Industry’s most-widely deployed virtualization solution achieves highest-level security certification.
VMware, Inc. , the global leader in virtualization and cloud infrastructure, today announced that VMware vSphere 4.0 and VMware vCenter™ Server 4.0 achieved Common Criteria certification at Evaluation Assurance Level 4 (EAL4+) under the Common Criteria Evaluation and Certification Scheme (CCS). Common Criteria is an international set of guidelines (ISO 15408) that provides a common framework for evaluating security features and capabilities of Information Technology (IT) security products, and EAL4+ is the highest assurance level that is recognized globally by all signatories under the Common Criteria Recognition Agreement (CCRA).
“VMware is committed to serving our U.S. federal government customers’ unique requirements by delivering peace of mind to organizations leveraging virtualization as the foundation for cloud computing, or as the key enabler for server or data center consolidation, telework and Continuity of Operations (COOP) initiatives,” said Aileen Black, vice president public sector, VMware.
As virtualization occupies an increasingly central position within the U.S. federal government’s IT strategy as the cornerstone of modern infrastructures and the foundation for cloud computing, VMware vSphere enables organizations to achieve the benefits of cloud computing while maintaining the security, control and efficiency they require. Achieving EAL4+ certification marks the completion of an intensive effort during which VMware vSphere 4.0 and VMware vCenter Server 4.0 were examined, tested and certified at EAL4+, validating that VMware vSphere is one of the most proven, trusted platforms for modern IT infrastructure.
“VMware has demonstrated a strategic, long-term commitment to the quality of its product development and quality assurance processes,” said Erin Connor, lab director at EWA-Canada. “VMware continues to set the standard for virtualization, and its rigorous efforts ensure that customers can have confidence in the performance and security of their most demanding, mission-critical applications.”
To facilitate the prompt completion of the Common Criteria certification, VMware worked with Corsec Security, Inc., a consulting firm with more than 10 years of validation experience.
"Corsec is delighted to have been able to work with VMware on their latest EAL4+ Common Criteria evaluation," said John Morris, president of Corsec. "This evaluation demonstrates VMware’s consistent commitment to providing its customers proven security products with industry-leading levels of information assurance".
VMware completed the first Common Criteria certification for a virtualization product on x86 hardware in March 2006 with the Common Criteria certification of VMware ESX® Server 2.5 and VMware VirtualCenter 1.2. To date, VMware ESX 3.5, VMware VirtualCenter 2.5, VMware Infrastructure 3, VMware ESX Server 3.0.2 and VMware VirtualCenter™ 2.0.2 have also earned certification at EAL4+ level. VMware most recently entered vSphere 4.1 into evaluation for certification at EAL4+.
For more information on VMware’s Common Criteria EAL4+ Certification visit: www.vmware.com/security/certifications