With security and compliance becoming a major concern for virtually all organizations, EMC’s interrelated set of product security programs ensure that EMC products are built with security in mind. We apply best practices at every stage of the EMC development lifecycle as well as the postrelease response process.
EMC's approach to secure development includes identifying a set of functional and nonfunctional security requirements integrated into a product security standard. We apply this standard through requirements, design, development, documentation, testing, readiness, and vulnerability response, minimizing the risk of vulnerabilities in our products.
EMC follows industry best practices in managing and responding to security vulnerabilities in our products to minimize customers’ risk of exposure.
EMC has received extensive government and industry certifications in the design, implementation, and management of our security processes and solutions. Certifications include the Common Criteria for Information Technology Security Evaluation (Common Criteria) and the Federal Information Processing Standard (FIPS) 140-2.
EMC participates in multiple industry-wide groups to collaborate with other leading vendors in sharing best practices on product security and in further enhancing the cause of secure development.
EMC has integrated RSA technologies in our product suite to enable core security capabilities that seamlessly integrate with customer environments.