Crunchy Data brings enterprise open source PostgreSQL to US government with new DISA STIG

Crunchy Data of Charleston, SC announced on March 23 the publication of a PostgreSQL Security Technical Implementation Guide (STIG) by the U.S. Department of Defense (DoD), making PostgreSQL the first open source database with a STIG. Crunchy Data collaborated with the Defense Information Systems Agency (DISA) to evaluate open source PostgreSQL against the DoD’s security requirements and developed the guide to define how open source PostgreSQL can be deployed and configured to meet security requirements for government systems.

PostgreSQL is a powerful, open source, object-relational database system with more than 20 years of active development and a strong global development community. Commercial enterprises and Government agencies with a focus on advanced data management can benefit from PostgreSQL’s proven architecture and reputation for reliability, data integrity, and cost effectiveness.

Crunchy Certified PostgreSQL, Crunchy Data’s trusted 100% open source PostgreSQL distribution, eases STIG compliance by providing trusted open source PostgreSQL along with the requisite security enhancing Audit Logging Extensions. Crunchy Certified PostgreSQL also includes popular extensions such as PostGIS, a geospatial extension for PostgreSQL.

To ensure that Crunchy Certified PostgreSQL represents the most trusted open source enterprise PostgreSQL distribution, Crunchy Certified PostgreSQL has received Common Criteria Evaluation Assurance Level (EAL) 2+ certification, an international standard for computer security certification, Crunchy Certified PostgreSQL is the first commercially available open source relational database management system to receive Common Criteria certification.

“We are very proud of our working relationship with DISA and the resultant STIG being announced today. This STIG, combined with our Common Criteria certification, will help us support the U.S. government’s efforts to adopt open source software to reduce costs and unwanted vendor lock-in. Crunchy is committed to bringing the extraordinary cost effectiveness of open source PostgreSQL technology to the U.S. Defense community and to all database users who need to manage their information reliably, securely and efficiently.” said Crunchy CEO Bob Laurence.

Beyond the U.S. Government, the DISA PostgreSQL STIG offers security-conscious enterprises a comprehensive guide for open source PostgreSQL configuration and use. Enterprises can refer to the STIG as they consider open source PostgreSQL as an alternative to proprietary, closed source, database software.

Source: Crunchy Data