VMware is proud to announce that its on-premises VMware Carbon Black Endpoint Detection and Response (EDR) product has received Common Criteria certification, an internationally recognized security certification required by the U.S. and other governments across the world seeking to procure commercial technology products. With this certification, VMware Carbon Black EDR Server 7.5 is approved by the National Information Assurance Partnership (NIAP) for use in U.S. National Security Systems and has been added to the publicly available NIAP Product Compliant List.
“This Common Criteria certification reinforces VMware’s commitment to delivering simpler, faster and smarter security,” said Scott Lundgren, chief technology officer of VMware’s Security Business Unit. “We are proud to offer an EDR solution that meets the demanding requirements for government agencies needing to secure mission-critical IT infrastructure.”
VMware Carbon Black EDR Server 7.5 now meets an essential requirement under the NIST Special Publication 800-53, a set of security and privacy controls for federal information systems and organizations to ensure compliance with the Federal Information Security Management Act (FISMA). Instead of relying on non-accredited solutions, U.S. government agencies can now implement trustworthy solutions, such as VMware’s, for management and detection of threats in sensitive government environments. This also helps enable any systems that touch sensitive information have appropriate measures in place to keep that data more secure.
About Common Criteria
A Common Criteria evaluation allows an objective evaluation to validate that a particular product satisfies a defined set of security functional and assurance requirements. Common Criteria compliance is supported with VMware Carbon Black EDR Server 7.5 and VMware Carbon Black EDR Windows Sensor 7.2, under the Protection Profile for Application Software Version 1.3 conformance claim.
The evaluation was performed by Booz Allen Hamilton’s Common Criteria Testing Laboratory (CCTL). Booz Allen is one of only seven Common Criteria Testing Laboratories approved under the NIAP that meet U.S. Common Criteria Evaluation and Validation Scheme (CCEVS) requirements to conduct IT security evaluations for conformance to the Common Criteria for Information Technology Security Evaluation, International Standard ISO/IEC 15408.
About VMware Carbon Black EDR Server 7.5
VMware Carbon Black EDR Server 7.5 is an incident response and threat hunting solution designed for security operations center (SOC) teams with on-premises requirements. The solution continuously records and stores comprehensive endpoint activity data, so that security professionals can hunt threats in real time and visualize the complete attack kill chain. It leverages VMware Carbon Black Cloud’s aggregated threat intelligence, which is applied to the endpoint activity system of record for evidence and detection of these identified threats and patterns of behavior.
VMware Carbon Black EDR Server 7.5 enforces multiple security policies including cryptographic support, user data protection, security management, privacy around PII, and trusted path/channels. The solution provides full detail of all processes and binaries on each endpoint to help identify potential risk, often before a risk is known. Substitution of known binaries with unknown, fileless malware and abuse of trusted processes that download and install Command and Control beacons are identified by the EDR solution, alerting security teams to the risk for proactive action.
For more information about VMware Carbon Black solutions, schedule a demo today.
This article may contain hyperlinks to non-VMware websites that are created and maintained by third parties who are solely responsible for the content on such websites.