Red Hat Achieves Security Certification for JBoss Enterprise Application Platform to Broaden Market Potential


United States, July 6, 2009

JBoss Enterprise Application Platform 4.3 Meets International Security Standard for Government and Enterprise Customers

Red Hat, Inc. (NYSE: RHT), the world's leading provider of open source solutions, today announced that JBoss Enterprise Application Platform, 4.3 has achieved Common Criteria certification at Evaluation Assurance Level (EAL) 2+ (augmented for flaw remediation). This marks the first Common Criteria certification for JBoss Enterprise Middleware, giving government agencies and other security-conscious organizations a new choice for enterprise Java applications. JBoss Enterprise Application Platform 4.3 is Red Hat's premiere Java application platform solution which also forms the foundation for JBoss Enterprise Portal Platform, JBoss EnterpriseService Oriented Architecture (SOA) Platform, and is included with JBoss Enterprise Business Rules Management System (BRMS). Customers can now deploy JBoss Enterprise Application Platform 4.3 with the added confidence that they meet the security standards set forth through Common Criteria.

Government agencies and businesses in industries that require significant security assurance, including financial services and healthcare, rely on Common Criteria certifications to provide confidence that evaluated IT solutions comply with widely accepted security standards. Common Criteria is a set of internationally approved criteria for evaluating and certifying the information security of IT products and information systems, and is currently recognized in 25 countries. Security evaluations based on Common Criteria look at the security performance and reliability of the target system, which are tested and validated by an accredited, third-party source against the Common Criteria Standard for Information Technology Security Evaluation (ISO/IEC 15408).

"JBoss Enterprise Middleware has already proven to be an enterprise-class solution, and many government agencies already rely on JBoss to develop, deploy and manage their Java applications," said Paul Smith, general manager and vice president, Government Sales Operations, Red Hat. "In the federal government, Common Criteria certifications are required to establish the integrity of solutions for the most sensitive applications. By achieving Common Criteria certification at EAL2+, we are witnessing an important milestone in the evolution of open source middleware; JBoss has proven itself to be trustworthy and capable of meeting strict security requirements."

Certification Details

Certifying Organization:Bundesamt fur Sicherheit in der
Informationstechnik (BSI)
(Federal Office for Information Security)
Certification Level:Common Criteria Evaluation Assurance Level 2+
Certificate Number:BSI-DSZ-CC-0531-2009
Evaluation Completed By:atsec information security

The successful evaluation continues Red Hat's long-standing commitment to security and Common Criteria. To date, Red Hat has achieved 15 Common Criteria certifications. Additionally, JBoss Enterprise Data Services Platform is currently In Evaluation' for Common Criteria certification at EAL 2+. For more information on Red Hat's commitment to security certifications, visit

For more information about Red Hat, visit For more news, more often, visit

About Red Hat, Inc.

Red Hat, the world's leading open source solutions provider, is headquartered in Raleigh, NC with over 65 offices spanning the globe. CIOs ranked Red Hat first for value in Enterprise Software for four consecutive years in the CIO Insight Magazine Vendor Value survey. Red Hat provides high-quality, affordable technology with its operating system platform, Red Hat Enterprise Linux, together with applications, management and Services Oriented Architecture (SOA) solutions, including JBoss Enterprise Middleware. Red Hat also offers support, training and consulting services to its customers worldwide. Learn more:

Forward-Looking Statements

Certain statements contained in this press release may constitute "forward-looking statements" within the meaning of the Private Securities Litigation Reform Act of 1995. Forward-looking statements provide current expectations of future events based on certain assumptions and include any statement that does not directly relate to any historical or current fact. Actual results may differ materially from those indicated by such forward-looking statements as a result of various important factors, including: risks related to delays or reductions in information technology spending, the integration of acquisitions and the ability to market successfully acquired technologies and products; the ability of the Company to effectively compete; the inability to adequately protect Company intellectual property and the potential for infringement or breach of license claims of or relating to third party intellectual property; the ability to deliver and stimulate demand for new products and technological innovations on a timely basis; risks related to data and information security vulnerabilities; ineffective management of, and control over, the Company's growth and international operations; fluctuations in exchange rates; adverse results in litigation; and changes in and a dependence on key personnel, as well as other factors contained in our most recent Annual Report on Form 10-K (copies of which may be accessed through the Securities and Exchange Commission's website at, including those found therein under the captions "Risk Factors" and "Management's Discussion and Analysis of Financial Condition and Results of Operations". In addition to these factors, actual future performance, outcomes, and results may differ materially because of more general factors including (without limitation) general industry and market conditions and growth rates, economic conditions, and governmental and public policy changes. The forward-looking statements included in this press release represent the Company's views as of the date of this press release and these views could change. However, while the Company may elect to update these forward-looking statements at some point in the future, the Company specifically disclaims any obligation to do so. These forward-looking statements should not be relied upon as representing the Company's views as of any date subsequent to the date of the press release.

© 2009 Red Hat, Inc. Red Hat, the Shadowman logo and JBoss are registered trademarks of Red Hat, Inc. in the U.S. and other countries. Linux is a registered trademark of Linus Torvalds.