SafeLogic provides strong encryption products for solutions in mobile, server, Cloud, appliance, wearable, and IoT environments that are pursuing compliance with strict regulatory requirements. In Insights Success’ recent interview with Ray Potter, the CEO & Co-Founder of SafeLogic, they discuss the customer journey and real-world problems encountered on the path to FIPS 140-2 validated cryptography.
Below are the highlights of the interview conducted between Ray Potter and Insights Success:
Give a brief overview of the company, its uniqueness, and its vision.
SafeLogic addresses an esoteric niche of the technology world with an original innovation. The FIPS 140-2 validation for cryptography is notoriously difficult, but required for any encryption used in the Public Sector, including Federal agencies and the U.S. military, as well as in regulated industries like finance and healthcare. SafeLogic reinvented how this compliance certification is achieved, by designing cryptographic modules with the benchmark in mind, validating the modules, and streamlining future validations for clients, by leveraging the testing already completed. Providing the module, CryptoComply, and service, RapidCert, in tandem saves months of waiting, hundreds of hours of engineering, paperwork & thousands of dollars!
What are the innovative products/solutions offered by SafeLogic?
SafeLogic’s flagship product is CryptoComply, a FIPS 140- 2 validated encryption module designed for use in a variety of environments. CryptoComply versions include drop-in replacements for OpenSSL and Java use cases. SafeLogic’s RapidCert service, only offered in tandem with CryptoComply, delivers accelerated FIPS 140-2 validation in the customer’s name, paving the way to Federal deployment. How does SafeLogic instigate innovation in its work culture? SafeLogic is a distributed team, adding contributors based on their skillset and attributes, independent of their chosen location. This prioritization of production over presence has driven this small team to dominate our niche market. Hiring the right people extends naturally into a philosophy of encouraging our people to take real ownership of their roles. Without micromanagement or having to punch a clock, opportunities to try new strategies and tackle new problems happen organically. We continue to innovate and expand our solutions and we look forward to providing your encryption.
How do you strategize your game plans to tackle competition in the market?
SafeLogic tries to anticipate customer needs and deliver integrated solutions that nobody else can. Our goal is to make it so simple and cost-effective for customers to offload their validated crypto to us, that it is an obvious choice for companies of all sizes.
What are the challenges faced while providing innovative products/solutions and how is SafeLogic serving to tackle them?
SafeLogic is working within the confines of compliance and certification, particularly with NIST (the National Institute of Standards and Technology) and their CMVP (Cryptographic Module Validation Program) division. There are evolving validation requirements in addition to the changing landscape of cryptographic technology, so you can imagine that it is challenging to stay on the cutting edge while conforming to benchmarks established and enforced by the government. SafeLogic continues to lead the industry by aggressively solving issues as they arise, whether it is a technical solution to a software issue, applying patches for security vulnerabilities, or addressing new compliance pitfalls, our customers rely on us to take care of it, and we do.
What according to you could be the potential future of SafeLogic and how does envision sustaining its competency?
SafeLogic has a bright future as the Go-To source of validated encryption for every tech vendor in the country! We continue to scale, as we solve problems once and deliver to many customers. It’s much more efficient than each customer hiring their internal resources to solve the same problem in parallel, so we are confident that we will continue to grow.
“We had to have FIPS 140-2 validation, and SafeLogic made it easy!”– Stephen Kovac, VP of Global Government & Head of Corporate Compliance, Zscaler
“We did it with SafeLogic’s encryption modules, which enabled us to reduce the time, cost and complexity of validating our solution for federal markets.”– Jason Kehl, VP of Engineering, Vectra Networks
“We’re very pleased with how thorough and efficient SafeLogic was with NIST to help us achieve this FIPS 140-2 certification milestone for SyncDog.”– Jonas Gyllensvaan, CEO, SyncDog
About the Leader
Ray Potter is the CEO and Co-Founder of SafeLogic. Ray brings over 15 years of security and compliance experience to lead the strategy and direction of SafeLogic. Previously he ran Apex Assurance Group, providing security and compliance consulting, and grew top-line revenue at 47% CAGR with a 75% net profit margin. At Apex, often providing FIPS 140-2 consulting services, he found that much of his advice and strategy could be productized. This culmination of years of experience in the trenches became CryptoComply, the flagship product of SafeLogic! On a personal level, Ray loves playing guitar and flying airplanes.