Pivot3, a leading provider of intelligent infrastructure solutions, today announced that it achieved Common Criteria Assurance Continuity certification for its Acuity 10.6 hyperconverged infrastructure (HCI) software platform. Pivot3 is the only HCI vendor with Common Criteria certification of a native-NVMe solution with policy-based management to automate data protection, security and workload performance.

This provides government and enterprise customers with unprecedented capabilities to meet the highest security standards across the edge, core and cloud. More than ever, enterprise-generated data is being created and processed outside of datacenters and the cloud. Because of this, government agencies and other highly-regulated industries are incorporating edge strategies into their initiatives to support the management of highly distributed data and infrastructure.

Common Criteria is an internationally recognized set of guidelines (International Organization for Standardization 15408), which define a common framework for evaluating security features and capabilities of information technology security products. This certification assures both government and private-sector organizations that Pivot3 provides the infrastructure necessary to mitigate emerging threats without compromising security, resilience and manageability at scale.

Pivot3 had previously attained Common Criteria certification on its prior generation software platform. The Common Criteria certification process consists of several evaluation assurance levels, each one more stringent than the last, with product security testing performed by accredited independent, third-party laboratories. This evaluation is recognized by over 28 participating countries, and others who follow the Common Criteria program unofficially such as the European Union.

The U.S. government – as well as many other governments around the world --mandate Common Criteria certification of security products for purchases. All U.S. federal agencies are required to purchase commercial products that have met specified third-party assurance requirements and have been tested by an accredited national laboratory. Many commercial organizations also require Common Criteria certification for infrastructure and software solutions due to the certification’s intense security standards.