Report a security vulnerability
July 23, 2018 by Kylie Heintz
Corelight Helps Public Sector Organizations and Institutions to defend themselves against attackers by providing complete network visibility: the ‘right data at the right time.’
San Francisco, Calif. — July 23, 2018 — Corelight, providers of the most powerful network visibility solution for cybersecurity, today announced its products have achieved compliance with the Federal Information Processing Standard 140-2 (FIPS 140-2) security certification from the National Institute of Standards and Technology (NIST).
FIPS 140-2 is a computer security standard that specifies the requirements for cryptographic modules—including both hardware and software components— used within a security system to protect sensitive, but unclassified information. This certification ensures that organizations deploying Corelight Sensors can trust that their data is protected, whether at rest or in transit.
“FIPS compliance is an expression of our company’s unwavering commitment to supporting federal agencies and missions,” said Greg Bell, CEO of Corelight. “Corelight understands mission organizations because we are one, with many team members coming from the federal environment. Further, this compliance demonstrates our ongoing commitment to delivering highly secure technology that greatly accelerates the work of incident response, threat hunting, and forensics”
Corelight complies with FIPS 140-2 for its full portfolio of network sensors including:
Corelight was founded by Dr. Vern Paxson (a Professor of Computer Science at UC Berkeley and Chief Scientist at Corelight), Robin Sommer (CTO) and Seth Hall (Chief Evangelist) to deliver network visibility solutions for cybersecurity built on an open source framework called Bro. Paxson began developing Bro in 1995 when he was working at Lawrence Berkeley National Laboratory (LBNL); the name refers to George Orwell’s “Big Brother” as it signals the need for operators of network monitoring to remain mindful of their users’ rights and privacy.
Corelight Sensors also offer features and support designed for public sector organizations, including:
FIPS 140-2 validation is required by U.S. law when information systems use cryptography to protect sensitive government information. In order to achieve FIPS 140-2 certification, cryptographic modules are subject to rigorous testing by independent Cryptographic and Security Testing Laboratories, accredited by NIST. The validation for Corelight’s implementation of cryptographic modules (certifications 2398 and 2657) was performed by Acumen Security, an end-to-end security certification solutions provider in Rockville, MD.
Corelight delivers the most powerful network visibility solutions for information security professionals, helping them understand network traffic and defend their organizations more effectively. Corelight solutions are built on the Zeek framework (formerly known as “Bro”), the powerful and widely-used open source network analysis framework that generates actionable, real-time data for thousands of security teams worldwide. Zeek data has become the ‘gold standard’ for incident response, threat hunting, and forensics in large enterprises and government agencies worldwide. Corelight makes a family of network sensors — both physical and virtual, at every scale — that take the pain out of deploying Zeek by adding integrations and capabilities large organizations need. The Zeek project was initially developed at Lawrence Berkeley National Laboratory (LBNL), and has been supported by the US Department of Energy (DOE), the National Science Foundation (NSF), and the International Computer Science Institute (ICSI). Corelight is based in San Francisco, Calif. For more information, visit Corelight.com or follow @corelight_inc.