Red Hat Completes FIPS 140-2 Certifications

  Red Hat Completes FIPS 140-2 Certifications

     National Institute of Standards and Technology Issues Seven Security
                          Certifications to Red Hat

Business Wire

RALEIGH, N.C. -- April 23, 2013

Red Hat Inc. (NYSE: RHT), the world’s leading provider of open source
solutions, today announced the completion of seven Federal Information
Processing Standard (FIPS) 140-2 certifications from the U.S. government’s
National Institute of Standards and Technology (NIST). This marks the
culmination of Red Hat’s largest certification effort to date with the U.S.

Information security officials have a mandate to maintain greater control over
data and information systems. U.S. federal agencies that use
cryptographic-based security systems to protect sensitive information in
computer, telecommunication systems and other IT-related products must use
FIPS-140 certified systems in order to meet those security requirements. FIPS
140-2 validation is also required by national agencies in Canada and is
recognized in Europe and Australia.

“When dealing with highly sensitive information, IT security is at the
forefront of our customer’s minds, especially those within federal sectors,”
said Paul Smith, vice president and general manager, Public Sector, Red Hat.
“Completing these FIPS 140-2 certifications reinforces the commitment that Red
Hat has to meeting the IT needs of those entities and providing the necessary
security protection levels required by federal agencies worldwide.”

Red Hat Enterprise Linux 6.2 on HP ProLiant DL585 and IBM BladeCenter® HS22
servers has achieved the following FIPS 140-2 certifications:

  *Kernel Crypto API Cryptographic Module
  *dm-crypt Cryptographic Module
  *OpenSwan Cryptographic Module
  *OpenSSH-Client Cryptographic Module
  *OpenSSH-Server Cryptographic Module
  *OpenSSL Cryptographic Module
  *Libgcrypt Cryptographic Module

The Secretary of Commerce approves standards and guidelines that are developed
by NIST for U.S. federal computer systems. NIST develops FIPS when there are
compelling U.S. government requirements, such as for security and
interoperability, and where there are no acceptable industry standards or
solutions. The FIPS 140 Publication Series coordinates the requirements and
standards from cryptography modules for hardware and software, and in order to
achieve FIPS 140-2 validation, cryptographic modules are subjected to rigorous
testing by independent, accredited test facilities.

The validation testing for today’s announcement was performed by atsec
information security corporation’s Cryptographic and Security Testing
Laboratory in Austin, Texas. atsec is an independent company with
long-standing experience in international IT security standards.

atsec commented: “We congratulate Red Hat on their successful certifications.
Red Hat continues to be an industry leader with their increasing number of
FIPS 140-2 validated cryptographic modules that are regularly updated,
retested, and revalidated to the FIPS 140-2 standard; and those modules are
included in their distributions. The Red Hat developers and management team
show an ongoing commitment to meeting their customer’s compliance requirements
with the highest quality products. They prove that commitment by having those
products independently examined, tested and validated.”

For a full list of validated FIPS 140-1 and FIPS 140-2 Cryptographic Modules
from NIST, visit

Additional Resources

  *Red Hat Government
  *Details on Red Hat’s certifications
  *Red Hat Government on Twitter

Connect with Red Hat

  *Get more Red Hat news or subscribe to the Red Hat news RSS feed
  *Follow Red Hat on Twitter
  *Join Red Hat on Facebook
  *Watch Red Hat videos on YouTube

About Red Hat, Inc.

Red Hat is the world's leading provider of open source software solutions,
using a community-powered approach to reliable and high-performing cloud,
Linux, middleware, storage and virtualization technologies. Red Hat also
offers award-winning support, training, and consulting services. As the
connective hub in a global network of enterprises, partners, and open source
communities, Red Hat helps create relevant, innovative technologies that
liberate resources for growth and prepare customers for the future of IT.
Learn more at

Forward-Looking Statements

Certain statements contained in this press release may constitute
"forward-looking statements" within the meaning of the Private Securities
Litigation Reform Act of 1995. Forward-looking statements provide current
expectations of future events based on certain assumptions and include any
statement that does not directly relate to any historical or current fact.
Actual results may differ materially from those indicated by such
forward-looking statements as a result of various important factors,
including: risks related to delays or reductions in information technology
spending; the effects of industry consolidation; the ability of the Company to
compete effectively; uncertainty and adverse results in litigation and related
settlements; the integration of acquisitions and the ability to market
successfully acquired technologies and products; the inability to adequately
protect Company intellectual property and the potential for infringement or
breach of license claims of or relating to third party intellectual property;
the ability to deliver and stimulate demand for new products and technological
innovations on a timely basis; risks related to data and information security
vulnerabilities; ineffective management of, and control over, the Company's
growth and international operations; fluctuations in exchange rates; and
changes in and a dependence on key personnel, as well as other factors
contained in our most recent Quarterly Report on Form 10-Q (copies of which
may be accessed through the Securities and Exchange Commission's website at, including those found therein under the captions "Risk
Factors" and "Management's Discussion and Analysis of Financial Condition and
Results of Operations". In addition to these factors, actual future
performance, outcomes, and results may differ materially because of more
general factors including (without limitation) general industry and market
conditions and growth rates, economic and political conditions, governmental
and public policy changes and the impact of natural disasters such as
earthquakes and floods. The forward-looking statements included in this press
release represent the Company's views as of the date of this press release and
these views could change. However, while the Company may elect to update these
forward-looking statements at some point in the future, the Company
specifically disclaims any obligation to do so. These forward-looking
statements should not be relied upon as representing the Company's views as of
any date subsequent to the date of this press release.

Red Hat, JBoss and the Shadowman logo are registered trademarks of Red Hat,
Inc. in the U.S. and other countries. Linux is a registered trademark of Linus


Red Hat, Inc.
Stephanie Wonderlick, 571-421-8169
Press spacebar to pause and continue. Press esc to stop.