SolarWinds IT Management Solutions Achieve Common Criteria Certification
October 22, 2014
Share this

SolarWinds announced multiple products are now certified under the Common Criteria for Information Technology Security Evaluation (ISO/IEC 15408), an internationally recognized standard for computer security achieved through independent laboratory testing and evaluation.

“At SolarWinds, we make every effort to ensure our software is powerful, effective and safe,” said Chris LaPoint, VP Product Management, SolarWinds. “This Common Criteria certification attests that SolarWinds solutions adhere to the necessarily high performance standards for government deployment and are validated to help IT Pros accomplish their missions.”

Common Criteria provides a broad range of evaluation criteria for commercial and nationally sensitive government-use IT security products. Federal IT users needing to run applications in National Security Systems (NSS) environments can look to Common Criteria-certified software for numerous compliant software solutions.

The SolarWinds Orion Suite, comprising the below solutions, is now certified under Common Criteria lab EAL 2 evaluation, empowering government IT pros to implement and use the software safely on Federal networks:

- Network Performance Monitor 10.6 – Management and monitoring of dynamic network performance

- Server & Application Monitor 6.0 – Server, application and OS monitoring

- Network Configuration Manager 7.2 – Network configuration and compliance management

- Network Traffic Analyzer 3.11 – Flow-based network traffic analysis

- IP Address Manager 4.0 – IP address and DHCP/DNS management and monitoring

- User Device Tracker 3.0.1 – Device and switch port monitoring and mapping

- VoIP & Network Quality Manager 4.1 – VoIP and WAN performance monitoring

- Web Performance Monitor 2.0.1 – Website and web application monitoring

- Enterprise Operations Console 1.4.1 – Unified management for distributed enterprise networks

- Failover Engine 6.7.0 – SolarWinds platform server monitoring

SolarWinds Log & Event Manager 5.7, which provides log collection, analysis and real-time correlation, is also Common Criteria certified under EAL 2+ lab testing.

Electronic Warfare Associates (EWA)-Canada, a Common Criteria Testing Laboratory (CCTL) accredited by the Standards Council of Canada and approved by Canada’s Communications Security Establishment (CSE), has evaluated the SolarWinds software to determine it meets all of the requirements of this security certification. EWA-Canada is recognized for its extensive experience with Common Criteria evaluations, enabling companies to manage the process and ensure their products meet important certification requirements.

“EWA-Canada is pleased to verify SolarWinds’ solutions as Common Criteria-certified,” stated Erin Connor, Director of the EWA-Canada CCTL. “During the rigorous evaluation process, SolarWinds solutions demonstrated their sophistication and high standards of quality and security. This independent certification reflects SolarWinds' commitment to providing high-quality solutions to support the mission-critical demands of IT professionals in the Federal Government and elsewhere and proves that the products meet global security standards for deployment in government.”

SolarWinds software is available on the U.S. General Services Administration (GSA) Schedule, Department of Defense ESI, and other contract vehicles.

U.S. Government certifications and approvals include Army CoN, Air Force APL, Navy DADMS; and Technical Requirements include FIPS compatibility, DISA STIGs, and National Institute of Standards and Technology (NIST) compliance.

SolarWinds also has hundreds of built-in automated compliance reports, which meet requirements of all major auditing authorities, including DISA STIG, FISMA, NIST, and more. SolarWinds’ thwack online user community provides a number of out-of-the-box compliance report templates available to download for free that are designed to help users prepare for an inspection. thwack also provides information on Smart Card and Common Access Card (CAC) product support.

Share this

The Latest

March 27, 2024

Nearly all (99%) globa IT decision makers, regardless of region or industry, recognize generative AI's (GenAI) transformative potential to influence change within their organizations, according to The Elastic Generative AI Report ...

March 27, 2024

Agent-based approaches to real user monitoring (RUM) simply do not work. If you are pitched to install an "agent" in your mobile or web environments, you should run for the hills ...

March 26, 2024

The world is now all about end-users. This paradigm of focusing on the end-user was simply not true a few years ago, as backend metrics generally revolved around uptime, SLAs, latency, and the like. DevOps teams always pitched and presented the metrics they thought were the most correlated to the end-user experience. But let's be blunt: Unless there was an egregious fire, the correlated metrics were super loose or entirely false ...

March 25, 2024

This year, New Relic published the State of Observability for Financial Services and Insurance Report to share insights derived from the 2023 Observability Forecast on the adoption and business value of observability across the financial services industry (FSI) and insurance sectors. Here are seven key takeaways from the report ...

March 22, 2024

In MEAN TIME TO INSIGHT Episode 4 - Part 2, Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations, at Enterprise Management Associates (EMA) discusses artificial intelligence and AIOps ...

March 21, 2024

In the course of EMA research over the last twelve years, the message for IT organizations looking to pursue a forward path in AIOps adoption is overall a strongly positive one. The benefits achieved are growing in diversity and value ...

March 20, 2024

Today, as enterprises transcend into a new era of work, surpassing the revolution, they must shift their focus and strategies to thrive in this environment. Here are five key areas that organizations should prioritize to strengthen their foundation and steer themselves through the ever-changing digital world ...

March 19, 2024

If there's one thing we should tame in today's data-driven marketing landscape, this would be data debt, a silent menace threatening to undermine all the trust you've put in the data-driven decisions that guide your strategies. This blog aims to explore the true costs of data debt in marketing operations, offering four actionable strategies to mitigate them through enhanced marketing observability ...

March 18, 2024

Gartner has highlighted the top trends that will impact technology providers in 2024: Generative AI (GenAI) is dominating the technical and product agenda of nearly every tech provider ...

March 15, 2024

In MEAN TIME TO INSIGHT Episode 4 - Part 1, Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations, at Enterprise Management Associates (EMA) discusses artificial intelligence and network management ...