The crypto validation community really needed this opportunity to meet, network and drive conversations about how we can improve. I’m excited to be part of the discussion!
Palo Alto, CA (PRWEB) September 24, 2013
SafeLogic is proud to announce that Ray Potter, CEO and co-founder, will speak at the first ever International Cryptographic Module Conference (ICMC) in Gaithersburg, Maryland. The event kicks off on September 24, 2013 and boasts a three-day agenda.
The ICMC was established by a Program Committee of industry veterans in collaboration with the National Institute of Standards and Technology (NIST). Their goal was to create a community summit, for experts to meet and confer on the topic of cryptographic modules with emphasis on their secure design, implementation, assurance, and use, referencing both new and established standards such as FIPS 140-2 and ISO/IEC 19790.
“The crypto validation community really needed this opportunity to meet, network and drive conversations about how we can improve,” said Ray Potter. “I’m excited to be part of the discussion!”
Potter’s presentation is titled “FIPS and FUD” and explores the effect of vendor claims that mislead or confuse end users. The pervasive nature of “Fear, Uncertainty and Doubt” (FUD) plagues the industry landscape when clear distinctions are not understood or respected. The session will be held on Wednesday, September 25, 2013 at 5:00 PM local time.
As part of the talk, Potter will address why some vendors use FIPS-approved algorithms, and believe that they can claim compliance as a result, while other vendors pursue full FIPS validation for their cryptographic modules. Even with the establishment of the Cryptographic Module Validation Program (CMVP), questions linger. The CMVP, developed by NIST in association with their Canadian counterpart, CSEC, was developed to provide buyers with confidence that the modules they are purchasing and using meet the standards of FIPS 140. But what are the distinctions between compliant, verified, and validated? What are the implications of the use of these terms by vendors? What about for end users? What can be done to reduce this confusion? Potter’s talk will tackle these issues and shed light on the realities of FIPS 140-2.
SafeLogic is a proud sponsor of the first ever International Cryptographic Module Conference and will be providing attendee bags to all participants. Ray Potter and co-founder Wesley Higaki will be on-site during the conference to answer questions and provide more insight into FIPS 140-2 and SafeLogic solutions.
SafeLogic provides the industry’s most comprehensive set of software and services to minimize time and complexity of achieving FIPS 140 validation. SafeLogic was spun out from Apex Assurance Group, which has provided FIPS 140 consulting services to top companies for over eight years. Leveraging that experience, SafeLogic has built cryptographic modules that are easy to integrate, reduce time to compliance, have consistent APIs across multiple environments, and meet strict compliance requirements (including FIPS 140-2 and Suite B). SafeLogic’s customers include Symantec, Rockwell Collins, and Juniper among a growing list of the most influential and innovative companies in technology.
SafeLogic is privately held and is headquartered in Palo Alto, CA.
# # #