Corsec is pleased to announce that RedSeal Inc.’s Common Criteria Assurance Continuity for the RedSeal Platform v8.2.0 is now official and all the listings have been posted. The RedSeal product completed a EAL 2+ evaluation through the Network and Network-Related Devices and Systems product category. This Assurance Continuity ensures that RedSeal Platform will continue to operate in the most scrutinized environments for product security, and that customers and end users can rely on the platform for years to come.
About Common Criteria
Common Criteria is an internationally recognized set of guidelines (ISO 15408), which define a common framework for evaluating security features and capabilities of Information Technology security products. The standard consists of several predetermined evaluation assurance levels, each one more stringent than the last. Common Criteria allows vendors to have their products tested against a chosen level by an independent third-party testing laboratory. The Common Criteria Mutual Recognition Agreement (CCRA) is a pact, which was designed to allow all evaluations up to an evaluation assurance level (EAL) 2, to be recognized by all participating countries, regardless of where the evaluation was completed. There are currently 25 countries involved in the CCRA, including the United States and Canada, with others that follow unofficially such as the EU. The U.S. government mandates Common Criteria certification of security products for federal purchases. The National Information Assurance Acquisition Policy, NSTISSP No. 11, requires agencies to purchase only those commercial security products that have met specified third-party assurance requirements and have been tested by an accredited national laboratory.
About Assurance Continuity
Common Criteria determines if reevaluation will be necessary through a process called Assurance Continuity. If minor changes have occurred, a vendor can perform an “assurance maintenance,” and submit a report that is attached as an addendum to the original product security certification. If major changes have occurred, evidence will need to be submitted to a laboratory for reevaluation.
About the RedSeal Platform
RedSeal Inc. offers a comprehensive network security solution to its ever expanding list of global partners. The RedSeal Platform is a Network Infrastructure Security Management (NISM) platform that continuously identifies critical attack risk and non-compliance in complex enterprise security infrastructure.
For more information on getting your product through validation and certifications, please contact Jake Nelson at firstname.lastname@example.org or by phone at 703-267-6050 x122.