CA Unicenter Network and Systems Management Earns Common Criteria Level 2 Certification

Business Wire, May 28, 2008

Product Achieves Internationally Recognized Security Certification Required by Governments Seeking to Procure Commercial Products

ISLANDIA, N.Y. -- CA, Inc. (NASDAQ: CA) today announced that CA Unicenter Network and Systems Management (NSM) r11.1 has achieved Common Criteria Evaluation Assurance Level 2 certification from the National Information Assurance Partnership (NIAP) Common Criteria Evaluation and Validation Scheme (CCEVS).

This level of security certification independently validates the quality and efficacy of the product, which automatically discovers and monitors systems environments, aligns IT infrastructure to business processes, proactively ensures the availability and performance of business-critical processes, and reduces the cost and complexity of managing IT environments.

Common Criteria is an internationally recognized security certification required by the U.S. and other governments worldwide for departments and agencies seeking to procure commercial products. Common Criteria certification also assures businesses that a product meets a standard measure of security, whether it is used internally or in solutions for customers. CA Unicenter NSM r11.1 is certified at the EAL 2 level of the Common Criteria scheme, as defined by ISO/IEC 15408-2 and ISO/IEC 15408-3, which address product functionality, development environment, documentation, and product testing measures.

"CA is proud to have its systems management product earn this designation, which recognizes our ongoing commitment to helping customers optimize IT operations, reduce costs, and mitigate risks," said Roger Pilc, corporate senior vice president and general manager of CA's Infrastructure Management and Data Center Automation business unit.

CA completed its Common Criteria evaluation and certification through CygnaCom Solutions' Common Criteria Testing Laboratory, which is accredited by the National Voluntary Laboratory Assessment Program and approved by the National Information Assurance Partnership (NIAP). CygnaCom performed the evaluations in accordance with the NIAP's Common Criteria Evaluation and Validation Scheme.

"Common Criteria provides assurance that product testing, evaluation, and assessment has been conducted in a sufficiently rigorous and standardized manner," said Nithya Rachamadugu, director of CygnaCom Solutions' Security Evaluation Laboratory. "We applaud CA for its continued commitment to information security as evidenced by the successful Common Criteria Level 2 certification of its systems management software."

Other CA products certified under Common Criteria include CA Single Sign-On r7, CA Audit r8, CA Admin r8, CA Security Command Center r8, CA Integrated Threat Management r8, CA Access Control for Windows r8, and CA Directory r8.1.

About Common Criteria

The National Institute of Standards and Technology (NIST) and the National Security Agency (NSA) established the National Information Assurance Partnership (NIAP) to evaluate IT product conformance to the Common Criteria for Information Technology Security Evaluation, an international standard. The program, officially known as the NIAP Common Criteria Evaluation and Validation Scheme (CCEVS) is a partnership between the public and private sectors to help organizations select commercial off-the-shelf information technology (IT) products that meet their security requirements and to help manufacturers of those products gain acceptance in the global marketplace. Twenty-four countries now recognize the Common Criteria as the official third-party evaluation criteria for IT security procedures.

About CygnaCom Solutions

CygnaCom Solutions, a subsidiary of Entrust, Inc., has provided professional information security services and cryptographic solutions to government and business clients since 1994. CygnaCom, with headquarters in McLean, Va., provides a wide range of consulting services and customized solutions to help clients develop, implement and maintain information security programs, policies and strategy. Through its accredited laboratories, CygnaCom is also a one-stop provider of comprehensive U.S. standards-based security testing and evaluation services for IT and cryptographic products.

About CA

CA (NASDAQ: CA), one of the world's largest independent software companies, provides software solutions to unify and simplify[TM] IT management. With CA's Enterprise IT Management (EITM) vision and expertise, organizations can more effectively govern, manage and secure IT to optimize business performance and sustain competitive advantage. Founded in 1976, CA serves customers in virtually every country in the world. For more information, please visit www.ca.com.

Copyright (c) 2008 CA. All Rights Reserved. All trademarks, trade names, service marks, and logos referenced herein belong to their respective companies.