Media: Mardi Larson, at UniForum March 23 - 25 (booth #3021) After UniForum, 612/683-3538 Steve Conway 612-683-7133 Financial: Bill Gacki, 612/683-7372 CRAY RESEARCH ANNOUNCES DOD "RED BOOK" SECURITY RATING Cray Is First Supercomputer Firm To Achieve "Trusted Network" Status SAN FRANCISCO, Calif., March 23, 1994 -- Cray Research, Inc. (NYSE:CYR) today announced that after a four-year evaluation, the company's Trusted UNICOS operating system has successfully completed the National Security Agency's (NSA) Trusted Product Evaluation Program and has become the first supercomputer firm to achieve U.S. Department of Defense (DoD) "red book" security rating. This designation means Cray Research systems running Trusted UNICOS, from CRAY EL departmental supercomputers to the company's top-of-the-line CRAY C90 systems, are rated for operation in secure ("trusted") networks at U.S. government sites. "Cray Research has supported B1 class features for a number of years," said Paul Falde, Cray Research project leader for Trusted UNICOS. "This higher-level red book rating means that our systems meet the even more stringent security requirements needed to interoperate in trusted network configurations." Falde said achieving this status also has implications for industrial and commercial environments, where network security has become a critical concern with the increased use of distributed computing. Trusted UNICOS is a special configuration of the newest release of the UNICOS operating system (UNICOS 8.0), which was also announced today. UNICOS is Cray Research's UNIX- based, POSIX-compliant operating system that was first made available a decade ago and is being continually enhanced by Cray Research. Cray Research started the evaluation in Jan. 1990. The operating system was evaluated against the DoD Trusted Network Interpretation (TNI) of the Trusted Computer System Evaluation Criteria, NCSC-TG-005, of July 31, 1987. According to Falde, Trusted UNICOS was designed to meet the B1 MDIA requirements of the TNI and provides a fully functional, practical and usable trusted computing environment. Falde said, a final evaluation report will be issued by the NSA's National Computer Security Center (NCSC) and Trusted UNICOS is now included in the Evaluated Products List (EPL). Because network connections are vital for using Cray Research systems, Falde said, evaluating Trusted UNICOS as a network component ensures that a Trusted UNICOS system can maintain its B1 MDIA rating when integrated into a heterogeneous network trusted computing base (NTCB). Network communication in a Trusted UNICOS configuration is performed through the TCP/IP suite of protocols. "Therefore, Trusted UNICOS includes TCP/IP as well as RPC, NQS and NFS," he said. Along with features that meet the B1 MDIA requirements, Trusted UNICOS provides functional aspects of higher-level requirements, including B3 discretionary access control (DAC), B2 trusted facility management, and A1 trusted distribution, Falde said. Also, Trusted UNICOS provides the most comprehensive set of network functions of any "red book" rating. Trusted UNICOS is available now on CRAY Y-MP Model E, CRAY C90, CRAY M90, and CRAY EL systems. The new product is developed, marketed and supported by Cray Research. ###