Tripwire and Aegisolve Begin Process of FIPS 140-2 Validation for Tripwire Enterprise

Portland, OR - May 19, 2009 - Tripwire®, the market leader in configuration control solutions, and Aegisolve, Inc., a U.S. Federal government-accredited third-party provider for testing, validating and gaining security compliance certificates, announced today that the two companies have entered into an agreement to move Tripwire Enterprise through the validation process for FIPS 140-2 (Federal Information Processing Standards) by the National Institute of Standards and Technology (NIST) in the U.S. and by the Communications Security Establishment in Canada (CSEC).


Tripwire — with an installed base of more than 700 distinct Federal customers at 95 percent of all Federal government agencies — has grown its customer base within the Federal government by 25 percent over the last two years. FIPS 140-2 validation helps ensure further confidence of Tripwire Enterprise capabilities.

"We understand that FIPS 140-2 validation is a critical benchmark for our government customers and we are proactively seeking the desired level of security services," said Randy Crow, Vice President of Federal Government at Tripwire. "With Aegisolve’s expertise and efficient practices, we are confident our technology will meet the data security validation testing criteria."

The FIPS 140-2 is the standard in information technology security for cryptographic modules produced by private sector vendors who seek to have their products validated for use in government departments and regulated industries that collect, store, transfer, share and disseminate sensitive information. The FIPS 140-2 standard is applicable to all Federal agencies, such as the Department of Defense, that use cryptographic-based security systems to protect sensitive information in computer and telecommunication systems. It is also valued by companies in the healthcare, financial and manufacturing markets and those concerned about cyber security.

 "Our security laboratories guide companies through the often complicated government data security validation testing processes," said Travis Spann, President, Aegisolve, Inc. "For Tripwire, validations such as FIPS provide the extra level of assurance necessary to know its data protection solution satisfies cryptographic security criteria through extensive design analysis and testing."

About Aegisolve, Inc.

Aegisolve global security laboratory is accredited by the U.S. Federal government National Institute of Standards and Technology (NIST) for Cryptographic Module Testing to FIPS 140-1 and FIPS 140-2, and Security Content Automation Protocol. As a trusted third party, the Aegisolve mission is to develop, augment, utilize and accelerate security analysis and testing processes in ever changing technological landscapes worldwide.