Sendmail Sentrion Achieves NIST In-Process Status for Stringent FIPS 140-2 Government Security Certification

Las Vegas, NV and Fairfax, VA, October 13, 2011 — Sendmail, Inc., the leading provider of message processing appliances and applications for enterprise messaging infrastructures, today announced that their flagship Sendmail Sentrion product line has been placed on the Modules-In Process List for the Federal Information Processing Standards Publications (FIPS) 140-2 Validation: Security Requirements for Cryptographic Modules. The FIPS 140-2 validation is a requirement for any cryptographic product that will be used in a U.S. government agency network and is a reinforcement of Sendmail’s ongoing commitment to providing reliable and secure solutions to its federal customers.

“Government and commercial organizations alike are seeking assurance that their data is protected, and FIPS 140-2 certification will give our customers an extra level of confidence that our products meet the most demanding scrutiny,” said Jim Seaman, vice president, Federal, Sendmail. “Sendmail remains committed to ensuring that our Sentrion products are in compliance with all important security standards and methodology.”

The FIPS standard, which is mandated by law in the U.S. and strictly enforced in Canada, was the main input document for developing ISO/IEC 19790, which specifies the security requirements for a cryptographic module utilized within a security system protecting sensitive information in computer and telecommunication systems. FIPS 140-2 is also gaining worldwide recognition as an important benchmark for third party validations of encryption products of all kinds. FIPS 140-2 validation of the Sendmail Sentrion Integrated Crypto Engine will provide users with a high degree of security, assurance and dependability.

The FIPS 140-2 standard is a joint effort by the National Institute of Standards and Technology (NIST) in the United States, and the Canadian government’s Communications Security Establishment (CSEC). The FIPS 140-2 validation process provides stringent third-party assurance of security claims made for any product containing cryptography that may be purchased by a government agency. The Cryptographic Module Validation Program (CMVP), headed by NIST, provides module and algorithm testing for FIPS 140-2, which applies to Federal agencies using validated cryptographic modules to protect sensitive government data in computer and telecommunication systems.

In order to expedite the FIPS 140-2 validation process, Sendmail partnered with Corsec Security, Inc., a consulting firm with over 13 years of validation experience.

“Sendmail’s achievement of the Sentrion FIPS 140-2 In-Process listing emphasizes the company’s commitment of delivering third-party assurance to their customers,” said Matthew Appler, CEO of Corsec Security. “Corsec is proud to work with such a dedicated team and we look forward to completing the validation process in the coming months.”

Sendmail Sentrion Message Processors are high performance messaging appliances, servers and applications for government agencies and large enterprises that run on the Sentrion Message Processing Platform for enterprise messaging infrastructure and provide solutions for:

• Email messaging backbone infrastructure
• Border protection and gateway management
• Inbound message filtering
• Outbound data loss protection
• Internal policy and routing
• Cloud email and more

About Sendmail, Inc.
Sendmail provides a message processing platform consisting of appliances, applications and services, architected to enable enterprises to modernize messaging infrastructure with an intelligent email backbone for policy-based message routing and managing system generated communications between groupware systems, deployed on-premise or in the cloud, and the Internet. Since 1982, thousands of enterprises around the world have relied on Sendmail open source and the award winning Sentrion hard and virtual appliances, with optional plug-in messaging applications from the Sentrion Application Store for gateway management, inbound threat protection, outbound data leak security, full message content scanning for regulatory compliance, and critical customer communications. Sendmail is headquartered in Emeryville, CA with sales and support offices throughout the Americas, Europe, and Asia.

For more information call 1-87-SENDMAIL or email info@sendmail.com.

The Sendmail Blog: www.sendmail.com/sm/blog/wik/

Follow @Sendmail on Twitter.

© Sendmail, Inc. 1998-2012. All rights reserved.

About Corsec Security, Inc.
Corsec Security, Inc. specializes in helping companies navigate through the complex process of receiving FIPS 140-2 and Common Criteria (CC) certifications. Corsec’s consulting, document creation, and project management services deliver unmatched expertise in achieving government validation efforts at a firm, fixed price. Corsec partners with companies around the world to achieve local and international certification and to add security functionality to a wide range of products. Corsec minimizes the time, effort and money a vendor needs to invest in validation while ultimately maximizing the return on that investment. For further information, please visit www.corsec.com and follow us @CorsecSecurity.