Bastille Secures NIAP Common Criteria Validation

During Certification, Bastille is the Only Cellular Intrusion Detection Product on the NIAP Compliant List and Underscores the Company’s Mission to Detect and Locate All Authorized and Unauthorized Devices in an Airspace

SAN FRANCISCO, CA – September 23, 2022 – Bastille, the leader in wireless threat detection through software-defined radio, today announced that its product Bastille Enterprise has received the Common Criteria validation from the National Information Assurance Partnership (NIAP).

The Common Criteria is recognized by 31 member countries in the Common Criteria Recognition Arrangement (CCRA). Members of the CCRA include Australia, Canada, France, Germany, Italy, Japan, Spain, the United Kingdom and the United States. The NIAP serves as the U.S. representative to the CCRA.

Bastille Enterprise analyzes observed wireless device data to detect devices, their metadata, and their locations. Bastille Enterprise provides real time feeds of this enriched device data, enabling users to make security decisions by leveraging the real time wireless device inventory the Bastille Enterprise provides and site policies of the organization.

In receiving its certification, the Bastille Enterprise underwent a rigorous testing process. The validation team concluded that “the evaluation showed that the product satisfies all of the functional requirements and assurance requirements stated in the Security Target.” As a result, Bastille Enterprise will now be listed on the U.S. NIAP Product Compliant List and the international CCRA Certified Products List.

“To date, Bastille is the only Cellular Intrusion Detection Product on the NIAP Compliant List. The NIAP security review process is so rigorous that in all the other categories combined, there are currently only 214 products on the NIAP Compliant list at the time of certification. I want to commend the Bastille Engineering team for designing and delivering a robust security solution which makes us part of that elite group,” said Chris Risley, Bastille CEO.

Certificate:

https://www.niap-ccevs.org/MMO/Product/st_vid11311-ci.pdf

Link to Bastille announcement on NIAP site.

https://www.niap-ccevs.org/Product/Compliant.cfm?PID=11311

Notes from NIAP on certification.

“The IT product identified in this certificate has been evaluated at an accredited testing laboratory using the Common Methodology for IT Security Evaluation (Version 3.1) for conformance to the Common Criteria for IT Security Evaluation (Version 3.1). This certificate applies only to the specific version and release of the product in its evaluated configuration. The product's functional and assurance security specifications are contained in its security target. The evaluation has been conducted in accordance with the provisions of the NIAP Common Criteria Evaluation and Validation Scheme and the conclusions of the testing laboratory in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsement of the IT product by any agency of the U.S. Government and no warranty of the IT product is either expressed or implied.”

About NIAP

The National Information Assurance Partnership (NIAP) is responsible for U.S. implementation of the Common Criteria, including management of the NIAP Common Criteria Evaluation and Validation Scheme (CCEVS) validation body.

NIAP manages a national program for developing Protection Profiles, evaluation methodologies, and policies that will ensure achievable, repeatable, and testable requirements. In partnership with NIST, NIAP also approves Common Criteria Testing Laboratories to conduct these security evaluations in private sector operations across the U.S.

NIAP takes a collaborative approach to technology-specific protection profile development by supporting the creation of international technical communities of representatives from industry, government, end users, and academia. This results in consistent evaluation methodologies across U.S. testing labs and among labs associated with international Common Criteria Recognition Arrangement schemes.

NIAP also works with NATO and international standards bodies (ISO) to share Common Criteria evaluation experiences and avoid duplication of effort. In the U.S., NIAP engages with other National Security Systems (NSS) users to ensure Protection Profiles, along with their associated DoD Annexes, provide a streamlined certification path for IA and IA enabled COTS products employed with NSS.

About Bastille

Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure.

For more information on Bastille, visit bastille.net and follow @bastillenet and LinkedIn.

Media Contact:
Noe Sacoco
Sacoco PR
408-340-8130
noe@sacocopr.com