Press Releases Archive   Search Press Releases
Press Release

F5's FirePass SSL VPN Appliance Achieves Common Criteria EAL 2+ Certification

F5 affirms commitment to security customers' user experience; FirePass meets globally recognized IT security standards, earns credentials from the National Information Assurance Partnership

F5 Networks, Inc. (NASDAQ: FFIV), the global leader in Application Delivery Networking, today announced that the F5® FirePass® SSL VPN appliance has earned Common Criteria EAL 2+ certification according to the National Information Assurance Partnership (NIAP). NIAP validated the F5 FirePass 4100 version 5.5.2 (+ Hotfix HF-552-10) appliance, and has released the results.

"We consistently deliver the highest quality application security and access management solutions for our customers," said Jason Needham, Sr. Director of Product Management at F5. "With FirePass version 5.5.2 achieving Common Criteria certification, F5 reaffirms its commitment to improving product stability, performance, and reliability for a better user experience. Now, customers have assurance from an independent third party that FirePass meets the security and quality needs of the market, and that F5 will continue to be a trusted partner for organizations around the world."

Common Criteria is an internationally recognized standard known as ISO 15408. The program represents a synthesis of 24 nations' input on nation-specific security standards, with the goal of creating one criteria to measure the assurance of IT security products. U.S. government organizations, international government entities, and many global Fortune 500 corporations require Common Criteria certification to aid in the evaluation of IT products for their infrastructures, often requiring contractors to uphold the standard as well.

The FirePass evaluation included an analysis of these security features:

  • Security audit
  • Identification and authentication
  • Endpoint security
  • Network access mode
  • Web applications mode access
  • Policy-based resource management
  • Security management
  • Secure communications
  • Protection of the device itself

"The InfoGard Laboratories evaluation team conducted comprehensive security testing on F5's FirePass product and determined it meets the EAL 2+ Common Criteria requirements," said Stephen Wilson, Common Criteria Evaluations Manager at InfoGard. "The F5 team is genuinely committed to the development of secure IT products. F5 demonstrates their commitment by maintaining each certification through the Assurance Continuity process. With this achievement for FirePass, F5 continues to affirm its dedication to the certification of its Application Delivery Networking portfolio, beginning with the previous certifications of BIG-IP Local Traffic Manager."

Certification testing was conducted by InfoGard Laboratories, Inc. and validated by NIAP, a joint partnership between the U.S. National Institute of Standards and Technology (NIST) and the National Security Agency (NSA). Testing on FirePass 4100 version 5.5.2 (+ Hotfix HF-552-10) meets the Common Criteria Evaluation & Validation Scheme (CCEVS) standards set forth by these organizations.

A detailed description of the FirePass certification information and testing results are available at Additional questions regarding this certified security product should be directed to the contacts listed in this press release.

About F5 Networks

F5 Networks is the global leader in Application Delivery Networking. F5 provides solutions that make applications secure, fast, and available for everyone. By adding intelligence and manageability into the network to offload applications and optimize the data storage layer, F5 extends the power of intelligent networking to all levels of application delivery. F5's extensible architecture intelligently integrates application optimization, protects the application and the network, and delivers application reliability. Over 16,000 organizations and service providers worldwide trust F5 to keep their applications running. The company is headquartered in Seattle, Washington with offices worldwide. For more information, go to

# # #

This press release may contain forward looking statements relating to future events or future financial performance that involve risks and uncertainties. Such statements can be identified by terminology such as "may," "will," "should," "expects," "plans," "anticipates," "believes," "estimates," "predicts," "potential," or "continue," or the negative of such terms or comparable terms. These statements are only predictions and actual results could differ materially from those anticipated in these statements based upon a number of factors including those identified in the company's filings with the SEC.