Red Hat实现了企业Linux 6的最高级别安全证书

2012-10-29

北卡罗莱纳州,罗利 - 世界领先的开源解决方案供应商红帽公司(NYSE:RHT)今天宣布,红帽企业Linux 6,包括其KVM虚拟机管理程序,已经获得了通用评估准则(CC:Common Criteria)的评估保证级别(EAL)4+级别的认证,这是针对不可修改的商业操作系统的最高的保障级别,所符合的操作系统保护轮廓(OSPP:Operating System Protection Profile)包括针对高级管理、高级审计、安全标记以及在Dell、HP、IBM和SGI硬件平台上的红帽企业Linux 6的虚拟化技术的扩展模块。

通用评估准则是由联邦政府和其他组织所采用的,针对技术产品的安全和保证进行评估的国际公认标准。在通用评估准则体系中,EAL代表了评估的深度和严格性,给予消费者足够的信心,使得指定的产品在特定级别上满足与之相关水平的一系列安全保障要求。

本次认证提供了政府机构、金融机构和客户在其他安全敏感的环境中的保证,红帽企业Linux 6符合政府的安全标准。红帽企业Linux 6产品的重要特性是安全增强Linux(SELinux),与美国国家安全局(NSA)开发的联合项目。本次通用评估准则认证提供了使用带有KVM管理程序的红帽企业Linux6的保证,允许供应商在同一台机器上承载多个租户,同时使用由NSA开发的强制访问控制(Mandatory Access Control)技术保持虚拟客户的互相分离。

红帽与戴尔、惠普、IBM和SGI广泛合作,从而证明红帽企业Linux 6在广泛的硬件平台上应用。作为这项认证工作的部分,红帽企业Linux 6已经实现了在以下硬件的通用评估准则认证:

  • 带有虚拟化支持的红帽企业Linux 6:
    • 基于x86 64位Intel的Dell:
      • Dell PowerEdge R720, R620, R820, R520, R320, R420
      • Dell PowerEdge T620, T420, T320
      • Dell PowerEdge M620, M520, M420, M820
    • 基于x86 64位Intel Xeon处理器的HP:
      • HP ProLiant ML 100 and 300 series G6 product line
      • HP ProLiant DL 100 series G6, 300 series G6 and G7, 500 series G7, 900 series G7 product line
      • HP ProLiant BL 200 series G6 and G7, 400 series G6 and G7, 600 series G5, 600 series G7 product line
      • HP ProLiant SL 100 series G6 product line
    • 基于AMD64处理器的HP:
      • HP ProLiant DL 100 series G7, 500 series G7, 700 series G6 product line
      • HP ProLiant BL 600 series G6 product line
      • HP ProLiant SL 100 series G7 product line
    • 基于x86 64位Intel Xeon处理器的IBM:
      • IBM System x: x3400 M2, x3400 M3, x3500 M2, x3500 M3, x3550 M2, x3550 M3, x3620 M3, x3630 M3, x3650 M2, x3650 M3
      • IBM BladeCenter: HS22 and HS22V
      • IBM iDataPlex: dx360 M2, dx360 M3
      • IBM X5 systems: x3850 X5, x3950 X5, x3690 X5
    • 基于x86 64位Intel Xeon处理器的SGI:
      • SGI(R) UV(TM) 1000, SGI(R) UV(TM) 100
  • 无虚拟化支持的红帽企业Linux 6:
    • “带有虚拟化支持的红帽企业Linux”在所有上述硬件
    • 基于POWER7处理器的IBM Power System
    • 基于z /架构处理器的IBM z 系统

    红帽企业Linux 6经过德国BSI,德国联邦信息安全办公室颁发证书。为了促进本次认证,红帽与atsec信息安全,一家美国政府和BSI认可的实验室展开紧密合作,atsec针对面向信息安全评估的通用评估准则(ISO/IEC 15408)进行解决方案的安全性、性能和可靠性在EAL 4+级别的测试和验证,该级别是不可修改商业操作系统的最高保障级别。本次工作符合操作系统保护轮廓(OSPP:Operating System Protection Profile),包括高级管理、高级审计、安全标签,以及Dell、HP、IBM和SGI硬件红帽企业Linux 6的虚拟化地扩展模块。

    相关评论:
    红帽Public Sector operations副总裁和总经理Paul Smith评论道:
    “这标志着我们对红帽企业Linux的第15次通用评估准则认证,使得红帽处于业界获得认证的操作系统的最高地位。我们一直致力于安全认证,从而客户可以在最大安全水平上信赖地转向红帽的专门技术来部署开放源码解决方案,与戴尔、惠普、IBM和SGI的认证合作,进一步巩固了政府客户在多个产业知名供应商的硬件上运行红帽企业版Linux的信心。”(英文原文如下:"This marks our 15th completed Common Criteria certification for Red Hat Enterprise Linux, earning Red Hat a place at the top of the list of the industry’s most certified operating systems. We’ve been deeply committed to security certifications so that customers can confidently turn to Red Hat for the expertise to deploy open source solutions at maximum security levels, and our work with Dell, HP, IBM and SGI on this certification reinforces that government customers can run Red Hat Enterprise Linux with confidence on a wide variety of hardware from many of the industry’s top providers.”)

    Dell企业产品市场部门副总裁Tim Mattox评论道:
    “特别在现今的艰难预算环境里,戴尔致力于帮助他们的政府客户更有效地运行。随着红帽获得通用评估准则安全证书, 现在我们可以提供我们的政府客户更大的子集,一个在戴尔的12代PowerEdge服务器强大的工具,帮助他们完成他们的任务,同时也帮助他们遵守数据中心整合计划的到位,且满足增加预算的要求。基于这些强大的解决方案,戴尔的政府客户现在可以满足严格的安全性要求需要,帮助组织确保交付业务结果的同时,保护他们的安全敏感的环境。”(英文原文如下:"Dell is committed to helping its government customers operate more efficiently and effectively, especially in today’s difficult budget environment. With Red Hat earning common criteria security certification, we can now offer a larger subset of our government customers a powerful tool in Dell’s 12th Generation of PowerEdge Servers to help them accomplish their mission while also helping them to comply with data center consolidation initiatives now in place as well as increasing budget demands. With these powerful solutions, Dell’s government customers can now meet the stringent security requirements needed to help organizations protect their security sensitive environments while still delivering business results.” )

    HP联邦业务机构副总裁Tom Hempfield:
    “为了完成他们的任务,联邦机构依靠计算机系统交付高标准的安全性和可靠性。本次HP ProLiant 产品线的认证展示了HP致力于帮助红帽企业Linux满足他们的机构客户的风险管理需要的承诺。”(英文原文如下:"To accomplish their missions, federal agencies rely on computer systems that deliver a high level of security and reliability. This certification of the entire HP ProLiant product line demonstrates HP’s commitment to helping Red Hat Enterprise Linux meet the risk management needs of their agency clients.”)

    SGI副总裁Jim Brinker评论道:
    “SGI UV是针对红帽企业Linux和KVM管理程序实现了通用评估准则认证的最大的服务器。服务器认证支持高达1280内核和8TB的内存。SGI UV安装在多个政府程序中,SGI非常高兴地在红帽的支持下为我们的联邦客户提供安全平台。”(英文原文如下:"SGI UV is the largest server certified with Common Criteria certification for Red Hat Enterprise Linux and the KVM hypervisor. The server certification supports up to 1280 cores and 8 TB of memory. SGI UV is installed in many government programs and SGI is pleased to offer, with Red Hat’s support, a secure platform for our federal customers.”)

    atsec美国通用评估准则实验室经理Ken Hake评论道:
    “我们非常自豪红帽选择atsec作为通用评估准则的评估实验室,本项目持续我们与红帽成功的业务关系。红帽本次通用评估准则项目的完成使得在业务关键环境中运行红帽企业Linux的客户更加安心。”(英文原文如下:"We are proud that Red Hat chose atsec as the laboratory for the Common Criteria evaluation, as this project continues our successful business relationship with Red Hat. Red Hat’s completion of this Common Criteria project should result in more peace of mind for customers who run Red Hat Enterprise Linux in business critical environments.”)

    关于红帽
    红帽,世界领先的开源解决方案提供商和S&P 500强企业,总部设在美国北卡罗来纳州的罗利,有超过70个办事处遍布全球。红帽提供高品质、可接受技术的操作系统平台、红帽企业版Linux,以及云、虚拟化、管理、存储和面向服务架构(SOA)的解决方案,包括红帽企业虚拟化和JBoss企业中间件。红帽还面向全球为客户提供培训和咨询服务。更多信息:www.redhat.com

    前瞻性声明Forward-Looking Statements (英文信息)

    Certain statements contained in this press release may constitute "forward-looking statements" within the meaning of the Private Securities Litigation Reform Act of 1995. Forward-looking statements provide current expectations of future events based on certain assumptions and include any statement that does not directly relate to any historical or current fact. Actual results may differ materially from those indicated by such forward-looking statements as a result of various important factors, including: risks related to delays or reductions in information technology spending; the effects of industry consolidation; the ability of the Company to compete effectively; uncertainty and adverse results in litigation and related settlements; the integration of acquisitions and the ability to market successfully acquired technologies and products; the inability to adequately protect Company intellectual property and the potential for infringement or breach of license claims of or relating to third party intellectual property; the ability to deliver and stimulate demand for new products and technological innovations on a timely basis; risks related to data and information security vulnerabilities; ineffective management of, and control over, the Company's growth and international operations; fluctuations in exchange rates; and changes in and a dependence on key personnel, as well as other factors contained in our most recent Quarterly Report on Form 10-Q (copies of which may be accessed through the Securities and Exchange Commission's website at http://www.sec.gov), including those found therein under the captions "Risk Factors" and "Management's Discussion and Analysis of Financial Condition and Results of Operations". In addition to these factors, actual future performance, outcomes, and results may differ materially because of more general factors including (without limitation) general industry and market conditions and growth rates, economic and political conditions, governmental and public policy changes and the impact of natural disasters such as earthquakes and floods. The forward-looking statements included in this press release represent the Company's views as of the date of this press release and these views could change. However, while the Company may elect to update these forward-looking statements at some point in the future, the Company specifically disclaims any obligation to do so. These forward-looking statements should not be relied upon as representing the Company's views as of any date subsequent to the date of this press release.

    Red Hat and JBoss are trademarks of Red Hat, Inc., registered in the U.S. and other countries. Linux(R) is the registered trademark of Linus Torvalds in the U.S. and other countries.