Press Release

Centrify Suite First Active Directory Bridge Solution to Earn FIPS 140-2 Level 1 Certification

Centrify's FIPS 140-2 Level 1 Compliance Ensures Government Agencies and Enterprises that Centrify's Products Maintain Highest Levels of Security for Protecting Sensitive Information

September 26, 2011

SUNNYVALE, Calif. — Sept. 26, 2011 — Centrify Corporation, the leading provider of security and compliance solutions that centrally control, secure and audit access to cross-platform systems and applications using Active Directory, today announced that its Centrify Suite security and compliance solution has been awarded the Federal Information Processing Standards (FIPS) 140-2 Level 1 validation from the Cryptographic Module Validation Program, a joint effort between the National Institute of Standards and Technology (NIST) and the Communications Security Establishment (CSE) of the Government of Canada. It is the first Active Directory bridge solution to earn this important industry distinction.

Considered the benchmark for security within government departments and agencies, the FIPS 140-2 certification assures U.S. and Canadian government customers, systems integrators and resellers that Centrify products provide the highest level of protection for sensitive information, and comply with strict government security regulations. FIPS 140-2 defines testing against a defined cryptographic module and provides a suite of conformance tests to four security levels, and includes such areas as physical security, key management, self tests, roles and services.

The Centrify Cryptographic Module — a general purpose cryptographic library that provides cryptographic services for all Centrify products — was tested for conformance by the Cryptographic Module Testing laboratory for Mac OS X and selected Linux operating systems. It passed the following required compliance criteria relating to the secure design and implementation of a cryptographic module: cryptographic module specification; module ports and interfaces; roles, services and authentication; finite state model; operational environment; cryptographic key management; EMI/EMC; self tests; and design assurance. For more information on FIPS 140-2 and Centrify's certification, see http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2011.htm#1604.

"To date Centrify has been very successful in the government sector, as proven by our record government sales and expanding Federal channel," said Gary Taggart, Centrify VP of Sales. "Now with FIPS 140-2 certification, we expect to see even more traction in this important vertical sector. Centrify's products fit well in government due to their ability to centralize identity management and access controls across various platforms on premise and in the cloud. FIPS certification validates that the Centrify Suite solution meets the highest levels of security requirements, and it assures government customers, systems integrators and resellers that our products have passed rigorous testing for the most demanding environments."

About the Centrify Suite

The Centrify Suite lets organizations centrally control, secure and audit access to cross-platform systems and applications by leveraging an infrastructure they already own — Microsoft Active Directory. Built on an integrated architecture, the Centrify Suite strengthens security, enhances regulatory compliance initiatives, and reduces IT expense and complexity. The Centrify Suite — consisting of DirectControl, DirectAuthorize, DirectAudit, DirectSecure and DirectManage — delivers secure authentication and single sign-on, role-based access control, privileged identity management, user-level auditing, server isolation, and encryption of data-in-motion for the industry's broadest set of heterogeneous systems and applications. To learn more about Centrify solutions for federal government, see http://www.centrify.com/federal/.

About Centrify

Centrify delivers integrated software solutions that centrally control, secure and audit access to cross-platform systems and applications by leveraging the infrastructure organizations already own — Microsoft Active Directory. From the data center and into the cloud, more than 3,500 organizations, including 40 percent of the Fortune 50, rely on Centrify's identity consolidation and privilege management solutions to reduce IT expenses, strengthen security and meet compliance requirements. For more information about Centrify and its solutions, call +1 (408) 542-7500 or visit http://www.centrify.com/.