Company  \  Certifications

Lumension is dedicated to developing and delivering state-of-the-art endpoint management and security solutions which meet the exacting requirements of our customers and standards bodies around the world. Below are some of the certifications we have obtained for the Lumension® Endpoint Management and Security Suite and its product modules.


FIPS 140-2 Level 2

The US National Institute of Standards and Technology (NIST), acting for the Department of Commerce and in concert with the Communications Security Establishment Canada (CSEC), issues FIPS 140-2 (entitled "Security Requirements for Cryptographic Modules.") validations based on product evaluations conducted by independent, NVLAP-accredited Cryptographic and Security Testing (CST) laboratories. The FIPS 140-2 standard defines four levels of security (1 thru 4); most validated software-based encryption modules meet Level 1 requirements, although a few attain Level 2 accreditation, which includes additional requirements such as role-based access control. The Lumension® Cryptographic Kernel (LCK), which provides the core ciphering capabilities of Lumension® Device Control, has been FIPS 140-2 Level 2 validated (certificate no. 1567). Read the press release here, or see the Lumension® Cryptographic Kernel Validation Certificate and the FIPS 140-2 validation listing. For more information about this accreditation, please see FIPS 140-2 Validated Encryption.


Security Content Automation Protocol

The Security Content Automation Protocol (SCAP) is a repository of security content used for automating technical control compliance activities, vulnerability checking of both application mis-configurations and software flaws, and security measurement. It is sponsored by the National Institute of Standards and Technology (NIST), and is key to validating compliance with Federal Desktop Core Configuration (FDCC) requirements. Lumension® Security Configuration Management is a validated FDCC scanner, able to audit and assess target systems to determine their compliance with FDCC requirements. To learn more about how Lumension helps organizations meet SCAP and FDCC requirements, please see the Lumension SCAP page and the Lumension FDCC page. For more background information, please see the NIST SCAP page and the NIST FDCC page.


Citrix Ready™

Both Lumension® Application Control and Lumension® Device Control are certified as Citrix Ready™ for both Citrix XenApp™ and Citrix XenDesktop™. This allows organizations using Citrix® virtual computing technologies to control user access by device class, to enforce the use of encrypted devices, and to prevent mapping workarounds. This is particularly useful in protecting data on endpoints, especially on unmanaged endpoints like remote users home PCs, Macs, etc. For more information, please see the Citrix Ready™ partner page, the Citrix Ready™ Lumension® Application Control page, and/or the Citrix Ready™ Lumension® Device Control page.


Climate Savers Computing Initiative℠

Lumension, as a Climate Savers Computing Initiative℠ member company, joins the efforts of this nonprofit group of eco-conscious consumers, businesses and conservation organizations focused on promoting the development, deployment and adoption of smart technologies that can both improve the efficiency of a computer’s power delivery and reduce the energy consumed when the computer is in an inactive state. The Lumension® Power Management solution may be found in the product catalog of the CSCI℠ project and helps organizations centrally enforce energy efficiency policies – which save energy costs while fighting climate change, without sacrificing productivity or security.


Certified Power Management

The Lumension® Power Management solution has been tested by The Tolly Group, which found that implementing the endpoint power management software could result in an annual savings of $36,000 for an enterprise with 1,000 end-point systems, with an average savings of 266 kWh of energy per typical desktop. To learn more, see Enterprise Energy Savings with Lumension® Endpoint Management and Security Suite. The Lumension® Power Management solution is a well established industry offering, being listed in the EPA Energy Star Power Management Software Program, the Manitoba Hydro Commercial Network Energy Management Program, and the Pacific Gas & Electric (PG&E) Network Desktop Computer Power Management Software Vendor List, among others.


OPSWAT Certified

The Lumension® AntiVirus, Lumension® Device Control, Lumension® Disk Encryption and Lumension® Patch and Remediation modules, part of the Lumension® Endpoint Management and Security Suite, have received OPSWAT Certification in their respective categories. This certification provides independent verification that these products operate seamlessly with leading compliance, manageability assessment and support solutions.

In addition, Lumension® is an OPSWAT Certified Partner and committed to interoperability with the OESIS® Framework.

For more information, please http://www.opswat.com/