Cloud Data Management Provider Rubrik Achieves Common Criteria EAL2+ Certification

Rubrik, a provider of cloud data management solutions offering instant data access, app mobility, policy-driven automation, ransomware protection, and analytics at scale, has been certified to meet the requirements of EAL2+ of the Common Criteria for Information Technology Security Evaluation. Common Criteria is an internationally recognized standard that defines a framework for evaluating the security of IT products.

U.S. government organizations, international government entities from 27 different countries, and many global Fortune 500 corporations would require Common Criteria EAL2+ certification to aid in the evaluation of IT products for their infrastructures and often require contractors to uphold the standard.

The Common Criteria EAL2+ certification requires developer testing, vulnerability analysis, product lifecycle management, process assessment, and independent testing based on detailed Target of Evaluation (TOE) specifications. The assessment determined that Rubrik appliances meet the requirements for EAL2+ of the Common Criteria for Information Technology Security Evaluation.

For government customers with a hybrid cloud strategy, Rubrik provides broad support for all major government infrastructure offerings, including Microsoft Azure GovCloud, AWS GovCloud and Commercial Cloud Services (C2S). Rubrik is an Advanced Tier Technology partner in the AWS Partner Network and a Global ISV Co-Seller in the Microsoft Partner Network.

“We are pleased that Rubrik has received this critical certification, demonstrating that our solution has stood up against extremely stringent testing,” said Steve Alfieris, Vice President & General Manager of Federal Government, ‎Rubrik. “With Rubrik, government agencies can ensure their data is secure and compliant throughout its lifecycle. Since the platform has been designed to lower the total cost of ownership within government environments, customers typically achieve cost reductions of 20-50 percent over the first three to five years of implementation.”

Government Agencies

The Rubrik Cloud Data Management platform would enable secured management of physical and virtualized data, across all locations – on-premises, at the edge, and in the cloud. Rubrik provides in-flight and at-rest encryption to allow government agencies to backup, replicate, and archive data while complying with rigid data protection policies regarding classified, confidential, or personally identifiable information (PII).

Rubrik would ensure data integrity by continuously validating data throughout its lifecycle, providing data immutability against cyber attacks (ransomware) and resilience to failures. For the highest security standards, Rubrik offers the r528 appliance, which provides at-rest encryption using FIPS 140-2 Level 2 validated self-encrypting drives (SED).