Data At Rest Encryption Solutions » Print » Four Year old Certifications. McAfee claims FIPS compliance when they in fact have NONE that are relevant.

Four Year old Certifications. McAfee claims FIPS compliance when they in fact have NONE that are relevant.

Posted By Bryan Glancey On 22. September 2009 @ 10:09 In Blogroll, Uncategorized | 1 Comment

Here comes my soapbox again. It’s always a joke to me how some so-called ‘Security’ companies can have a total lack for Certification for their Cryptography and call themselves security companies. It’s like saying your grandma is a jet fighter pilot because she saw you playing flight simulator. It’s an embarrassment.

What about ePO, or HBSS, McAfee’s be all - end all managment console that communicates to all the clients. ZERO certifications, ZIP, Zilch, Nada. What about certifications that cover anything above Windows XP, nope.

Do you know McAfee has NEVER done a certification for FIPS on it’s own? Only through acquisition of SafeBoot do they have ANY certifications. What a joke!

Just so no one says that I’m talkign out of school, here is a copy of all of McAfee’s certifications form the NIST website at [1] www.nist.gov/cmvp

McAfee, Inc.

[2] 279 - McAfee Endpoint Encryption for PCs Client (formerly SafeBoot Client)

[3] 506 - McAfee Endpoint Encryption for PCs Client (formerly SafeBoot Client)

It’s always funny to me how people can spend MIllions of dollars on marketing, but not spend on building a quality product

Article printed from Data At Rest Encryption Solutions: http://data-at-rest.com

URL to article: http://data-at-rest.com/2009/09/22/four-year-old-certifications-mcafee-claims-fips-compliance-when-they-in-fact-have-none-that-are-relevant/

URLs in this post:
[1] www.nist.gov/cmvp: http://www.nist.gov/cmvp
[2] 279: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2002.htm#279
[3] 506: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2005.htm#506

Click here to print.