, BMW, SGI, Vodafone, Swisscom, RWE, and Wincor-Nixdorf. For more information please visit http://www.atsec.com.

# # #