Important News:SafeLogic's CryptoComply Achieves FIPS 140-3 Validation for 28 OEs and Receives Certificate #4781! Read the blog post!
The SafeLogic Blog
2018 - Proud Moments and a Look Ahead
January 9, 2019 •Ray Potter
At the halfway mark of 2018, I sent an email update to our customers and partners, sharing some of our points of pride. It feels right to post the end-of-year news here on the blog.
In July, I noted that our RapidCerts represented more than 10% of all FIPS 140-2 validations completed year-to-date. I’m proud to tell you that we maintained that pace the rest of the way! We’re particularly excited about our dominant performance with our core product family, CryptoComply. Software Level 1 is the most common validation and while we have solutions and strategies to help simplify other CAVP and CMVP efforts, this is definitely our bread-and-butter... and SafeLogic produced nearly 25% of the total Software Level 1 certs completed in 2018. Awesome!
Common Criteria continued to be an area of focus for our customers, benefiting from our expertise in CAVP algorithm testing, but FedRAMP is quickly becoming the most popular future goal for our clients. Cloud has become dominant in the consumer and enterprise spaces, and now federal CIOs have embraced the Cloud as well. It feels like we’ve gotten over the hump and enough agencies have deployed Cloud solutions to evaporate any lingering stigma. Possibly just as important, the FedRAMP program continues to evolve, working to fulfill the needs of the procurement officers and streamlining acquisition efforts. By engaging with SafeLogic to complete FIPS 140-2 validation quickly and easily, our clients are enjoying an easier road to FedRAMP ATO, advancing in parallel and jumping into the competitive landscape with the same products that are cutting edge in the private sector, a major win for both the vendor and the government! Stay tuned on this topic, we’ll have more FedRAMP-focused news soon.
Our trophy shelf continues to fill up, a nice way to gauge how the media and independent judges view our innovations.
In the first half of 2018, we picked up three awards:
- - CV Magazine’s Technology Innovator Awards – Encryption Product Provider of the Year
- - Cybersecurity Excellence Awards – Gold medal in the Encryption category
- - Cyber Defense Magazine’s InfoSec Awards – Encryption Leader
And even better, we received five more in the second half:
- - Bronze Softshell Award
- - ACQ5 Global Awards – Niche Technology Company of the Year (Encryption)
- - American Security Today’s ASTORS Homeland Security Awards – Platinum medal for Encryption Solution
- - US Business News Technology Elite Awards – Encryption Company of the Year AND Best Compliance Encryption Solution
Around the industry, Australia has advanced legislation that has all of us scratching our heads. We’re looking forward to discussing the implications for export licenses and other filter-down effects with folks at the 2019 International Cryptographic Module Conference, being held on the west coast for the first time this May. We will be sponsoring, of course, as we have since the inception of the conference. We will also be at AFCEA WEST in San Diego and the RSA Conference in San Francisco (I’m still lobbying to relocate it), so if you want to meet in-person, don’t hesitate to reach out!
Last, but certainly not least, the federal shutdown continues as I write this. Operations at NIST have been suspended, including CMVP and CAVP, creating delays and backlog for FIPS 140-2 validations. The good news is that the Canadian contingent continues to work. Based on past shutdowns, Our RapidCerts seem to float to the top of the stack during the suspension and they get posted very quickly once everyone is back in the office. So do not despair if you are currently in process, we’ll have you taken care of as soon as possible.
Considering taking the plunge? Now is the perfect time to get your ducks in a row to enter the public sector - everyone else is sitting on their hands waiting for the shutdown to end, but you can make a lot of progress on the strategy and preparation side right now.
Here’s to a big 2019!
Ray Potter
Ray Potter is the Founder of SafeLogic, which was spun off from his previous venture, the Apex Assurance Group consulting firm. He brings over 20 years of security and compliance experience, including leading teams at Cisco and Ernst & Young, to the operations team at SafeLogic. Ray loves playing guitar and flying airplanes.
Popular Posts
Search for posts
Tags
- FIPS 140 (111)
- FIPS validation (85)
- Encryption (70)
- cryptography (68)
- NIST (62)
- CryptoComply (60)
- SafeLogic (58)
- Industry News (54)
- cryptographic module (51)
- Conversations (49)
- CMVP (48)
- RapidCert (46)
- compliance (41)
- Ray Potter (33)
- SafeLogic News (33)
- Event (27)
- federal (27)
- CAVP (23)
- Cybersecurity (23)
- FIPS 140-3 (18)
- OpenSSL (16)
- government (14)
- FedRAMP (13)
- CryptoCompact (12)
- Cryptology (12)
- DoD (12)
- RSA (12)
- healthcare (12)
- partners (12)
- NSA (11)
- post-quantum cryptography (11)
- Cloud (9)
- PQC (9)
- security (9)
- CMMC (8)
- Suite B (8)
- testing (8)
- whitepaper (8)
- Approved Products List (APL) (6)
- HITECH (6)
- ICMC (6)
- lab (6)
- CEO (5)
- NIST 800-171 (5)
- NIST 800-53 (5)
- OpenSSL 3.0 (5)
- iOS (5)
- procurement (5)
- C3PAO (4)
- Common Criteria (4)
- HITECH Act (4)
- deadline (4)
- encrypt (4)
- innovation (4)
- procure (4)
- public sector (4)
- Air Force (3)
- BSAFE (3)
- DFARS (3)
- HIPAA Safe Harbor (3)
- HITECH Safe Harbor (3)
- OpenSSL 1.1.1 (3)
- OpenSSL 3.x (3)
- POA&M (3)
- TLS 1.3 (3)
- magazine (3)
- queue (3)
- transition (3)
- 3PAO (2)
- ACVP (2)
- BAA (2)
- CIO (2)
- CSP (2)
- Cyber Defense Magazine (2)
- Defense Industrial Base (2)
- HIPAA security controls (2)
- Historical Status (2)
- MFA (2)
- OpenSSL 1.0.2 (2)
- SPRS (2)
- StateRAMP (2)
- entropy (2)
- excellence (2)
- finance (2)
- founder (2)
- gold (2)
- leader (2)
- maturity (2)
- overlap (2)
- pilot (2)
- rsa conference (2)
- solution (2)
- sponsors (2)
- sunset (2)
- vendor (2)
- year (2)
- Active Status (1)
- Alliance for Digital Innovation (1)
- Android (1)
- CIO Prime Views (1)
- DHS (1)
- DIU (1)
- DIUx (1)
- DOJ (1)
- DoDIN APL (1)
- Entropy Source Validation (1)
- FCA (1)
- FIPS Compliance (1)
- FISMA (1)
- GSA (1)
- HITRUST (1)
- Matt Cornelius (1)
- Matthew Cornelius (1)
- Maturity Model (1)
- NCCoE (1)
- OMB (1)
- SLED (1)
- SP800-131A (1)
- SP800-90A (1)
- TLS 1.1 (1)
- background (1)
- best (1)
- co-founder (1)
- codies (1)
- congress (1)
- cybertech (1)
- education (1)
- elliptic curve cryptography (1)
- extended (1)
- faq (1)
- fintech (1)
- fiscal (1)
- fiscal year (1)
- fraud (1)
- globee (1)
- hill (1)
- interview (1)
- kratos (1)
- libgcrypt (1)
- national cybersecurity strategy (1)
- opportunities (1)
- parallel (1)
- profile (1)
- public (1)
- representatives (1)
- reseller (1)
- senate (1)
- senators (1)
- simplify (1)
- state (1)
- stealth mode (1)
- story (1)
- terminology (1)
- trophy (1)
- whistleblower (1)
- whistleblowing (1)