Press Releases Archive   Search Press Releases
Press Release

F5's BIG-IP LTM Achieves Common Criteria EAL2+ Certification

F5's flagship application delivery product earns globally recognized IT security credentials

F5 Networks, Inc. (NASDAQ: FFIV), the global leader in Application Delivery Networking, today announced that its BIG-IP® Local Traffic Manager (LTM) version 9.3 has earned Common Criteria Evaluation Assurance Level 2+ (EAL2+) certification, according to the National Information Assurance Partnership (NIAP).

"In May, F5 achieved Common Criteria certification on BIG-IP LTM version 9.2.3," said Patrick Jenny, VP of Product Development at F5. "Extending certification to the next release reaffirms our dedicated efforts to improve the stability, performance, and reliability of our products. We take pride in the fact that global organizations can rely on a third-party assessment of product quality."

Common Criteria is an internationally recognized standard to measure the security of Information Technology (IT) products. U. S. government organizations, international government entities, and many global Fortune 500 corporations require Common Criteria certification to aid in the evaluation of IT products for their infrastructures and often require contractors to uphold the standard as well.

Certification testing was conducted by InfoGard Laboratories, Inc. and validated by NIAP, a joint partnership between the U.S. National Institute of Standards and Technology (NIST) and the National Security Agency (NSA). Testing on BIG-IP LTM version 9.3 meets the Common Criteria Evaluation & Validation Scheme (CCEVS) standards set forth by these organizations.

"A detailed Impact Analysis Report was submitted by F5 enumerating the product function updates," said Stephen Wilson, Common Criteria Evaluations Manager at InfoGard. "We conducted a systematic review of the changes to the previously certified version, and NIAP issued a maintenance certificate for F5's BIG-IP LTM version 9.3. Building on the 9.2.3 release and certification, this new accomplishment shows F5's commitment to maintaining security assurance."

The BIG-IP LTM evaluation included an analysis of these security features:

  • Identification and authentication
  • Audit
  • Information flow control
  • Security management
  • Secure communications
  • Secure traffic
  • Protection of the device itself

Common Criteria EAL2+ certification requires developer testing, vulnerability analysis, and independent testing based on detailed Target of Evaluation (TOE) specifications. The evaluation report issued by InfoGard Laboratories determined that BIG-IP LTM version 9.3 meets the security criteria defined in the Security Target, which specifies EAL2+ augmented with ALC_FLR.1.

About F5 Networks

F5 Networks is the global leader in Application Delivery Networking. F5 provides solutions that make applications secure, fast and available for everyone, helping organizations get the most out of their investment. By adding intelligence and manageability into the network to offload applications, F5 optimizes applications and allows them to work faster and consume fewer resources. F5's extensible architecture intelligently integrates application optimization, protects the application and the network, and delivers application reliability-all on one universal platform. Over 10,000 organizations and service providers worldwide trust F5 to keep their applications running. The company is headquartered in Seattle, Washington with offices worldwide. For more information, go to

# # #

This press release may contain forward looking statements relating to future events or future financial performance that involve risks and uncertainties. Such statements can be identified by terminology such as "may," "will," "should," "expects," "plans," "anticipates," "believes," "estimates," "predicts," "potential," or "continue," or the negative of such terms or comparable terms. These statements are only predictions and actual results could differ materially from those anticipated in these statements based upon a number of factors including those identified in the company's filings with the SEC.