Lecture_18_Common_Criteria_x_6

Lecture_18_Common_Criteria_x_6 - National Information...

Info iconThis preview shows pages 1–2. Sign up to view the full content.

View Full Document Right Arrow Icon
1 COMP 6370 – Common Criteria and other Certifications 1 Partnership to meet the security testing needs of IT producers National Information Assurance Partnership COMP 6370 – Common Criteria and other Certifications 2 Objective Test Security Properties of Commercial Products Approach Tests performed by Accredited Commercial Laboratories Validity/Integrity of results underwritten by NIAP Results posted for public access Evaluates conformance of the security features of IT products to the International Common Criteria (CC) for Information Technology Security Evaluation. Issues Certificates to vendors for successful completion of evaluations. Not an NSA or NIST endorsement Not a statement about goodness of product Common Criteria Evaluation and Validation Scheme (CCEVS) The IT product identified in this certificate has be n evaluated at an ac redited testing laboratory using the Common Methodology for IT Security Evaluation (Version X) fr conformance to the Common Criteria for IT Security Evaluation (Version X). This certificate applies only to the specific version and release of the product in its evaluated configuration. The product’s functional and as urance security specifications are contained in its security target. The evaluation has be n conducted in ac ordance with the provisions of the NIAP Common Criteria Evaluation and Validation Scheme and the conclusions of the testing laboratory in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsement of the IT product by any agency of the U.S. Government and no war anty of the IT product is either expres ed or implied. Vendor Name Product Name: Version and Release Numbers: Protection Profile Identifier: Evaluation Platform: Name of CCTL: Validation Report Number: Date Is ued: As urance Level: National Information As urance Partnership Common Criteria Certificate Deputy Director for Information Systems Security National Security Agency Director, Information Technology Laboratory National Institute of Standards and Technology ® COMP 6370 – Common Criteria and other Certifications 3 Targets three groups that are considered to be principal users of the CC Common set of requirements for evaluating the security of IT products/systems Consumer Vendor Evaluator Al ows for comparability between functions of products and systems. The Common Criteria is a multipart standard used for evaluation of IT products and systems Provides security requirements to be satisfied by their products or systems. Use criteria when determining if the product or system conforms to the security requirements for certification. CC is presented in 3 distinct parts
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Image of page 2
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}

Page1 / 7

Lecture_18_Common_Criteria_x_6 - National Information...

This preview shows document pages 1 - 2. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online