fbpx
0

Government certified to the HIGHEST STANDARDS

World's first and only

iStorage is the world’s first and only vendor to attain the following government certifications on the diskAshur PRO2 and diskAshur DT2 range of PIN authenticated, hardware encrypted, HDDs and SSDs: FIPS 140-2 Level 2/3NCSC CPANLNCSA BSPA and NATO Restricted level.

In addition to the above certifications, iStorage’s most secure and highest capacity encrypted USB flash drive, the datAshur PRO² has been certified to: FIPS 140-2 Level 3 and the iStorage datAshur PRO has also been certified to: FIPS 140-2 Level 3NLNCSA DEP-V and NATO Restricted level.  

The diskAshur PRO3 and diskAshur DT3 are amongst the first encrypted HDDs/SSDs pending the new FIPS 140-3 Level 3 scheme. They also provide the ultimate data protection, having recently passed the CAVP (Cryptographic Algorithm Validation Program) testing as part of the FIPS 140-3 Level 3 validation scheme that the products are currently being evaluated against. The issued CAVP certificates are listed below:

  • iStorage diskAshur3 cryptographic library- Certificate A5501
  • iStorage diskAshur3 EC library- Certificate A5502
  • iStorage diskAshur3 RNG library- Certificate A5500

Product

Certifications

FIPS 140-2 Level 2, NCSC CPA, NLNCSA BSPA, NATO Restricted 

IS-DAP2-256-XX-C-G | IS-DAP2-256-SSD-XX-C-G

FIPS 140-2 Level 3 

IS-DAP2-256-XX-C-X | IS-DAP2-256-SSD-XX-C-X

FIPS 140-2 Level 3

IS-FL-DP2-256-XX

FIPS 140-2 Level 3

IS-FL-DA-256-XX

FIPS 140-2 Level 3

IS-FL-DBT-256-XX

Certifications explained

FIPS 140-2

The Federal Information Processing Standard Publication 140-2 is a US government computer security standard which defines the level of security and to approve cryptographic modules, with:

  • Level 1 providing the lowest level of security
  • Level 2 showing evidence of tampering features including tamper-evident coatings or seals.
  • Level 3 – in addition to the tamper-evident physical security mechanisms required at Security Level 2, Level 3 attempts to prevent the intruder from gaining access to critical security parameters (CSPs)

NCSC CPA

The prestigious National Cyber Security Centre Commercial Product Assurance (NCSC CPA) certification evaluates the commercial off-the-shelf products, and their developers, against published security and development standards. iStorage was awarded the Foundation Grade certification where iStorage products have proven to demonstrate good commercial security practice

NLNCSA BSPA

iStorage products successfully went through the Baseline Security Product Assessment (BSPA) as a pilot assessment managed by the Netherlands National Communications Security Agency (NLNCSA), which is part of the Netherlands General Intelligence and Security Agency. The BSPA scheme provides vendors the opportunity to have their IT security products assessed independently by licensed evaluation laboratories, whilst NLNCSA provide independent confirmation that products meet their criteria before issuing a deployment agency.

NATO Restricted Level

iStorage products are included in the NATO Information Assurance Product Catalogue (NIACP), which provides NATO nationals, NATO civil and military bodies with a catalogue of Information Assurance (IA) products that are available for procurement to meet operational requirements.

Cyber Essentials

iStorage was assessed as meeting the Cyber Essentials implementation profile and thus that the organisations ICT defences were assessed as satisfactory against commodity based cyber attack.