CONTACT US
forrester wave report 2023

Close your ransomware case with Open NDR

SEE HOW

Download our free guide to find hidden attackers.

Find hidden attackers with Open NDR

SEE HOW

cloud-network

Corelight announces cloud enrichment for AWS, GCP, and Azure

READ MORE

corelight partner programe guide

Corelight's partner program

VIEW PROGRAM

glossary-icon

10 Considerations for Implementing an XDR Strategy

READ NOW

ad-images-nav_0006_Blog

Don't trust. Verify with evidence

READ BLOG

video

The Power of Open-Source Tools for Network Detection and Response

WATCH THE WEBCAST

ad-nav-ESG

The Evolving Role of NDR

DOWNLOAD THE REPORT

ad-images-nav_0006_Blog

Detecting 5 Current APTs without heavy lifting

READ BLOG

g2-medal-best-support-spring-2024

Network Detection and Response

SUPPORT OVERVIEW

 

Corelight Complies with FIPS 140-2 Across Full Portfolio of Network Sensors

Corelight Helps Public Sector Organizations and Institutions to defend themselves against attackers by providing complete network visibility: the ‘right data at the right time.’

San Francisco, Calif. — July 23, 2018 — Corelight, providers of the most powerful network visibility solution for cybersecurity, today announced its products have achieved compliance with the Federal Information Processing Standard 140-2 (FIPS 140-2) security certification from the National Institute of Standards and Technology (NIST).

FIPS 140-2 is a computer security standard that specifies the requirements for cryptographic modules—including both hardware and software components— used within a security system to protect sensitive, but unclassified information. This certification ensures that organizations deploying Corelight Sensors can trust that their data is protected, whether at rest or in transit.

“FIPS compliance is an expression of our company’s unwavering commitment to supporting federal agencies and missions,” said Greg Bell, CEO of Corelight. “Corelight understands mission organizations because we are one, with many team members coming from the federal environment. Further, this compliance demonstrates our ongoing commitment to delivering highly secure technology that greatly accelerates the work of incident response, threat hunting, and forensics”

Corelight complies with FIPS 140-2 for its full portfolio of network sensors including:

Corelight was founded by Dr. Vern Paxson (a Professor of Computer Science at UC Berkeley and Chief Scientist at Corelight), Robin Sommer (CTO) and Seth Hall (Chief Evangelist) to deliver network visibility solutions for cybersecurity built on an open source framework called Bro. Paxson began developing Bro in 1995 when he was working at Lawrence Berkeley National Laboratory (LBNL); the name refers to George Orwell’s “Big Brother” as it signals the need for operators of network monitoring to remain mindful of their users’ rights and privacy.

Corelight Sensors also offer features and support designed for public sector organizations, including:

  • Streaming data export, including direct integration with Splunk, Elasticsearch, Kafka and more
  • Partnerships with resellers under preferred government contracts and schedules including:
    • GSA
    • NASA SEWP
    • DHS Eagle
    • CHESS
  • Support for air-gapped environments
  • Traffic shunting for high volume traffic analysis
  • Restful API for flexible integration
  • Optimized file extraction
  • Highly flexible log export and filtering options

FIPS 140-2 validation is required by U.S. law when information systems use cryptography to protect sensitive government information. In order to achieve FIPS 140-2 certification, cryptographic modules are subject to rigorous testing by independent Cryptographic and Security Testing Laboratories, accredited by NIST. The validation for Corelight’s implementation of cryptographic modules (certifications 2398 and 2657) was performed by Acumen Security, an end-to-end security certification solutions provider in Rockville, MD.

About Corelight
Corelight delivers the most powerful network visibility solutions for information security professionals, helping them understand network traffic and defend their organizations more effectively. Corelight solutions are built on the Zeek framework (formerly known as “Bro”), the powerful and widely-used open source network analysis framework that generates actionable, real-time data for thousands of security teams worldwide. Zeek data has become the ‘gold standard’ for incident response, threat hunting, and forensics in large enterprises and government agencies worldwide. Corelight makes a family of network sensors — both physical and virtual, at every scale — that take the pain out of deploying Zeek by adding integrations and capabilities large organizations need. The Zeek project was initially developed at Lawrence Berkeley National Laboratory (LBNL), and has been supported by the US Department of Energy (DOE), the National Science Foundation (NSF), and the International Computer Science Institute (ICSI). Corelight is based in San Francisco, Calif. For more information, visit Corelight.com or follow @corelight_inc.

Recent Posts