When shopping for a cybersecurity solution, organizations often face the dilemma of too many choices. There are several dozen solutions in the marketplace, all of which claim to solve advanced cybersecurity needs. A certification that a particular solution lives up to its marketing can be a huge asset and can help have both time and money during the selection process. The National Information Assurance Partnership (NIAP) certification is particularly useful.
The NIAP program originally began as a collaboration between the U.S. National Institute of Standards and Technology (NIST) and the National Security Agency (NSA). NIAP’s mandate is to provide neutral third-party security testing of cybersecurity products being considered for use in both the private and public sectors. Currently, the NIAP program falls completely under the jurisdiction of the NSA, which uses trusted third-party labs to evaluate the software. NIAP certification has several different categories and is designed to determine if a product meets the requirements of the Common Criteria (CC), a strict international standard for cybersecurity that is recognized in 30 different countries. Any product that passes the initial validation by the third-party lab is placed on the In-Evaluation list before being labeled as NIAP certified.
Not Just For Government
Since NIAP certification is awarded by the NSA, one might assume that it is primarily designed to help in the procurement processes of government agencies. In fact, while NIAP certification does demonstrate the suitability of a product for use on government systems, that is not its only use. Many private sector organizations are also required to meet these Criteria for regulatory, contractual or other purposes. Other private organizations simply appreciate the high cybersecurity standards associated with the Criteria. As the number of employees working remotely increases in nearly all industries, so do the number of cyber attacks. The availability of robust, portable security solution is paramount, but in order to be widely accessible to private sector enterprises, it must also be affordable and easy to use.
Securing The Global Workforce
Attila Security developed GoSilent in order to make world-class security accessible for any user, even non-technical users and those working in untrusted environments. GoSilent bundles a Virtual Private Network (VPN) gateway and a Layer 7 stateful firewall into a single appliance that can be easily operated by an end user. Most similar solutions are complex software-based systems that require installation and configuration by the user before use. Any mistakes in doing so could cause sensitive data to be leaked or render the user’s security defenses useless. Other solutions are large, bulky hardware-based systems that are inconvenient to use and impossible to use in the case of travel. GoSilent is a hardware appliance, about the size of a Tic Tac box, that a user simply connects to before connecting to a WiFi network. Once the user is connected, GoSilent silently and seamlessly secures their connection using a state-of-the-art VPN and firewall.
In addition to its unique form factor and level of usability, GoSilent stands out as the first appliance of its kind to achieve in-evaluation status with NIAP. The GoSilent Client and GoSilent Virtual Server are currently included in the NIAP Products In-Evaluation List for two protection profiles: Stateful Firewall and VPN Gateway. This demonstrates that, in the opinion of a neutral third-party testing laboratory, GoSilent meets all of the requirements of the Common Criteria for these two categories.
Designed for portability and ease of use, GoSilent is a NIAP-listed security solution – demonstrating that organizations don’t need to sacrifice security for usability. GoSilent technology is currently installed at governments and enterprises across the globe, providing visibility, control and threat defense across physical, virtual and cloud applications. Learn more about Attila’s next-generation technology.