Tavve achieves FIPS validation for ZoneRanger
Charlotte, North Carolina – June 6, 2022
Tavve, a network security and optimization company focusing on maximizing the value of log and telemetry data, today announced that its upcoming ZoneRanger 7.0 will utilize Federal Information Processing Standards (FIPS) 140-2 validated cryptography to protect sensitive customer information. The following FIPS 140-2 certificate was issued by the CMVP:
FIPS 140-2 Cert. #3420 – Ranger Cryptographic Module
The Cryptographic Module Validation Program (CMVP) is a joint effort between NIST in the United States and the Communications Security Establishment (CSE) in Canada. The CMVP validates cryptographic modules to Federal Information Processing Standards (FIPS) 140-2, Security Requirements for Cryptographic Modules, and other FIPS cryptography based standards. Active FIPS 140-2 cryptographic modules listed in the CMVP database of validated modules are accepted by the Federal Agencies of both countries for the protection of sensitive information and are often a requirement by security sensitive enterprises.
ZoneRanger™ is a patented network security appliance that acts as a proxy firewall to allow unsecure management traffic (SNMP, ICMP, etc) to be inspected (DPI), validated, before being passed through a firewall boundary via an encrypted 256-bit TLS tunnel, after which ZoneRanger filters, replicates, and forwards the data to an unlimited number of defined destinations. ZoneRanger extends the reach of management applications into the firewall-protected networks using transparent proxy to intercept and relay management traffic to, and from, the target devices.
ZoneRanger aggregates all management traffic (UDP and TCP) before it reaches the firewall, thereby limiting the need for open management protocol ports which considerably reduces the firewall attack
surface. By all but eliminating the need for open management ports, enterprises now have much fewer firewall rules to manage and maintain. Without that massive burden of firewall rules, the required documentation of firewall related changes is accelerated, and associated labor requirements are dramatically reduced, while the probability of human error when writing firewalls rules is minimized. Finally, with the significant reduction in change management effort, project delivery is accelerated improving time to market.