IT Security Assessments: Common Criteria & Cryptographic Module Validation
Companies supplying IT security or related products to governments are increasingly being held to comply with a minimum security baseline. This requires rigorous IT security testing and a formal evaluation to determine if IT products have been correctly developed and whether they’re effective in countering the security problems as claimed.
The Common Criteria for Information Technology (IT) Security Evaluation, also known as the ISO 15408 standard, is the current standard for specifying and evaluating the security features of IT products and networks.
Common Criteria offers the first global standard for IT security evaluation and validation/certification fully endorsed by government bodies in participating countries.
In addition, federal agencies, industry, and the public rely on cryptography for the protection of information and communications used in electronic commerce, critical infrastructure, and other application areas. Cryptographic modules, which contain cryptographic algorithms, are used in products and systems to provide security services such as confidentiality, integrity, and authentication. Adequate testing and validation of the cryptographic module and its underlying cryptographic algorithms against established standards is essential to provide security assurance.
Cryptographic Module Validation Program (CMVP) validates cryptographic modules to Federal Information Processing Standards (FIPS) 140-2 Security Requirements for Cryptographic Modules and other FIPS cryptography based standards.
The services we can provide include:
- Security Target and Protection Profile development and evaluation
- Cryptographic module and algorithm testing
- Feasibility Assessment to ensure that your evidence and product are ready for evaluation and testing
- Consulting services and evidence development
- Assurance Maintenance for updates to certified products
- Common Criteria and FIPS training
Our proven processes and experienced security experts can help you quickly and cost-effectively certify your products to the standard required by many Government and civilian agencies, including Defense departments in the US, Australia, and Canada.
We're dedicated to helping organizations large and small successfully test, secure and certify their products.
For More Information:
Contact us and let our Common Criteria and CMVP experience help you produce results.