Uncategorized

  1. Happy New Year!

    Another year gone by, and what a year it was on so many fronts! This was the year that challenged us to scale effectively and am heartened to see how the team responded. We went from a handful of customers in 2015 to a full book in 2016. Scaling to a greater customer diversity while Read More…

  2. New Guidance from the CMVP on Operational Environment (OE) requirements

    Here at Acumen we want to keep our clients plugged-in as product certification requirements change or evolve. From time to time FIPS 140-2 testing labs receive updates or new guidance from the Cryptographic Module Validation Program (CMVP). The following guidance was sent from CMVP last week pertaining to the level of detail required for cryptographic module Read More…

  3. Vulnerability Analysis and Common Criteria

    With the advent of collaborative Protection Profiles (e.g., the NDcPP), a greater emphasis has been given to the vulnerability analysis requirements required as part of a product evaluation. Vulnerability analysis is a subset of risk management that involves looking at the system elements and layout and their failure modes based on a given set of Read More…